I'd agree... a nice central appliance to manage all the other appliances (centralized management and reporting) would be very nice.

If it isn't processing mail traffic, hopefully it would have enough horsepower to handle it. If a stupid Windows box can do it for the mail flow central product (don't get me started on that), then a nice harded *nix box should be able to do it fine.

One problem would of course be disk space. I think IronPort is definitely going to have to come up with some sort of external storage solution. Maybe they can grab a Dell PowerVault, pull the sides off, slap some nice metallic covers on it and call it an "expansion storage unit". Or if they really wanted to have fun, make it work with an EMC SAN - support one or two HBAs, etc.

I don't want to influence the poll but we are looking into putting conversational LDAP into an upcoming AsyncOS 4.0 release. We're finalizing how it will interact with new connections while in DHAP. When we have the spec in a more reasonable form, I'll post portions of the spec here for comments.

I know you are. That's one of the reasons it was a poll option. ;)

Get that done. We need it. :)

Mark - Yeah, 4.0.7 (early-May), believe me we are all in suspense... :P We use DHAP very aggressively and still send around a million NDRs daily, ugly doesn't even describe it, except before IronPort is was worse, much worse :D .

Erich

Heh...here I was trying to be careful and not to commit to a release number or date...but everyone else already knows about it. At least we'll have plenty of beta sites to test it out! :-)

Yes, we know all. Keep telling us stuff... hiding upcoming featues is silly, cause we'll all find out anyways. :)

And yes, conversational LDAP bounces. We need them. Desperately.

The list seems a little small for the voting can you change the list.

How about things like:
Configurable NDR?
Configurable accounts to send the NDRs from?
The ability to view the outgoing queue based on listeners and not all combined?
The ability to restrict ldap queries for ldap accept/routing for only certain domains?

I could think of others ....

Yeah, I was hoping that people could add options to it on their own, but it doesn't look like it. I guess posting on the reply thread is just better..

I'd love to see central configuration of multiple Ironports working properly. I'm not really worried if this is integrated with a central reporting tool as different people need to use mesage tracking compared to changing the appliance settings. A unified system would have to provide different roles for message tracking, managing appliances (read-only, see the status of the gateways) and read-write (set new rules/policies).

Mailflow central (latest version) seems good to me but I'm not sure how far it will scale up to handle people with bigger mail throughputs.

Exposure of via SNMP of internal Ironport Counters (messages per minute, quere size, blah, blah blah).

Failover capability (virtual IP, heartbeat, etc...)

GUI based searching through log files (comeon guys, this is basic)

different action based on different virus type (just kill the mass mailers, but clean infected word documents).

-Adam

how about a "diagnostic" page that will list the SBRS scores of the domains that the ironport is currently handling. Plus any information on things you can do to help your handling of email/raising your SBRS score (kinda like the info you get if you email dnsckeck@ironport.com).

Also it would be nice if the ironport could generate an email if your score changes, so that incase something happens like what is spelled out on the main page blog, you will have some advanced notice and can take preemptive actions.

here are some features, that i would like to see in upcoming Releases:

- Throtteling based on receiving or sending E-Mail addresses
- the ability to rewrite special headers based on their contents (stripping of received headers isnt just a good idea)
- validation of the helo response of the sending machine in the HAT. (Many viruses just fake our own helo message which makes them easy to detect)

regards

Uwe Sommer
(germany)

more missing features:

Mailrouting with priorisation (MX with prioritynumbers) for delivering mails to be able to specify backup hosts only in case the primary destination fails.

regards

Uwe Sommer