we have an ironport cluster that is currently open to anyone inside our network to relay to anyone inside or outside our IP space. we force all external IP space to authenticate before they can send.
we have about 200+ sub domains under our root domain that we handle email for.
my question is.
can i configure our IPO's to require auth for sending to a domain OTHER than the 200+ list and still allow un-authed to send to the 200+ internal sub domains?
for example
our internal domain is @.main.com with 200+ sub domains @sub.main.com
fax #1 in the fax@sub.main.com domain can openly with no auth send/relay email to anyone in the @sub.main.com or @*.main.com(the 200+list) domain without authentication but CANNOTsend to @*.other.com (ex @gmail.com)
fax #2 in the sub.main.com domain WITH authentication can send to ANY domain inside or out?
Dave P