[Mimedefang] Trend + MD vs trophie-trend + MD
Xiaoyan Ma
xma at haas.berkeley.edu
Mon Jun 16 18:07:01 EDT 2003
A few months a ago when I first looking into MD, I learned from this list
to run trophie through MD, and Trend Micro's Virus Wall through trophie. It
has been working fine, much more efficient than running spamd and Trend
plug-in. Now I am building another box, I decided to try the sandwiched
architecture that Stephane Lentz recommended :
1st sendmail daemon (black list look-up) -> trend VW -> 2nd sendmail
daemon (MD w/ SA) -> local delivery. (This also stays away from what
David strongly discouraged: to have client talk to MD directly on port 25.)
I picked a mbox and used formail to retrieve one piece of mail at a time
and send to anther local account. Then I had 2 formail jobs running at the
same time, then added the third one coming from a different box. After
that I reconfigured the box to run one sendmail daemon with MD and trophie
+ trend.
Here is the outcome (time it took to finish):
sandwiched one-daemon
1job 2:39 4:50
2jobs 4:21 5:23
3jobs 5:22 6:51
I also ran vmstat when jobs were running:
sandwiched conifg:
procs memory page disk faults cpu
r b w swap free re mf pi po fr de sr f0 s0 s1 s2 in sy cs us sy id
5 5 0 6041288 3416032 50 1832 0 0 0 0 0 0 0 189 0 2778 12674 1391 84 15 0
7 5 0 6026616 3403264 50 2140 0 6 4 0 0 0 0 171 0 2947 16582 1773 83 17 0
1 5 0 6030864 3402192 57 1721 0 1 1 0 0 0 0 196 0 2843 14396 1740 59
15 26
1 4 0 6033616 3402872 74 1765 0 9 8 0 0 0 0 176 0 2674 15255 1777 61
18 21
one daemon:
procs memory page disk faults cpu
r b w swap free re mf pi po fr de sr f0 s0 s1 s2 in sy cs us sy id
0 2 0 6202312 3551512 59 1356 0 0 0 0 0 0 0 127 0 1935 10579 1154 46
11 44
0 1 0 6201728 3550856 74 1440 0 1 1 0 0 0 0 142 0 2069 11670 1224 46
12 43
0 2 0 6202240 3550920 60 1316 0 4 4 0 0 0 0 126 0 1889 10764 1148 42
11 47
0 1 0 6202632 3551080 56 1244 0 6 6 0 0 0 0 122 0 1933 11841 1212 46
12 43
I believe the sandwiched architecture is a lot more efficient.
I would like to share this with the list and also would like to find out
how others test their boxes.
One note, I only have the first daemon running TLS.
Thanks again Stephane, for sharing your ideas.
Xiaoyan
More information about the MIMEDefang
mailing list