[Mimedefang] Trend + MD vs trophie-trend + MD

Xiaoyan Ma xma at haas.berkeley.edu
Mon Jun 16 18:07:01 EDT 2003 

A few months a ago when I first looking into MD, I learned from this list 
to run trophie through MD, and Trend Micro's Virus Wall through trophie. It 
has been working fine, much more efficient than running spamd and Trend 
plug-in.   Now I am building another box, I decided to try the sandwiched 
architecture that Stephane Lentz recommended :

1st sendmail daemon (black list look-up)  ->  trend VW  ->  2nd sendmail 
daemon (MD w/ SA)  -> local delivery.  (This also stays away from what 
David strongly discouraged: to have client talk to MD directly on port 25.)

I picked a mbox and used formail to retrieve one piece of mail at a time 
and send to anther local account. Then I had 2 formail jobs running at the 
same time, then added the third one coming from a different box.  After 
that I reconfigured the box to run one sendmail daemon with MD and trophie 
+ trend.

  Here is the outcome (time it took to finish):

			sandwiched 		one-daemon

1job			2:39			4:50
2jobs			4:21			5:23
3jobs			5:22			6:51

I also ran vmstat when jobs were running:

sandwiched conifg:
  procs     memory            page            disk          faults      cpu
  r b w   swap  free  re  mf pi po fr de sr f0 s0 s1 s2   in   sy   cs us sy id
  5 5 0 6041288 3416032 50 1832 0 0 0  0  0  0  0 189 0 2778 12674 1391 84 15 0
  7 5 0 6026616 3403264 50 2140 0 6 4  0  0  0  0 171 0 2947 16582 1773 83 17 0
  1 5 0 6030864 3402192 57 1721 0 1 1  0  0  0  0 196 0 2843 14396 1740 59 
15 26
  1 4 0 6033616 3402872 74 1765 0 9 8  0  0  0  0 176 0 2674 15255 1777 61 
18 21

one daemon:
  procs     memory            page            disk          faults      cpu
  r b w   swap  free  re  mf pi po fr de sr f0 s0 s1 s2   in   sy   cs us sy id
  0 2 0 6202312 3551512 59 1356 0 0 0  0  0  0  0 127 0 1935 10579 1154 46 
11 44
  0 1 0 6201728 3550856 74 1440 0 1 1  0  0  0  0 142 0 2069 11670 1224 46 
12 43
  0 2 0 6202240 3550920 60 1316 0 4 4  0  0  0  0 126 0 1889 10764 1148 42 
11 47
  0 1 0 6202632 3551080 56 1244 0 6 6  0  0  0  0 122 0 1933 11841 1212 46 
12 43


I believe the sandwiched architecture is a lot more efficient.

I would like to share this with the list and also would like to find out 
how others test their boxes.

One note, I only have the first daemon running TLS.

Thanks again Stephane, for sharing your ideas.

Xiaoyan

More information about the MIMEDefang mailing list