Sept. 15, 2025
4:59 p.m.
Am 15.09.25 um 18:49 schrieb Stephen J. Turnbull:
This will work for you.
The only thing I might do different: I've set up a system where the MTA and Mailman are on different VMs, both visible from a large number of "internal" hosts, and the MTA visible from the public Internet. In that case I used SMTP AUTH both incoming and outgoing (paranoia, justified in the case of that client), but in your case with all the relevant nodes running in containers on a single host I don't think that even gives any extra security.
Thank you very much for your assessment 🙂