Hi,
my very wierd problem is as follows. I got a dns/mail-router host on the
dmz (static nat). When i try to connect to the ns/mail-router on port 25
with SendMail/Telnet whatever, i get Connection refused. The dns queries
goes through just fine, also ftp, and not by the default rule. The most
wierd thing is that if i change to a microsoft smtp-host it works :-(.
From a "internet" computer i do this
---
[root@test /root]# telnet 62.x.x.a 25
Trying 62.x.x.a...
telnet: Unable to connect to remote host: Connection refused
---
The target computer gets this with tcpdump:
---
23:23:13.937159 eth0 < 62.x.x.b.4682 > 10.8.1.30.smtp: S
1288656180:1288656180(0) win 5840 <mss 1460,sackOK,timestamp 112960398
0,nop,wscale 0> (DF)23:23:13.937159 eth0 > 10.8.1.30.smtp > 62.x.x.b.4682:
R 0:0(0) ack 1288656181 win 0 (DF)
---
The firewall says this:
---
19:23:59 accept fw01.nykoping.se >eth0 proto tcp src 62.x.x.b dst 62.x.x.a
service smtp s_port 4682 len 60 rule 6 xlatesrc 62.x.x.b xlatedst 10.8.1.30
xlatesport 4682 xlatedport smtp
---
Internet-Computer: Linux 7.1 (2.4.x)
Firewall: Linux 7.0 (2.2.19-7.0.8) CPfw 4.1-SP4
(CPSUITE-EVAL-DES-V41)
Target (smtp-host) Linux 7.1 (2.4.x) running SendMail
does anyone have any sugestions? Im all out :-/ Running on this EVAL licens
due to that we're moving from one ISP to another.
best regards.
//Claes Jansson - Sweden
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
