> Have made the modifications you suggested, and can now ping the > additional external IPs from the wan interface. > > However, when I tested it live, I got no mail whilst the log showed that > port 25 traffic was being denied, despite having > EXTERN_TCP_PORT0="0/0 smtp 212.107.213.11 > > Sep 6 17:44:33 firewall kernel: Packet log: input DENY eth0 PROTO=6 > 65.214.43.159:53501 213.107.212.11:25 L=60 S=0x00 I=47724 F=0x4000 T=42 > SYN (#43)
Well, there are two differences between your EXTERN_TCP setting and the firewall logs...the first octet (212 vs 213) and the third octet (213 vs 212), so the EXTERN_TCP_PORT0 rule you list is *NOT* allowing the traffic that's showing up in the logs...you're also missing a closing quote. If your firewall logs are correct, which seems likely, the correct setting would be: EXTERN_TCP_PORT0="0/0 smtp 213.107.212.11" > I checked that the ip_masq_portfw module is loaded. Could you give me > any more advice? > > Regards and thanks for any help, > > Matt Walker > > PS this is the first time i've posted on the LEAF list - should I really > have posted this to the list, or to yourself? Don't mean to put on you! You should always post to the list (see my support page), but you can cc: me too, if you want. When you e-mail the list, you give more people a chance to help you, will likely recieve an answer faster (I'm not always at my computer, but we have list members in time zones around the world), and you're helping build an archive of questions/answers future users can search for even faster help with their problems. The easiest way to do this is usually to hit "reply-all" on your mail software when responding to list traffic... Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) ------------------------------------------------------- This sf.net email is sponsored by: OSDN - Tired of that same old cell phone? Get a new here for FREE! https://www.inphonic.com/r.asp?r=sourceforge1&refcode1=vs3390 ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
