Hi, I have a couple of questions re: my LEAF configuration...
1. when i'm assigning additional ip addresses to eth0, do I need to include the subnet mask or will just the additional addresses do? 2. i've opened a port and setup a rule (with Charles' help - thanks Charles) to direct mail to an internal mail server.... EXTERN_TCP_PORT0="0/0 smtp 212.107.213.11" INTERN_SERVERS="tcp_212.107.213.11_smtp_192.168.175.1_smtp" When I test the system however, I get no mail through... also, I can ping both the primary eth0 address, and the .12 address I added from the internet. There is no reply from the .11 address. Any idea what I'm doing wrong? Cheers, MW > I'm trying to configure a backup/replacement of a Sonicwall firewall > which sits between our company LAN and an ADSL router. We have been > allocated a range of IP addresses.... > > 212.107.213.9 (the adsl modem) > 212.107.213.10 (firewall WAN interface) > 212.107.213.11 (incoming email comes to this address) > 212.107.213.12 (DMZ - not used yet) > > We run MS Exchange on the LAN server (192.168.175.1) - there is a > 'one-to-one NAT' entry in the (old) firewall which lets incoming mail > through to the mail server (directs incoming traffic 212.107.213.11 >> > 192.168.175.1) > BUT, I'm struggling to find how I can set a rule which would direct > mail arriving at 212.107.213.11 to the mail server at 192.168.175.1. > You're on the right track. You first need to allow e-mail traffic through the firewall filters with the following: EXTERN_TCP_PORT0="0/0 smtp 212.107.213.11" Then, port-forward the traffic to your exchange server: INTERN_SERVERS="tcp_212.107.213.11_smtp_192.168.175.1_smtp" Of course, you also have to have the extra IP's assigned to the external interface for this to work: eth0_IP_EXTRA_ADDRS="212.107.213.11 212.107.213.12" --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.385 / Virus Database: 217 - Release Date: Sep/04/2002 ------------------------------------------------------- This sf.net email is sponsored by: OSDN - Tired of that same old cell phone? Get a new here for FREE! https://www.inphonic.com/r.asp?r=sourceforge1&refcode1=vs3390 ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
