Yes there are multiple servers, our mail server recives the mail for the customer doamin then does a force route (Mailsite) to the destination according to domain. (Thus for domain registered custumoers only) We have a class C address and wish to limit the use of these IP's that's why we are using masquerading, it also benfits the customer in that they don't have real IP's So it looks like relaying the mail is the only solution, had actually thought of this before but forgot about pursueing it further. Thanks Darren Clissold Datafast, http://www.datafast.net.au [EMAIL PROTECTED] -----Original Message----- From: Fred Viles <[EMAIL PROTECTED]> To: masq <[EMAIL PROTECTED]>; Darren Clissold <[EMAIL PROTECTED]> Date: Wednesday, April 07, 1999 1:06 PM Subject: [Masq] Re: External email through a masquearding box > >On 8 Apr 99, at 0:27, Darren Clissold wrote about > "[Masq] External email through a ma": > >| We are a new ISP who run a WAN to customers who are on 10...... addresses. > >How many public IP's do you have? > >| We wish to route domain mail through the LINUX masquearding box to the >| customer mail servers. > >Customer servers, plural? That could be a problem. How would you >know which SMTP packets are intended for which masqed servers? > >| ie. Our mail server (real IP) recieves the mail, and then routes to the >| customer servers. >| >| I have tried to add a rule to ipfwadm, >| ipfwadm -F -a accept -b -P tcp -S 0.0.0.0/0 1024:65535 -D 10.0.100.2 >| smtp > >This does nothing because packets can never arrive from the outside >with a destination IP of 10.... > >| This doesn't work, it is blocked. >| Do I have to use ipportfw, instead? > >Yes. Since you are using a 2.0.xx kernel, you would need to apply >the port forwarding kernel patch and then use ipportfw to set up >forwarding for the SMTP port to a *single* 10.... address. > >But if you want to route mail to multiple masqed servers, this won't >do the job. I'd suggest setting up sendmail on the Linux box to >relay for all your customer domains. Then masquerading would not be >involved. > >|... > >- Fred Viles <mailto:[EMAIL PROTECTED]> > > > > >_______________________________________________ >Masq maillist - [EMAIL PROTECTED] >http://tiffany.indyramp.com/mailman/listinfo/masq >Admin requests can be handled by web (above) or [EMAIL PROTECTED] _______________________________________________ Masq maillist - [EMAIL PROTECTED] http://tiffany.indyramp.com/mailman/listinfo/masq Admin requests can be handled by web (above) or [EMAIL PROTECTED]
