I presume you are using Iptables. Start logging everything you drop or reject and you will then see what needs adjusting.
>From memory, my setting is... 1. DNAT incoming tcp port 25 to your mail server 2. accept these readdressed packets on forward chain 3. SNAT outgoing packets tcp port 25 4. accept outgoing packets on forward chain 5. do the usual accept "RELATED,ESTABLISHED" stuff. I split my forward chains according to incoming interface, rather than using the FORWARD chain itself, and filter in those specific chains. Cameron. > -----Original Message----- > From: Lisa [mailto:[EMAIL PROTECTED]] > Sent: Friday, 29 November 2002 01:48 > To: [EMAIL PROTECTED] > Subject: problems setting up NT Mailserver inside linux firewall > > > I'm setting up a linux firewall and moving an NT Mail server > onto a new network behind this firewall. The machine where > the firewall resides has one internal interface and one > external interface. Dummy ip addresses are used for machines > on the LAN inside the firewall. > > At the moment, we have just changed the mail mx record to > correspond to the new network address . > > In my firewall I have a rule that maps any traffic destined > for the mail address to the internal mail server dummy ip. > When I email from the mail account to any external mail > addresses and vice versa it doesn't work. > > can anyone help me as I have no idea what to do. > > > > > -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
