Re: [qmailtoaster] behind firewall on LAN IP
Can I ask what sort of firewall you are using ... is it a commercial box or is it a DIY box (ie Smoothwall, M0n0Wall etc) if it is one of these DIY boxes they will have an excellent support forum that will probably be able to assist you. HTH Ringo Original Message From: [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] behind firewall on LAN IP Date: Sun, 2 Mar 2008 22:51:48 -0600 Sorry, I didn't read slowly enough to see that this is local. I'm assuming that you can ping/reach other machines on your LAN? Either way, that's a networking issue, not a qmail issue. Not sure where to send you as I'm not sure folks want to discuss networking issues on the list. Mike On Mon, 3 Mar 2008 14:55:35 +1100, David Campbell wrote: I cant ping or ssh to it or browse to its IP from another local IP On 03/03/2008, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: It fully works fine with a private IP, I've had up to three systems up on NAT IP's working. When you say it's not working, you might want to explain a little more so that there is a sense of what the problem is. Perhaps the firewall is doing something funky which is preventing the mail from getting in/out. Mike On Mon, 3 Mar 2008 14:17:18 +1100, David Campbell wrote: I have no problems running QMT when I give it its own public IP address but when I try to run one behind a firewall with a local IP address it doesn't work unless I disable the firewall, and then of course it all goes to shit... Is there any way to run this thing behind a firewall, and what do I need to do to make it do so? Or do I simply have to look at another solution for running a mail server behind a firewall? Thanks - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] com - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] behind firewall on LAN IP
David Campbell wrote: I have no problems running QMT when I give it its own public IP address but when I try to run one behind a firewall with a local IP address it doesn't work unless I disable the firewall, and then of course it all goes to shit... Is there any way to run this thing behind a firewall, and what do I need to do to make it do so? Or do I simply have to look at another solution for running a mail server behind a firewall? Thanks When you look at the toaster firewall script (firewall.sh), you might notice near the top the following comment: ## Drop outside packets with local addresses - anti-spoofing measure In order to access the toaster from a local address, you need to add a line to that script immediately before the comment above which allows traffic from your particular local subnet, such as: iptables -A INPUT -s 192.168.1.0/255.255.255.0 -j ACCEPT Be sure to specify whatever's appropriate for your local subnet. That should fix it for you. -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] behind firewall on LAN IP
I see someone posted about the firewall script. It completely skipped my mind as I don't use it when installing QMT. Mike - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] behind firewall on LAN IP
Thank you very much eric, the firewall.sh script sounds more like what my problem is, so is it just a matter of adjusting the firewall.sh script, then running it again? Will that erase the old settings and reconfigure the qmt firewall? As for everyone else, my installation of qmt is the EXACT qmt the easy way from the front page installed on Centos4.3 except for domain keys at the end, the external firewall running as the gateway for this network should not even enter the discussion because its only local traffic, and yes the LAN functions appropriately for other PC's I have a few servers and vmware hosts with a few guests on it, and a few PC's and they all seem to function fine with regard to local traffic. On 04/03/2008, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: I see someone posted about the firewall script. It completely skipped my mind as I don't use it when installing QMT. Mike - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- David Campbell E: [EMAIL PROTECTED] W: http://www.bigbighuge.com The information in this E-mail and any attachments is confidential. It is intended solely for the attention and use of the named addressee(s). If you are not the intended recipient, or person responsible for delivering this information to the intended recipient, please notify the sender immediately. Unless you are the intended recipient or his/her representative you are not authorised to, and must not read, copy, distribute, use or retain this message or any part of it. Opinions, conclusions and other information expressed in this message are not given or endorsed by the sender unless otherwise indicated by an authorised officer independent of this message. ...when was the last time you did a backup?...
Re: [qmailtoaster] behind firewall on LAN IP
David Campbell wrote: Thank you very much eric, the firewall.sh script sounds more like what my problem is, so is it just a matter of adjusting the firewall.sh script, then running it again? Will that erase the old settings and reconfigure the qmt firewall? Yes, and yes. You're welcome. -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] behind firewall on LAN IP
oh, one more question, how would I make this adjustment on a qmt-iso installation, seeing how it runs all the setup itself... I want to make sure just searching for firewall.sh editing and running it to correct the firewall wont screw up anything else... On 04/03/2008, Eric Shubert [EMAIL PROTECTED] wrote: David Campbell wrote: Thank you very much eric, the firewall.sh script sounds more like what my problem is, so is it just a matter of adjusting the firewall.sh script, then running it again? Will that erase the old settings and reconfigure the qmt firewall? Yes, and yes. You're welcome. -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- David Campbell E: [EMAIL PROTECTED] W: http://www.bigbighuge.com The information in this E-mail and any attachments is confidential. It is intended solely for the attention and use of the named addressee(s). If you are not the intended recipient, or person responsible for delivering this information to the intended recipient, please notify the sender immediately. Unless you are the intended recipient or his/her representative you are not authorised to, and must not read, copy, distribute, use or retain this message or any part of it. Opinions, conclusions and other information expressed in this message are not given or endorsed by the sender unless otherwise indicated by an authorised officer independent of this message. ...when was the last time you did a backup?...
Re: [qmailtoaster] behind firewall on LAN IP
David Campbell wrote: oh, one more question, how would I make this adjustment on a qmt-iso installation, seeing how it runs all the setup itself... I want to make sure just searching for firewall.sh editing and running it to correct the firewall wont screw up anything else... QMT-ISO does not install the same firewall as the instructions on the site. The firewall I provide with it does not block local IP addresses. And with the ISO you can always turn the firewall off by firewall down. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] behind firewall on LAN IP
It fully works fine with a private IP, I've had up to three systems up on NAT IP's working. When you say it's not working, you might want to explain a little more so that there is a sense of what the problem is. Perhaps the firewall is doing something funky which is preventing the mail from getting in/out. Mike On Mon, 3 Mar 2008 14:17:18 +1100, David Campbell wrote: I have no problems running QMT when I give it its own public IP address but when I try to run one behind a firewall with a local IP address it doesn't work unless I disable the firewall, and then of course it all goes to shit... Is there any way to run this thing behind a firewall, and what do I need to do to make it do so? Or do I simply have to look at another solution for running a mail server behind a firewall? Thanks - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] behind firewall on LAN IP
I cant ping or ssh to it or browse to its IP from another local IP On 03/03/2008, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: It fully works fine with a private IP, I've had up to three systems up on NAT IP's working. When you say it's not working, you might want to explain a little more so that there is a sense of what the problem is. Perhaps the firewall is doing something funky which is preventing the mail from getting in/out. Mike On Mon, 3 Mar 2008 14:17:18 +1100, David Campbell wrote: I have no problems running QMT when I give it its own public IP address but when I try to run one behind a firewall with a local IP address it doesn't work unless I disable the firewall, and then of course it all goes to shit... Is there any way to run this thing behind a firewall, and what do I need to do to make it do so? Or do I simply have to look at another solution for running a mail server behind a firewall? Thanks - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- David Campbell E: [EMAIL PROTECTED] W: http://www.bigbighuge.com The information in this E-mail and any attachments is confidential. It is intended solely for the attention and use of the named addressee(s). If you are not the intended recipient, or person responsible for delivering this information to the intended recipient, please notify the sender immediately. Unless you are the intended recipient or his/her representative you are not authorised to, and must not read, copy, distribute, use or retain this message or any part of it. Opinions, conclusions and other information expressed in this message are not given or endorsed by the sender unless otherwise indicated by an authorised officer independent of this message. ...when was the last time you did a backup?...
Re: [qmailtoaster] behind firewall on LAN IP
Sorry, I didn't read slowly enough to see that this is local. I'm assuming that you can ping/reach other machines on your LAN? Either way, that's a networking issue, not a qmail issue. Not sure where to send you as I'm not sure folks want to discuss networking issues on the list. Mike On Mon, 3 Mar 2008 14:55:35 +1100, David Campbell wrote: I cant ping or ssh to it or browse to its IP from another local IP On 03/03/2008, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: It fully works fine with a private IP, I've had up to three systems up on NAT IP's working. When you say it's not working, you might want to explain a little more so that there is a sense of what the problem is. Perhaps the firewall is doing something funky which is preventing the mail from getting in/out. Mike On Mon, 3 Mar 2008 14:17:18 +1100, David Campbell wrote: I have no problems running QMT when I give it its own public IP address but when I try to run one behind a firewall with a local IP address it doesn't work unless I disable the firewall, and then of course it all goes to shit... Is there any way to run this thing behind a firewall, and what do I need to do to make it do so? Or do I simply have to look at another solution for running a mail server behind a firewall? Thanks - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] behind firewall on LAN IP
Ok, so that sounds like a firewall issue, not a qmail issue. Try to find someone who knows your firewall or look up it's documentation. If you google your firewall along with qmail/smtp, you should be able to get some leads. Mike On Mon, 3 Mar 2008 14:55:35 +1100, David Campbell wrote: I cant ping or ssh to it or browse to its IP from another local IP On 03/03/2008, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: It fully works fine with a private IP, I've had up to three systems up on NAT IP's working. When you say it's not working, you might want to explain a little more so that there is a sense of what the problem is. Perhaps the firewall is doing something funky which is preventing the mail from getting in/out. Mike On Mon, 3 Mar 2008 14:17:18 +1100, David Campbell wrote: I have no problems running QMT when I give it its own public IP address but when I try to run one behind a firewall with a local IP address it doesn't work unless I disable the firewall, and then of course it all goes to shit... Is there any way to run this thing behind a firewall, and what do I need to do to make it do so? Or do I simply have to look at another solution for running a mail server behind a firewall? Thanks - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]