On Thu, Oct 04, 2007 at 04:31:06PM +0200, Tristan DEFERT wrote: > hi all, > > since wanadoo/orange blocks any outgoing smtp traffic other than to > their SMTP server/relay, my customers who have such xDSL accounts cannot > reach directly the smtp service we provide anymore. > > I'd like to trick that by allowing them to reach my smtp server of port > 26 instead of 25, without perturbing the other customers. > > I got a firewall that bridges a WAN zone to my DMZ zone. > In DMZ zone is the SMTP server that answers on port 25, as usual. > > I'd like that any incoming connection to my smtp server on port 26 to be > redirect to this smtp server on port 25. > > But i'm a bit confused: what should i do? DNAT or REDIRECT? on the mail > server itself :-( or on the firewall :-) ? > You are going about this the wrong way. The "correct" way for them to connect would be to use the submission port (587), which is defined as the entry point for new mail into the SMTP system. Then you can have your mail server listen on 587 and 25 and then you don't have to worry about redirecting using shorewall.
Regards, -Roberto -- Roberto C. Sánchez http://people.connexer.com/~roberto http://www.connexer.com
signature.asc
Description: Digital signature
------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
