All, I have a network with 4 computers behind the firewall. Three of these are workstations. The firewall works fine for these. Here is the fun part. One of the computers is a server with the Windows 2000 Operating System installed. It is running IIS, and a mail server. The SMTP portion of IIS is configured to send email out on port 1125. I have DNAT working for the WEB server and SMTP. There is, however, an issue with one of the applications that is running on the web server. It will not send email out on port 1125. The rules that I am trying to get to work are: ## Outgoing SNAT Port 1125 only $IPTABLES -A PREROUTING -t nat -i $INTERNALIF -p tcp --sport 1125 -j SNAT --to $MYADDR $IPTABLES -A FORWARD -i $INTERNALIF -p tcp -d 192.168.0.4 --sport 1125 -j ACCEPT $INTERNALIF is the Private Interface $MYADDR is the Public IP Address 192.168.0.4 is the Private IP of the IIS Server Thank you in advance for any assistance that you may be able to provide. Bill
