Can you do it from the linux box? Are you running DSL, which by then you need to lower your outgoing MTU? Have you logged any packets? Have you run a tcpdump? and the list goes on..... Thanks, ____________________________________________ George Vieira Systems Manager georgev@xxxxxxxxxxxxxxxxxxxxxx Citadel Computer Systems Pty Ltd http://www.citadelcomputer.com.au -----Original Message----- From: system administrator [mailto:sysadmails@xxxxxxxxx] Sent: Thursday, July 17, 2003 1:11 AM To: netfilter@xxxxxxxxxxxxxxxxxxx Subject: connecting to a SMTP/POP server on the internet Hi there, We want to connect to a SMTP/POP server on the internet from our LAN with: iptables -A FORWARD -i eth0 -p tcp -j ACCEPT iptables -A FORWARD -i eth0 -p udp -j ACCEPT iptables -A FORWARD -j DROP iptables -t nat -o eth1 -A POSTROUTING -j MASQUERADE When we try to access from the workstation to the POP server we get a message: 'connection to x.com timed out', we can however access the mail on the firewall - even if the connection is slow. Please help us out ... # Our general setup: # RedHat 8.0 firewall with iptables installed on PII 400MHz # eth0 = our LAN and eth1 = Internet # cat /proc/sys/net/ipv4/ip_forward => 1 # gateway on workstation in LAN pointing to firewall # gateway defined for eth1 pointing to router Thanks in advance, Frank __________________________________ Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month! http://sbc.yahoo.com
