RE: SMTP HTTP port allow

[ads nat <adsnat@xxxxxxxxx>]

Sorry for delay in reply. I was away.

I tried as you said but didi not worked.

 

I will brief about my settings and problems. Also attaching my rc.local file.

 

I am getting bandwidth form ISP. It comes to my Linux 8.0 server which acts as router(through tennelling). Squid is installed on Linux server which distributes bandwidth to LAN users.

 

I am attching rc.local file which gives settings. IPTABLES file is totally commented.

 

Problem -1.

When I try to send email to squid mailing list from LAN user I get following :

 

Hi. This is the qmail-send program at squid-cache.org.
I'm afraid I wasn't able to deliver your message to the following error :

****
This is a permanent error; I've given up. Sorry it didn't work out.

<squid-users@xxxxxxxxxxxxxxx>:
ezmlm-reject: fatal: Sorry, I don't accept messages of MIME
Content-Type 'multipart/alternative' (#5.2.3)

--- Below this line is a copy of the message.

Return-Path: <adssquid@xxxxxxxxx>
Received: (qmail 65674 invoked from network); 27 Aug 2003 11:00:53
-0000
Received: from web20502.mail.yahoo.com (216.136.226.137)
  by squid-cache.org with SMTP; 27 Aug 2003 11:00:53 -0000
Message-ID: <20030827110050.81255.qmail@xxxxxxxxxxxxxxxxxxxxxxx>
Received: from [203.94.221.44] by web20502.mail.yahoo.com via HTTP;
Wed, 27 Aug 2003 04:00:50 PDT
Date: Wed, 27 Aug 2003 04:00:50 -0700 (PDT)
From: ads squid <adssquid@xxxxxxxxx>
Subject: RE: [squid-users] delay pool problem
To: Adam Aube <aaube@xxxxxxxxxxxxxxxxxxxx>, squid-users@xxxxxxxxxxxxxxx
In-Reply-To: <000001c36c08$42969990$647fa8c0@xxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="0-181363567-1061982050=:80891"

--0-181363567-1061982050=:80891
Content-Type: text/plain; charset=us-ascii

*****

PROBLEM -1

 

Also LAN user can not send send email from outlook express.

 

When I send it from users machine with Dialup connection (Not my LAN supply) then mail goes in both cases.

 

PROBLEM -2

When I try to upload files to UNIX ftp server/ web server of web service provider who hosts my web site (Different from bandwidth provider) it gives following error :

 

Login successful

COMMAND:> TYPE I

200 Type set to I.

COMMAND:> pwd

257 "/" is current directory.

COMMAND:> TYPE A

200 Type set to A.

STATUS:> Retrieving directory listing...

COMMAND:> PORT 192,168,0,42,4,62

500 Illegal PORT command.

STATUS:> Error opening data socket :

 

I am using Cute ftp for uploading.

 

When I upload through dialup connection it goes without problem

 

I spoke with bandwidth supplier and webserver provider. They there must be problems with my settings.

 

Thanks for help

 

 

 

 

George Vieira <georgev@xxxxxxxxxxxxxxxxxxxxxx> wrote:

Well... have you tried it??

 

Thanks,

 

____________________________________________
George Vieira
Citadel Computer Systems Pty Ltd Systems Manager georgev AT citadelcomputer DOT com DOT au

Citadel Computer Systems Pty Ltd

Phone : +61 2 9955 2644 HelpDesk: +61 2 9955 2698 http://www.citadelcomputer.com.au

 

 

-----Original Message-----
From: ads nat [mailto:adsnat@xxxxxxxxx]
Sent: Wednesday, August 27, 2003 9:50 PM
To: George Vieira; netfilter@xxxxxxxxxxxxxxxxxxx
Subject: RE: SMTP HTTP port allow

My code has become as follows :

 

******

iptables -A POSTROUTING -t nat -p tcp --dport 25 -j MASQUERADE

iptables -A POSTROUTING -t nat -p tcp -s 192.168.0.42 -d 207.106.22.35 --dport 21 -j MASQUERADE
iptables -A POSTROUTING -t nat -p tcp -s 192.168.0.23 -d 207.106.22.35 --dport 21 -j MASQUERADE

iptables -t nat -A PREROUTING -p TCP --dport 80 -j REDIRECT --to-port 3128
*****

Is this O.K.

Thanks

---

Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software

Attachment: rc.local
Description: rc.local