RE: mail server problem

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

May be you should also add this rule :
iptables -A FORWARD -p TCP -i eth0 -o eth1 -d 10.1.1.2 --dport 25 -j allowed
eth1 is your NIC connected to your private LAN network is 10.1.0.0/16.

-----Message d'origine-----
De : Roberto Rossi [mailto:roberto.rossi@xxxxxx]
Envoyé : vendredi 7 novembre 2003 15:10
À : netfilter@xxxxxxxxxxxxxxxxxxx
Objet : mail server problem

Hello all,
 
I've a range of 30 public internet addresses to manage starting, say, from 213.25.24.0 to 213.25.24.31 netmask of course 255.255.255.224.
 
My firewall (Red Hat 9.0, latest kernel) public IP is 213.25.24.30 the router address is 213.25.24.1 and the LAN network is 10.1.0.0/16.
 
I've an internal mail server, say, 10.1.1.2 which I would like to see from the outside as 213.25.24.3, one IP of my range.
 
Except DNS registration, what are the correct steps to make this possible?
 
I just set this rule on my firewall:
iptables -t nat -A PREROUTING -p tcp -i eth0 -d 213.25.24.3 --dport 25 -j DNAT --to 10.1.1.2:25
but I guess it's not enough because it's not working.
 
A help is really appreciated, thanks in advance.
 
Roberto - Italy   
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux