i guess i need to ask what role you play in the lan admin? i think it might be easier to modify mx type pointer mechanisms on the clients instead of having the fw do all this wasteful redirs. they are wasteful because you now where you want the mail traffic to go - this isnt clever. its a way to perform this task but its not very elegant and doesnt scale for manintenance. out... -----Original Message----- From: netfilter-bounces@xxxxxxxxxxxxxxxxxxx [mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx]On Behalf Of Sasa Stupar Sent: Monday, December 20, 2004 1:33 PM To: Netfilter ML Subject: Re: Redirection question Sasa Stupar a Ãcrit : > Sasa Stupar a Ãcrit : > >> Hi! >> >> I have installed mail server on my lan. Now I would like to redirect >> all lan users to use that mail server as smtp (similar as transparent >> proxy with squid). How do I do that smtp redirection? >> I was thinking something like: >> ------------- >> iptables -t nat -A PREROUTING -i eth0 -s ! smtp-box -p tcp --dport 25 >> -j DNAT --to smtp-box:25 >> iptables -t nat -A POSTROUTING -o eth0 -s local-network -d smtp-box -j >> SNAT --to iptables-box >> iptables -A FORWARD -s local-network -d smtp-box -i eth0 -o eth0 -p >> tcp --dport 25 -j ACCEPT >> -------------- >> Is this correct? >> >> Regards, >> Sasa >> > > I forgot some more infos: > running on FC3 with sendmail. This is also a router with 2 NIC > installed: one for internet and one for LAN. > > Sasa Solved. It is working as I have mentioned above. Sasa
