On Wed, 2009-07-15 at 09:32 +0200, Pascal Hambourg wrote: > The INPUT chain is only for local delivery, forwarded traffic does not > go through it. So you do not need to accept inbound traffic to port > 10025 in the INPUT chain. You need to accept the return traffic in the > FORWARD chain. > > If the TRACE target is not available, you can insert rules with the LOG > target at the beginning of each table/chain. You can also use a packet > sniffer such as tcpdump or wireshark to watch the traffic at each interface. Hi Pascal! I finally managed to set it up correctly. The problem was with another rule blocking traffic to port 25. Thank you! Regards, Simion. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
