I''m having trouble sending mail from my mail server.
It''s located within my local network (192.168.1.0/24).
(I know that''s a bad idea... ) I only have one static
IP address on the external interface [ppp0] of my
firewall (internal iface [eth1] is 192.168.1.254).
currently
/etc/shorewall/masq:
ppp0 192.168.1.0/24 66.74.90.88
/etc/shorewall/rules:
DNAT net loc:192.168.1.5 tcp smtp - 66.74.90.88
I can accept SMTP connections from the internet fine.
Just can''t send mail back. From the FAQ and Startup
Guide I think I need to do the following (specifically
FAQ#2):
/etc/shorewall/interfaces:
Add "multi" as an option for eth1
/etc/shorewall/rules:
DNAT loc:192.168.1.0/24 loc:192.168.1.5 tcp
smtp - 66.47.90.88:192.168.1.254
Not sure if this is right. My internal hosts can
reach the mailserver OK. I want the mailserver to get
out to the internet (Exim is giving me "Conection
timed out"). I can ping and ssh and telnet and www
from 192.168.1.5 fine. If I "telnet some.mail.host
25" I fail.
ACCEPT net loc:192.168.1.5 tcp 25 - all
DNAT loc:192.168.1.5 net tcp smtp - 66.47.90.88
????
tgl
====the proof of this theorem is left as an exercise.
__________________________________________________
Do you Yahoo!?
Y! Web Hosting - Let the expert host your web site
http://webhosting.yahoo.com/