Displaying 2 results from an estimated 2 matches for "exip".
Did you mean:
eip
2003 Nov 21
0
how to get IPFW rules for SMTP server behind NAT server "right"?
...t interfaces
inif="en1" # internal gateway interface name
exif="en2" # external gateway interface name
innr="10.0.0.0/24" # LOCAL network range
inip="10.0.0.1" # gateway's internal (NAT) IP address
exip="any"
gateway_server="10.0.0.1" # the gateway/firewall box, 2 interfaces
smtp_server="10.0.0.2" # SMTP server behind NAT firewall
client_machine="10.0.0.3" # a client machine inside the NAT firewall
i've launched NATD as follows:
/usr/...
how to get IPFW rules for SMTP server behind NAT server "right"? (freebsd-security: message 1 of 20)
2003 Nov 21
1
how to get IPFW rules for SMTP server behind NAT server "right"? (freebsd-security: message 1 of 20)
...mtp_server} 25 established
ipfw add 7002 allow log tcp from ${smtp_server} 25 to any setup
ipfw add 7003 allow tcp from ${smtp_server} 25 to any established
right?
>># allow clients to communicate with external smtp servers
>> ipfw add 7002 allow log tcp from ${innr} 1024-65535 to ${exip} 25
>> ipfw add 7003 allow log tcp from ${exip} 25 to ${innr} 1024-65535
>
> Why? Wouldn't you want them to send their mail to your internal mail
> server, which would then send it out?
usually, yes
BUT, sometimes i want to be able to use a local LAN mail client to directly...