[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

possible or not..

To: misc_(_at_)_openbsd_(_dot_)_org
Subject: possible or not..
From: Jason Hunt <jason_(_dot_)_hunt_(_at_)_niicommunications_(_dot_)_com>
Date: Mon, 05 Mar 2001 10:11:36 -0600

greetings,

I am trying to accomplish something with ipnat, and I am not
sure if its even possible.  I have read the ipnat man pages
and couldn't find anything addressing this issue.

here is the scenerio

I have port 25 and port 80 redirected from the firewall to
an non routable ip - this works fine.

The problem is that if I try to send mail to my mta machine
from an internal machine behind the firewall it actually
connects to port 25 on the firewall and doesn't get redirected
to the mta machine like packets from the outside do.

The only reason I need to do this is because of some log
files I need to send to my machine running sendmail.

I have this in my ipnat.rules:

map xl0 192.168.2.0/24 -> xl0/32 portmap tcp/udp 10000:20000
map xl0 192.168.2.0/24 -> xl0/32

rdr xl0 xl0/32 port 25 -> 192.168.2.4 port 25
rdr xl0 xl0/32 port 80 -> 192.168.2.4 port 80

rdr xl1 192.168.2.0/24  port 25 -> 192.168.2.4 port 25


The rdr xl1 doesn't work.  It may be because I need to
map xl1 somehow - but not sure what I need to add.

I just need machines 192.168.2.2-3 in these rules, but 
the entire block would be fine as well.  Can someone
please explain if this is possilbe, and if so how to
accomplish it?  Thanks

Prev by Date: Re: Any good replacement for M$ Exchange ?
Next by Date: svscan error with tinydns
Previous by thread: where's my controlling terminal
Next by thread: svscan error with tinydns
Index(es):
- Date
- Thread

Visit your host, monkey.org