I'm trying to setup a mail server on a virtual machine inside a DMZ zone with a ASG120, Firmware version: 7.509. First I tried to open all ports for E-mail services directly without any luck.
Then I've created a Full NAT between this domU and the DMZ interface to bypass E-mail but also with no luck at all.
I've always seen a connection timed out on the logs:
Aug 23 13:53:47 development postfix/error[6719]: 8BAF812DEF: to=, relay=none, delay=424949, delays=424844/105/0/0.16, dsn=4.4.1, status=deferred (delivery temporarily suspended: connect to aspmx5.googlemail.com[74.125.157.27]:25: Connection timed out)
Here is my main.cf
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
biff = no
append_dot_mydomain = no
readme_directory = no
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
myhostname = development.domain.org
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
mydestination =
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
myorigin = domain.org
relay_domains =
local_recipient_maps =
local_transport = error:local mail delivery is disabled
Here's what I see at the Packet Filter Log
14:01:35 Connection using NAT TCP
10.128.0.253 : 47109
→
74.125.230.119 : 25
[SYN] len=60 ttl=64 tos=0x10 srcmac=00:16:3e:01:11:00 dstmac=00:1a:8c:11:4a:fa
14:01:36 Connection using NAT TCP
10.128.0.253 : 47109
→
10.128.0.253 : 25
[SYN] len=60 ttl=63 tos=0x10
14:01:56 Connection using NAT TCP
10.128.0.253 : 52264
→
74.125.230.120 : 25
[SYN] len=60 ttl=64 tos=0x10 srcmac=00:16:3e:01:11:00 dstmac=00:1a:8c:11:4a:fa
14:01:57 Connection using NAT TCP
10.128.0.253 : 52264
→
10.128.0.253 : 25
[SYN] len=60 ttl=63 tos=0x10
I'll appreciate any help
This thread was automatically locked due to age.
