Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 2 subscribers
  • Views 766 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Ident proxy not working?

BarryG
On 3.208, we have 3 interfaces:
EXT
Mail
Web

If webserver tries to send email to mailserver, mailserver tries to do an Ident (113 tcp) connection to webserver.

This is showing up in packetfilter livelog even though I have the "Ident Relay" turned on (forward is off).

telnet 113 to webserver fails.

telnet 113 to firewall succeeds.

No NAT or MASQ is in use. (Real IP's on all servers.)

Do I need to do a DNAT to force all ident to go to firewall's IP or something?

Thanks,
Barry


This thread was automatically locked due to age.
Parents
  • 0
    The manual is unclear about this.

    Am I supposed to setup DNAT for ANY -> Ident -> localhost or something like that?

    Thanks,
    Barry
  • 0 in reply to BarryG
    Barry,

    ident proxy is good for outgoing connections
    which will be returned with an ident request!
    (Only if masq or NAT is configured)

    In your case the destination IP of the request
    is not the firewall , so the ident proxy isn't
    responsible.

    You need a packet filter allowing ident to your
    webserver!

    read you
    o|iver
Reply
  • 0 in reply to BarryG
    Barry,

    ident proxy is good for outgoing connections
    which will be returned with an ident request!
    (Only if masq or NAT is configured)

    In your case the destination IP of the request
    is not the firewall , so the ident proxy isn't
    responsible.

    You need a packet filter allowing ident to your
    webserver!

    read you
    o|iver
Children
No Data