This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DNAT Mailserver to DMZ proxy

G'Day, and HELP...

I want to DNAT incoming packets coming direct to my mail server, to go through the proxy.

The way I understand it, if I DNAT on SMTP for ANY to go to the firewall, this will crate a problem when the firewall itself attempts to send mail to the mail server.

Is there an easy way around this? Am I missing something.

Many thanks

Darryl

This thread was automatically locked due to age.

Parents

0 Gert Hansen over 23 years ago

Hy Darryl,

i take a shot in the dark,
if you redirekt the ip specified in the MX record of your domain

'MX Domain IP' 'SMTP' 'External Interface' 'SMTP'
and an SMTP route 'Domain' -> 'local mail server ip'

i think every mail for this domain should go through the firewall.

hope that helps,
kind regards,
gert
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Gert Hansen over 23 years ago

Hy Darryl,

i take a shot in the dark,
if you redirekt the ip specified in the MX record of your domain

'MX Domain IP' 'SMTP' 'External Interface' 'SMTP'
and an SMTP route 'Domain' -> 'local mail server ip'

i think every mail for this domain should go through the firewall.

hope that helps,
kind regards,
gert
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 Darryl Smith over 23 years ago in reply to Gert Hansen

Thanks...

Problem is that MX DOMAIN IP == Local Mail Server. This creates a circular route...

I think what I need to do is to DNAT an input from ETH2. This is not an option under webadmin....

Darryl
Cancel
Vote Up 0 Vote Down

Cancel