Ok this is a very odd layout so I will try to explain it best.
10.10.11.x internal network 255.255.255.0 mask
10.10.11.127 Astaro Firewall internal
10.192.234.0 PPTP-Pool
168.103.x.x Astaro External
Ok the mail server uses 2 network cards. One for internal use 10.10.11.17 mask 255.255.255.248 and a external address for outside connections (no its not natted and there is a reason for this...it cant be natted.) The default Gateway for this machine is the outside gateway...same one used by the Astaro Server.
Now internally everything works like a charm if people use the internal DNS which resolves the mail server to 10.10.11.17. Outside also works perfect because it resolves the real outside address. So people get mail internally and externally fine.
Now the problem we are having is when people VPN in. They cannot get mail. When connected to the VPN we cannot ping the mail server. I can ping everything else in the 10.10.11.x range except the mail server.
As a test I changed the default Gateway to 10.10.11.127 (astaro server) which is the Astaro Internal IP. Once connected to the VPN I could ping and get mail internal. But when I do this connections on the outside do not work.
SO my question is how do I get around this. Is there some kind of route I need to setup on the Astaro server or the mail server (its a Redhat 8.0 machine)? Unfortunently the machine cannot be NAT'ed so thats not a choice. Would adding a 3rd network card and giving it a 10.192.234.x address resolve this. Is there anyway to setup to gateways on Linux for the mail server. Set one for eth1 and another for eth0?
please help!!
This thread was automatically locked due to age.
