I have a three-site network with an ASL box (all ASL v. 6.311) at each location linking to the other two using IPSEC VPN connections. Recently I have installed a mailserver on the DMZ at site 1, and I have it successfully sending & receiving mail from the outside world, and I can connect to it without issue from site 1's subnet.
However, I have not been able to figure out how to access it from sites 2 and 3. For obvious reasons, I want the traffic from sites 2 & 3 to travel over the VPN and hit the private (DMZ) ip address, not the public one, but no combination of rules, DNAT/SNAT rules, etc. has yet worked. I'm sure I must be overlooking something obvious, but I can't figure out what.
Suggestions anyone?
This thread was automatically locked due to age.
