This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Direct SMTP down a VPN to a remote box. How.

I am trying to do this:

Incoming mail to SMTP Proxy
Redirect this mail to a remote network over VPN link

I hopped on ASL and tried a test first, Network - Tools TCP connect and tried to connect to the remote SMTP server, the connection times out.
It looks to me like ASL is not allowing traffic that originates on the ASL box down the VPN link.

I have tried playing with the packet filters and nothing seems to work. I cannot even ping the remote box using network tools.

The remote box is up and running and I can ping and telnet to the SMTP server from my LAN (It's a LAN to LAN vpn).

What rules/jiggary do I need to do to allow the ASL box to see down the VPN to the remote LAN ?

I have tried:
RedInterface->remoteipsecname All Allow
RedInterface->localipsecendname All Allow
Any Any Any Allow

etc....

Nothing shows in the packet filter violation logs [:(]

This thread was automatically locked due to age.

Parents

0 pablito over 22 years ago

I do this and it can work. Normally the VPN endpoints are not part of the tunnel.

So, create an SNAT like:
ASL_External_Interface--->VPN_LAN--->eth0_interface

You want VPN traffic originating from ASL itself to SNAT from the internal interface so it can go down the VPN.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 pablito over 22 years ago

I do this and it can work. Normally the VPN endpoints are not part of the tunnel.

So, create an SNAT like:
ASL_External_Interface--->VPN_LAN--->eth0_interface

You want VPN traffic originating from ASL itself to SNAT from the internal interface so it can go down the VPN.
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 Simon Shaw over 22 years ago in reply to pablito

Will try it out ! Great thanks. Makes sense when you think about it.

Cheers.
Cancel
Vote Up 0 Vote Down

Cancel