From mboxrd@z Thu Jan 1 00:00:00 1970 From: "Roberto Rossi" Subject: mail server problem Date: Fri, 7 Nov 2003 16:10:01 +0100 Sender: netfilter-admin@lists.netfilter.org Message-ID: <005e01c3a541$375c29b0$0101010a@tv.smc> Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_005B_01C3A549.98FBF2B0" Return-path: Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: To: netfilter@lists.netfilter.org This is a multi-part message in MIME format. ------=_NextPart_000_005B_01C3A549.98FBF2B0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hello all, I've a range of 30 public internet addresses to manage starting, say, = from 213.25.24.0 to 213.25.24.31 netmask of course 255.255.255.224. My firewall (Red Hat 9.0, latest kernel) public IP is 213.25.24.30 the = router address is 213.25.24.1 and the LAN network is 10.1.0.0/16. I've an internal mail server, say, 10.1.1.2 which I would like to see = from the outside as 213.25.24.3, one IP of my range. Except DNS registration, what are the correct steps to make this = possible? I just set this rule on my firewall: iptables -t nat -A PREROUTING -p tcp -i eth0 -d 213.25.24.3 --dport 25 = -j DNAT --to 10.1.1.2:25 but I guess it's not enough because it's not working. A help is really appreciated, thanks in advance. Roberto - Italy ------=_NextPart_000_005B_01C3A549.98FBF2B0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hello all,
 
I've a range of 30 public internet = addresses to=20 manage starting, say, from 213.25.24.0 to 213.25.24.31 netmask of course = 255.255.255.224.
 
My firewall (Red Hat 9.0, latest=20 kernel) public IP is 213.25.24.30 the router address=20 is 213.25.24.1 and the LAN network is = 10.1.0.0/16.
 
I've an internal mail server, say, = 10.1.1.2 which=20 I would like to see from the outside as 213.25.24.3, one IP of my=20 range.
 
Except DNS registration, what are the = correct=20 steps to make this possible?
 
I just set this rule on my = firewall:
iptables -t nat -A PREROUTING -p tcp = -i eth0 -d=20 213.25.24.3 --dport 25 -j DNAT --to 10.1.1.2:25
but I guess it's not enough because = it's not=20 working.
 
A help is really appreciated, thanks = in=20 advance.
 
Roberto - Italy   =20
------=_NextPart_000_005B_01C3A549.98FBF2B0--