port 25 & 110 forward

All of lore.kernel.org
 help / color / mirror / Atom feed

* port 25 & 110 forward
@ 2003-07-14 18:43 Brei, Matt
  2003-07-14 18:55 ` Shawn
  2003-07-15  8:17 ` Rob Sterenborg
  0 siblings, 2 replies; 3+ messages in thread
From: Brei, Matt @ 2003-07-14 18:43 UTC (permalink / raw)
  To: netfilter

[-- Attachment #1: Type: text/plain, Size: 948 bytes --]

I'm trying to forward smtp and pop3 from my router to my mail server at
10.13.110.1.  I've tried both of the following iptables commands,
neither has worked.

 

$IPTABLES -t nat -A PREROUTING -i eth1 -p tcp --dport 25 -j DNAT --to
10.13.110.1

$IPTABLES -t nat -A PREROUTING -i eth1 -p tcp --dport 110 -j DNAT --to
10.13.110.1

$IPTABLES -A FORWARD -p tcp -d 10.13.110.1 --dport 25 -j ACCEPT

$IPTABLES -A FORWARD -p tcp -d 10.13.110.1 --dport 110 -j ACCEPT

 

 

$IPTABLES -t nat -A PREROUTING -d <public_ip> -p tcp --dport 25 -j DNAT
--to 10.13.110.1:25

$IPTABLES -A FORWARD -p tcp --dport 25 -j ACCEPT

$IPTABLES -t nat -A PREROUTING -d <public_ip> -p tcp --dport 110 -j DNAT
--to 10.13.110.1:110

$IPTABLES -A FORWARD -p tcp --dport 110 -j ACCEPT

 

The later works great for ftp and http forwards.  Why won't it work for
25 and 110?

 

eth0= 10.13.110.1

eth2= <public_ip>

 

Matt Brei

 


[-- Attachment #2: Type: text/html, Size: 4441 bytes --]

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: port 25 & 110 forward
  2003-07-14 18:43 port 25 & 110 forward Brei, Matt
@ 2003-07-14 18:55 ` Shawn
  2003-07-15  8:17 ` Rob Sterenborg
  1 sibling, 0 replies; 3+ messages in thread
From: Shawn @ 2003-07-14 18:55 UTC (permalink / raw)
  To: Brei, Matt; +Cc: netfilter@lists.netfilter.org

Can you telnet to port 25, and does it connect you to your private host?

If so, you have an SMTP issue.

On Mon, 2003-07-14 at 13:43, Brei, Matt wrote:
> I’m trying to forward smtp and pop3 from my router to my mail server
> at 10.13.110.1.  I’ve tried both of the following iptables commands,
> neither has worked.
> 
>  
> 
> $IPTABLES -t nat -A PREROUTING -i eth1 -p tcp --dport 25 -j DNAT --to
> 10.13.110.1
> 
> $IPTABLES -t nat -A PREROUTING -i eth1 -p tcp --dport 110 -j DNAT --to
> 10.13.110.1
> 
> $IPTABLES -A FORWARD -p tcp -d 10.13.110.1 --dport 25 -j ACCEPT
> 
> $IPTABLES -A FORWARD -p tcp -d 10.13.110.1 --dport 110 -j ACCEPT
> 
>  
> 
>  
> 
> $IPTABLES -t nat -A PREROUTING -d <public_ip> -p tcp --dport 25 -j
> DNAT --to 10.13.110.1:25
> 
> $IPTABLES -A FORWARD -p tcp --dport 25 -j ACCEPT
> 
> $IPTABLES -t nat -A PREROUTING -d <public_ip> -p tcp --dport 110 -j
> DNAT --to 10.13.110.1:110
> 
> $IPTABLES -A FORWARD -p tcp --dport 110 -j ACCEPT
> 
>  
> 
> The later works great for ftp and http forwards.  Why won’t it work
> for 25 and 110?
> 
>  
> 
> eth0= 10.13.110.1
> 
> eth2= <public_ip>
> 
>  
> 
> Matt Brei
> 
>  
> 
> 


^ permalink raw reply	[flat|nested] 3+ messages in thread

* RE: port 25 & 110 forward
  2003-07-14 18:43 port 25 & 110 forward Brei, Matt
  2003-07-14 18:55 ` Shawn
@ 2003-07-15  8:17 ` Rob Sterenborg
  1 sibling, 0 replies; 3+ messages in thread
From: Rob Sterenborg @ 2003-07-15  8:17 UTC (permalink / raw)
  To: netfilter

> I'm trying to forward smtp and pop3 from my router to my mail 
> server at 10.13.110.1.  I've tried both of the following 
> iptables commands, neither has worked.
> 
> $IPTABLES -t nat -A PREROUTING -i eth1 -p tcp --dport 25 -j 
> DNAT --to 10.13.110.1 $IPTABLES -t nat -A PREROUTING -i eth1 
> -p tcp --dport 110 -j DNAT --to 10.13.110.1 $IPTABLES -A 
> FORWARD -p tcp -d 10.13.110.1 --dport 25 -j ACCEPT $IPTABLES 
> -A FORWARD -p tcp -d 10.13.110.1 --dport 110 -j ACCEPT
> 
> 
> $IPTABLES -t nat -A PREROUTING -d <public_ip> -p tcp --dport 
> 25 -j DNAT --to 10.13.110.1:25 $IPTABLES -A FORWARD -p tcp 
> --dport 25 -j ACCEPT $IPTABLES -t nat -A PREROUTING -d 
> <public_ip> -p tcp --dport 110 -j DNAT --to 10.13.110.1:110 
> $IPTABLES -A FORWARD -p tcp --dport 110 -j ACCEPT

Do you also have the rule :

$IPTABLES -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT

It might help.


Gr,
Rob



^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2003-07-15  8:17 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-07-14 18:43 port 25 & 110 forward Brei, Matt
2003-07-14 18:55 ` Shawn
2003-07-15  8:17 ` Rob Sterenborg

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.