* port 25 & 110 forward
@ 2003-07-14 18:43 Brei, Matt
2003-07-14 18:55 ` Shawn
2003-07-15 8:17 ` Rob Sterenborg
0 siblings, 2 replies; 3+ messages in thread
From: Brei, Matt @ 2003-07-14 18:43 UTC (permalink / raw)
To: netfilter
[-- Attachment #1: Type: text/plain, Size: 948 bytes --]
I'm trying to forward smtp and pop3 from my router to my mail server at
10.13.110.1. I've tried both of the following iptables commands,
neither has worked.
$IPTABLES -t nat -A PREROUTING -i eth1 -p tcp --dport 25 -j DNAT --to
10.13.110.1
$IPTABLES -t nat -A PREROUTING -i eth1 -p tcp --dport 110 -j DNAT --to
10.13.110.1
$IPTABLES -A FORWARD -p tcp -d 10.13.110.1 --dport 25 -j ACCEPT
$IPTABLES -A FORWARD -p tcp -d 10.13.110.1 --dport 110 -j ACCEPT
$IPTABLES -t nat -A PREROUTING -d <public_ip> -p tcp --dport 25 -j DNAT
--to 10.13.110.1:25
$IPTABLES -A FORWARD -p tcp --dport 25 -j ACCEPT
$IPTABLES -t nat -A PREROUTING -d <public_ip> -p tcp --dport 110 -j DNAT
--to 10.13.110.1:110
$IPTABLES -A FORWARD -p tcp --dport 110 -j ACCEPT
The later works great for ftp and http forwards. Why won't it work for
25 and 110?
eth0= 10.13.110.1
eth2= <public_ip>
Matt Brei
[-- Attachment #2: Type: text/html, Size: 4441 bytes --]
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: port 25 & 110 forward
2003-07-14 18:43 port 25 & 110 forward Brei, Matt
@ 2003-07-14 18:55 ` Shawn
2003-07-15 8:17 ` Rob Sterenborg
1 sibling, 0 replies; 3+ messages in thread
From: Shawn @ 2003-07-14 18:55 UTC (permalink / raw)
To: Brei, Matt; +Cc: netfilter@lists.netfilter.org
Can you telnet to port 25, and does it connect you to your private host?
If so, you have an SMTP issue.
On Mon, 2003-07-14 at 13:43, Brei, Matt wrote:
> I’m trying to forward smtp and pop3 from my router to my mail server
> at 10.13.110.1. I’ve tried both of the following iptables commands,
> neither has worked.
>
>
>
> $IPTABLES -t nat -A PREROUTING -i eth1 -p tcp --dport 25 -j DNAT --to
> 10.13.110.1
>
> $IPTABLES -t nat -A PREROUTING -i eth1 -p tcp --dport 110 -j DNAT --to
> 10.13.110.1
>
> $IPTABLES -A FORWARD -p tcp -d 10.13.110.1 --dport 25 -j ACCEPT
>
> $IPTABLES -A FORWARD -p tcp -d 10.13.110.1 --dport 110 -j ACCEPT
>
>
>
>
>
> $IPTABLES -t nat -A PREROUTING -d <public_ip> -p tcp --dport 25 -j
> DNAT --to 10.13.110.1:25
>
> $IPTABLES -A FORWARD -p tcp --dport 25 -j ACCEPT
>
> $IPTABLES -t nat -A PREROUTING -d <public_ip> -p tcp --dport 110 -j
> DNAT --to 10.13.110.1:110
>
> $IPTABLES -A FORWARD -p tcp --dport 110 -j ACCEPT
>
>
>
> The later works great for ftp and http forwards. Why won’t it work
> for 25 and 110?
>
>
>
> eth0= 10.13.110.1
>
> eth2= <public_ip>
>
>
>
> Matt Brei
>
>
>
>
^ permalink raw reply [flat|nested] 3+ messages in thread
* RE: port 25 & 110 forward
2003-07-14 18:43 port 25 & 110 forward Brei, Matt
2003-07-14 18:55 ` Shawn
@ 2003-07-15 8:17 ` Rob Sterenborg
1 sibling, 0 replies; 3+ messages in thread
From: Rob Sterenborg @ 2003-07-15 8:17 UTC (permalink / raw)
To: netfilter
> I'm trying to forward smtp and pop3 from my router to my mail
> server at 10.13.110.1. I've tried both of the following
> iptables commands, neither has worked.
>
> $IPTABLES -t nat -A PREROUTING -i eth1 -p tcp --dport 25 -j
> DNAT --to 10.13.110.1 $IPTABLES -t nat -A PREROUTING -i eth1
> -p tcp --dport 110 -j DNAT --to 10.13.110.1 $IPTABLES -A
> FORWARD -p tcp -d 10.13.110.1 --dport 25 -j ACCEPT $IPTABLES
> -A FORWARD -p tcp -d 10.13.110.1 --dport 110 -j ACCEPT
>
>
> $IPTABLES -t nat -A PREROUTING -d <public_ip> -p tcp --dport
> 25 -j DNAT --to 10.13.110.1:25 $IPTABLES -A FORWARD -p tcp
> --dport 25 -j ACCEPT $IPTABLES -t nat -A PREROUTING -d
> <public_ip> -p tcp --dport 110 -j DNAT --to 10.13.110.1:110
> $IPTABLES -A FORWARD -p tcp --dport 110 -j ACCEPT
Do you also have the rule :
$IPTABLES -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
It might help.
Gr,
Rob
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2003-07-15 8:17 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-07-14 18:43 port 25 & 110 forward Brei, Matt
2003-07-14 18:55 ` Shawn
2003-07-15 8:17 ` Rob Sterenborg
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.