All, I am currently at a clients locale trying to figure this scenario out. Any help would be much appreciated. Here wqe go: I have installed a firewall on one IP of a pacbell dsl connection. I have configured the firewall to talk to any SMTP or POP server. The client can currently talk to any server except one. Two of these mail servers live on the same box, with different IP's. One works fine, the other doesn't work at all. here is a look at the logs after an attempt to connect to the "bad" server... Mar 7 12:23:40 fw1 kernel: Packet log: input DENY eth0 PROTO=6 remote-ip:25 fw-ip:1072 L=40 S=0x00 I=1966 F=0x4000 T=54 (#29) Mar 7 12:32:35 fw1 kernel: Packet log: input DENY eth0 PROTO=6 remote-ip:110 fw-ip:62781 L=44 S=0x00 I=5873 F=0x4000 T=54 (#29) Mar 7 12:32:38 fw1 kernel: Packet log: input DENY eth0 PROTO=6 remote-ip:110 fw-ip:62781 L=44 S=0x00 I=10774 F=0x4000 T=54 (#29) It appears from using ethereal and watching traffic that everything should work just fine. The SYN is sent to the mail server, the mail server responds with a SYN,ACK, and with the working mail server, the return ACK is sent, however with the "bad" server above, the SYN,ACK's are being dropped, hence no ACK overall. I have spoken with the DSL provider (pacbell) and the mail admins (criticalpath.net). Here are their responses: Mail Admin: says that it is a firewall issue, or routing issue of DSL provider. DSL provider: says it's a firewall issue or mail admin issue. Anyone have any ideas? I can provide more info if necessary. Thanks, Justin J. Bennett MacroStuff, Inc. (510) 465-0981 [EMAIL PROTECTED] http://www.macrostuff.com/ - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
