On the off chance that nobody answered you privately.... One address/alias on your GNAT Box is always going to either hit the SMTP proxy or bypass it -- there's no way to make port 25 behave differently depending on the source address. (That is why everything could use the tunnel - your default filter for the SMTP proxy is letting everyone hit port 25)
What you can do, however, is add an External Alias (another IP Address) to your GNAT Box, and tunnel from there to your internal mailserver. Create a filter that allows only the external SMTP servers to access the tunnel, and check the default SMTP filter to make sure that it does not cover the alias address. Mike Burden Lynk Systems http://www.lynk.com (616)532-4985 [EMAIL PROTECTED] > -----Original Message----- > From: Reasoner, Bob (PHES) [mailto:[EMAIL PROTECTED] > Sent: Thursday, July 03, 2003 5:14 PM > To: [EMAIL PROTECTED] > Subject: [gb-users] Specific Remote Access filter? > > > This is probably going to sound very elementary (which it is > ;-) but I am having difficulty creating an inbound filter > which will work with a tunnel. I basically want to do away > with the email proxy by creating a tunnel/filter from 2 very > specific external SMTP servers to one internal server. I can > get it working, but can't seem to restrict it to the 2 > specific external IP addresses. > > I tried using a range X.X.X.100-X.X.X.101 but it seemed to > allow anything to come in. > > I will obviously go back to the books on this one, but > thought if it was a quickie someone might throw me a bone. > > > > > Bob Reasoner > Harris County Public Health & Environmental Services > > ------------------------------------------------------ > To unsubscribe: [EMAIL PROTECTED] > For additional commands: [EMAIL PROTECTED] > Archive: http://www.mail-archive.com/[EMAIL PROTECTED] ------------------------------------------------------ To unsubscribe: [EMAIL PROTECTED] For additional commands: [EMAIL PROTECTED] Archive: http://www.mail-archive.com/[EMAIL PROTECTED]
