You got non-routable IPs in a Internet-accessible zone, specifically for
your two of your three MX hosts.

<quote>
C:\Documents and Settings\acampbel>dig @odin eservicesforyou.net any

;; ANSWERS:
eservicesforyou.net.    600     A       68.164.114.3
eservicesforyou.net.    600     A       192.168.41.38
eservicesforyou.net.    600     A       192.168.41.34
eservicesforyou.net.    3600    NS      ns2.eservicesforyou.net.
eservicesforyou.net.    3600    NS      ns1.eservicesforyou.net.
eservicesforyou.net.    3600    NS      srv1.eservicesforyou.net.
eservicesforyou.net.    3600    SOA     ns2.eservicesforyou.net.
support.eservicesforyou.com. (
                        2003082754      ; serial
                        3600    ; refresh (1 hour)
                        600     ; retry (10 mins)
                        1814400 ; expire (21 days)
                        3600 )  ; minimum (1 hour)
eservicesforyou.net.    3600    MX      10 srv5.eservicesforyou.net.
eservicesforyou.net.    3600    MX      10 srv3.eservicesforyou.net.
eservicesforyou.net.    3600    MX      20 srv1.eservicesforyou.net.

;; ADDITIONAL RECORDS:
ns2.eservicesforyou.net.        3600    A       192.168.41.34
ns1.eservicesforyou.net.        3600    A       192.168.41.38
srv1.eservicesforyou.net.       3600    A       68.164.114.3
srv5.eservicesforyou.net.       1200    A       192.168.41.40
srv3.eservicesforyou.net.       1200    A       192.168.41.42
srv1.eservicesforyou.net.       3600    A       68.164.114.3
</quote>

adamc 

-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Len Conrad
Sent: Tuesday, June 13, 2006 12:36
To: [email protected]
Subject: RE: [IMail Forum] OHN has a private IP address


>Len, it is not a problem with DNS as far as I can tell, it is how the 
>Imail registry has the value and Imail is using that value.

As you know, the remote MTAs only see Imail's public IP in the TCP/SMTP
session coming from the outside of the NAT box.

The only way a remote MTA could discover the internal IP of Imail is through
DNS query for the whatever Imail announces as domain name in the HELO
command as SMTP client or in the SMTP greeting as SMTP server.

dig +sh mail.eservicesforyou.net a
192.168.41.39

... definitely not recommended.

Well, another way to discover internal IPs would be looking for IPs in the
Received: headers of the DATA command, but little weight should be given to
forgeable Received: headers.

Len


To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/


To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/

Reply via email to