Am I right in thinking that this question refers to the package that identifies itself as qmail (www.qmail.org), not q-mail? Assuming so ... I'm a bit confused from the way you pose your question. For qmail, relay-ctrl (http://untroubled.org/relay-ctrl/) seems to be a plug-in that handles *outgoing* mail by requiring POP3- or IMAP-password authentication before accepting outgoing mail for relaying. It appears to have nothing whatsoever to do with *receiving* e-mail.
So, if I understand this correctly, telling us you use relay-ctrl doesn't describe the characteristics of your setup for *receiving* mail. This leads me to ask the following questions -- 1. Am I correct in inferring that you are using Dachstein as a router/firewall but NOT for NAT'ing? Since you say your LAN uses "a different ISP & a different set of IP #'s", I infer that ... but I may be assuming too much here. 2. How do your users normally "get" their mail from this relay? Is it forwarding to SMTP servers on their hosts? Responding to POP3 requests for downloads? To IMAP requests? Running a Web-based mail interface? Something else? 3. When you say qmail "appears to use a random port above 5100 0" (a typo for 51000, I assume), are you referring to its source or destination port? If source, what is the destination port? If destination, what do clients use that listens on (or sends download requests from) that port (range)? 4. When you say users can get mail "everywhere except from our internal network", how large a value are you using for "everywhere"? That is, how many places outside your LAN actually are used by your user base? If the number is small, what are their characteristics? 5. With respect to whatever service is your answer to question #2, do you have any specific firewall or port-forwarding rules on your system that apply to it? At 11:00 AM 5/1/02 -0400, Bill Hults wrote: >Hi >We have a q-mail server set up using relay-ctrl for e-mail relay >control. It is a stand alone machine with a public IP address. >People are able to get their e-mail everywhere except from our internal >network (that uses a different ISP & a different set of IP #'s) which is >behind a Dachstein FW. It also occasionally works from inside or works >for a while & then stops. >I'm wondering if the FW is the problem and if I need to open a port for >relay-ctrl to come back in on? Anyone know anything about the behavior >of this program and/or if I'm on the right track? It appears to use a >random port above 5100 0. >TIA >Bill > > > -- ------------------------------------"Never tell me the odds!"--- Ray Olszewski -- Han Solo Palo Alto, CA [EMAIL PROTECTED] ----------------------------------------------------------------
