Peter Schuller wrote:
> I've ran into a very strange problem. IP masquerading a connection fails to
> one certain host, but works for all others.
>
> The setup is as follows: a mail server (Linux 2.0.34) is behind a firewall
> (Linux 2.2.13) that masquerades SMTP connections from the mail server to any
> other host on the internet.
>
> This works fine, except for one certain host - a "telnet XXX smtp" yields an
> immediate "connection closed" when done from the mail server (and qmail
> reports "connection died"). The connection can be sucessfully established if
> it is initiated on the firewall.
>
> I am cluelss. As far as I can tell, there is no way for XXX (which seems to be
> running Microsoft Exchange Server btw) to detect any difference between a masqueraded
> connection and a non-masqueraded connection. The only thing I can think of is
> that XXX behaives strangely somehow, confusing the firewall's kernel.
>
> I'd appreciate any ideas anyone might have, since this prevents the company
> in question from corresponding with anyone at that host through E-Mail.
One possibility is that the server terminates the connection if an
ident (auth) query fails. Unless you're running a masquerade-aware
in.identd, ident queries will fail for masqueraded connections.
--
Glynn Clements <[EMAIL PROTECTED]>
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
