On 3/12/07, Alex Berdan <[EMAIL PROTECTED]> wrote:
Hi,
I have 2 OpenBSDs having a VPN tunnel between them. One of the peer is
having behind it a spam filter. All the SMTP traffic for that is
getting redirected from internet internal to spam filter machine, then
filtered and delivered to the mail server.
One the second BSD I have the SMTP backup for the main SMTP server
located on the first BSD. When the SMTP server located on the first
BSD fails the second is taking the mails and as soon as the primary
SMTP servers comes up it delivers the traffic but because of the VPN
tunnel, the traffic is not getting filtered by the spam filter (the
traffic is not getting redirect anymore as is coming from other
interface).
Is there a way to rdr the traffic which comes on the tunnel to a
different server then the one which is coming to?
I tried with:
rdr pass on enc0 proto tcp from any to $ext port 25 -> <spam filter IP address>
but it didn't work.
Could you please help me out?
There are some considerations for how filtering and NAT rules work on
enc devices. See the manual for enc(4) and try to determine if
anything mentioned applies.
DS
