Antony: I think your suggestion is a step in the right direction, however I think the mail server is rejecting my SMTP messages because of their source address (192.168.1.2) Would you forward some SNAT rules that would help me make the SMTP packets look like they are coming from the firewall's external interface (129.81.201.10)?
Thanks, Bryan ************* >Subject: Re: SMTP pass through? >Date: Thu, 18 Apr 2002 18:19:06 +0100 >On Thursday 18 April 2002 6:05 pm, Bryan J. Snow wrote: >I need help routing and forwarding SMTP traffic across my firewall: > > I have a firewall using iptables with a public(eth0) and a private > interface(eth1). The private interface is connected to a web server that > needs to be able to only send outgoing mail- the web server does not need > to be able to check mail or access anyone's mail account. > > I need a list of the iptables commands needed to allow outgoing SMTP > requests from the internal web server to pass through this firewall to a > mail server on the public network. iptables -A FORWARD -s <web server IP> -p tcp --dport 25 -j ACCEPT Add that to the end of your existing rules and you should be set. Antony. ***********
