I can see your frustration...
Unfortunately I cannot seem to recreate the issue...
I have NAT setup on my SonicWALL because I get a DHCP address
for my cable modem...
However all I did was:
On the Access | Services page:
Set Send Email Public LAN Server to 192.168.73.3 (in my case)
and on the Access | Rules page I have for Email:
3 Deny Send Email (SMTP) x.y.z.1 - x.y.z.255 (WAN) 192.168.73.3
(LAN)
(where x.y.z is an external server I can remotely access to
test with)
and
6 Allow Send Email (SMTP) WAN 192.168.73.3 (LAN)
Without rule 3 all can email me, with rule 3, the test server cannot
connect...
Isn't this all you are trying to do? If so, I'd have to assume there is
some other
rule at play here _OR_ SonicWALL has an issue when no NAT is involved...
-Tim
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
Behalf Of Andrew P. Kaplan
Sent: Friday, December 06, 2002 2:47 PM
To: [EMAIL PROTECTED]
Subject: RE: [SonicWALL]- SonicWALL not blocking incoming port 25
traffic
>>so please forgive me
Tim,
Thanks.
Any and all suggestions are welcomed. I'm not using NAT, just simple plan
public IP's. It's very frustrating that the SW can't do something as simple
as packet filtering ;-(
Andrew P. Kaplan
A pessimist sees the difficulty in every opportunity; an optimist sees the
opportunity in every difficulty" --Winston Churchill
> -----Original Message-----
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
> Behalf Of Tim George
> Sent: Friday, December 06, 2002 2:18 PM
> To: [EMAIL PROTECTED]
> Subject: RE: [SonicWALL]- SonicWALL not blocking incoming port 25
> traffic
>
>
> Not that I remember the whole thread now (and I am a newcomer to
> the list so I may have missed the origin) so please forgive me
> if I am asking something that was answered, but is
> 209.113.151.8 the actual IP of the mail server or is it
> the public address that is nat'd to the private lan address
> of the mail server? If it is the public address of a NAT, then
> you need to setup the rule to be the private address of the
> mail server regardless of the routable address that it
> is made public through...
>
> -Tim
>
> -----Original Message-----
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
> Behalf Of Andrew P. Kaplan
> Sent: Friday, December 06, 2002 12:59 PM
> To: [EMAIL PROTECTED]
> Subject: RE: [SonicWALL]- SonicWALL not blocking incoming port 25
> traffic
>
>
> I give up.
>
>
> 13, priority 13, Send Email (SMTP), Deny, Enabled
> src IP 66.180.243.1-66.180.243.254 WAN
> dst IP 209.113.151.8-209.113.151.8 LAN
> timed 0, 0:00 - 0:00, Sun to Sun
> nonDeletable 0, autoAdded 0, timeout 5
> allow fragments 0
> bandwidth mgmt: enabled 0 guaranteed 0.000 maximum 0.000 priority 0
>
>
>
> Log from 209.113.151.8
>
> Dec 6 12:25:19 imgate1 postfix/smtpd[33544]: connect from
> out-66-180-243-17.zoanmail.com[66.180.243.17]
>
>
>
> Andrew P. Kaplan
>
>
>
> A pessimist sees the difficulty in every opportunity; an optimist sees the
> opportunity in every difficulty" --Winston Churchill
>
>
>
>
>
> > -----Original Message-----
> > From: Andrew P. Kaplan [mailto:[EMAIL PROTECTED]]
> > Sent: Friday, December 06, 2002 11:21 AM
> > To: [EMAIL PROTECTED]
> > Subject: RE: [SonicWALL]- SonicWALL not blocking incoming port 25
> > traffic
> >
> >
> > >>>Have you tried specifying the destination and a singe IP for
> > the destination?
> >
> > I will try that. Thanks.
> >
> >
> >
> >
> > Andrew P. Kaplan
> >
> >
> >
> > A pessimist sees the difficulty in every opportunity; an optimist
> > sees the opportunity in every difficulty" --Winston Churchill
> >
> >
> >
> >
> >
> >
> > > -----Original Message-----
> > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
> > > Behalf Of John Tolmachoff
> > > Sent: Friday, December 06, 2002 10:55 AM
> > > To: [EMAIL PROTECTED]
> > > Subject: RE: [SonicWALL]- SonicWALL not blocking incoming port 25
> > > traffic
> > >
> > >
> > > >>>Have you tried specifying the destination and a singe IP for the
> > > destination?
> > > >
> > > >Yes. But I dont' feel like entering 254 rules for each of the
> > spamming 6
> > > Class ranges ;-)
> > >
> > > No, I meant specify the exact destination. The destination is on your
> > > network, your mail server.
> > >
> > > >>>Deny SMTP WAN 66.180.1.1 - 66.180.254.254 *
> > > (end range
> > > blank)
> > >
> > > That makes it seem like the destination (your network and mail
> > server) is
> > > general.
> > >
> > > John Tolmachoff MCSE, CSSA
> > > IT Manager, Network Engineer
> > > RelianceSoft, Inc.
> > > Fullerton, CA 92835
> > > www.reliancesoft.com
> > >
> > >
> > >
> > > ---
> > > [This E-mail scanned for viruses by Declude/F-Prot AV]
> > >
> > > ==================================================================
> > > =================================
> > > To unsubscribe, send email to [EMAIL PROTECTED] In the body of
> > > the email put the following: unsubscribe sonicwall your_name
> > > The archive of this list is at
> > http://www.mail-archive.com/sonicwall%40peake.com/
> >
> >
> >
> > ---
> > Incoming mail is certified Virus Free.
> > Checked by AVG anti-virus system (http://www.grisoft.com).
> > Version: 6.0.423 / Virus Database: 238 - Release Date: 11/25/02
> >
> > ---
> > Outgoing mail is certified Virus Free.
> > Checked by AVG anti-virus system (http://www.grisoft.com).
> > Version: 6.0.423 / Virus Database: 238 - Release Date: 11/25/02
> >
> ---
> Outgoing mail is certified Virus Free.
> Checked by AVG anti-virus system (http://www.grisoft.com).
> Version: 6.0.423 / Virus Database: 238 - Release Date: 11/25/02
>
> ---
> [This E-mail scanned for viruses by Declude/F-Prot AV]
>
> ==================================================================
> ==========
> =======================
> To unsubscribe, send email to [EMAIL PROTECTED] In the body of the email
> put the following: unsubscribe sonicwall your_name
> The archive of this list is at
> http://www.mail-archive.com/sonicwall%40peake.com/
>
>
>
> ---
> [This E-mail scanned for viruses by Declude/F-Prot AV]
>
> ==================================================================
> =================================
> To unsubscribe, send email to [EMAIL PROTECTED] In the body of
> the email put the following: unsubscribe sonicwall your_name
> The archive of this list is at
http://www.mail-archive.com/sonicwall%40peake.com/
---
Incoming mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.423 / Virus Database: 238 - Release Date: 11/25/02
---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.423 / Virus Database: 238 - Release Date: 11/25/02
---
[This E-mail scanned for viruses by Declude/F-Prot AV]
============================================================================
=======================
To unsubscribe, send email to [EMAIL PROTECTED] In the body of the email
put the following: unsubscribe sonicwall your_name
The archive of this list is at
http://www.mail-archive.com/sonicwall%40peake.com/
---
[This E-mail scanned for viruses by Declude/F-Prot AV]
===================================================================================================
To unsubscribe, send email to [EMAIL PROTECTED] In the body of the email put the
following: unsubscribe sonicwall your_name
The archive of this list is at http://www.mail-archive.com/sonicwall%40peake.com/
