--- El lun, 6/12/10, el caballo <[email protected]> escribió:
> De: el caballo <[email protected]> > Asunto: Re: [pfSense Support] NATed SMTP server shows WAN IP > Para: [email protected] > Fecha: lunes, 6 de diciembre, 2010 08:34 > > --- El lun, 6/12/10, Evgeny Yurchenko <[email protected]> > escribió: > > De: Evgeny Yurchenko <[email protected]> > Asunto: Re: [pfSense Support] NATed SMTP server shows WAN > IP > Para: [email protected] > Fecha: lunes, 6 de diciembre, 2010 07:17 > > > > > > On 10-12-06 01:13 AM, el caballo wrote: > > > > > HI Guys! > > > > I have a mailserver that is setup to be NATed to a Private > IP and > configured to have its own Public IP. The Public IP is a > Virtual IP > (Proxe ARP). And on the Firewall: NAT: Outbound, AON is > selected. It is > working correctly with one thing seem to be wrong. We are > able to > connect to the SMTP servers Public IP but it seem to be > connecting to > outside SMTP servers using the Firewall WAN IP and not the > specified > SMTP IP on the Virtual IP. Pleae let me know if there is > something that > I missed, or how can I enable it to send emails out using > its assigned > Public IP. The pfsense version im using is 1.2.3-RELEASE. > Many thanks ! > > > > > > > Make sure in "Outbound NAT" the rule with the source IP of > your > SMTP-server is located higher than all other general > rules. > > Evgeny. > > > Hi Evgeny, > > Thank you for the quick response. However, its still not > working after moving the the rule higher. Below are the > rules on "Outbound NAT". > > WAN 192.168.24.0/24 > * * > * * * > > NO > Auto created rule for DMZ > > WAN 192.168.20.0/24 > * * > * * * > > NO > Auto created rule for LAN > > Below are is the port forward rule for the SMTP. > > WAN TCP 25 (SMTP) > Arwen > (ext.: xxx.xxx.xxx.219) 25 (SMTP) > > But SMTP servers we send to see our SMTP server as > xxx.xxx.xxx.222 which is the WAN IP. Many thanks again! > > > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > > Commercial support available - https://portal.pfsense.org > > Ok, this has been fixed. Many thanks to Evgeny for pointing it out. I have changed the "Outbound NAT" to below, and now we communicate to the outside SMTP servers via our allocated SMTP IP and not to the WAN IP. WAN 192.168.24.0/24 * * * xxx.xxx.xxx.219 * NO Auto created rule for DMZ --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
