From owner-freebsd-security Mon Oct 26 15:41:14 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA08391 for freebsd-security-outgoing; Mon, 26 Oct 1998 15:41:14 -0800 (PST) (envelope-from owner-freebsd-security@FreeBSD.ORG) Received: from carp.gbr.epa.gov (carp.gbr.epa.gov [204.46.159.110]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA08385 for ; Mon, 26 Oct 1998 15:41:13 -0800 (PST) (envelope-from mjenkins@carp.gbr.epa.gov) Received: (from mjenkins@localhost) by carp.gbr.epa.gov (8.8.8/8.8.8) id RAA08360; Mon, 26 Oct 1998 17:40:30 -0600 (CST) (envelope-from mjenkins) Date: Mon, 26 Oct 1998 17:40:30 -0600 (CST) From: Mike Jenkins Message-Id: <199810262340.RAA08360@carp.gbr.epa.gov> To: chadth@atvideo.com Subject: Re: FW: firewall + internal mail server Cc: freebsd-security@FreeBSD.ORG In-Reply-To: <01BE00E3.2EDE9D70@chadth.atvideo.com> Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Thank you for your response but I am unable to get this below to work. It appears that natd is not listening to that port. Do I need to do anything to make natd monitor the port? Sendmail is disabled on the firewalling machine, making port 25 available to be bound too. I also tried redirect_port tcp ip.of.mail.server:25 25 as well as redirct_port tcp ip.of.mail.server:25 ip.of.public.interface:25 Any more input would be great. So you're starting natd sort of like (minus the pop3): /usr/sbin/natd -interface ed0 -redirect_port tcp internalhost:smtp smtp and you've got IPFIREWALL in the kernel and you're diverting packets to natd: /sbin/ipfw add 100 divert natd all from any to any via ed0 And it doesn't work? Maybe read the natd manual page to make sure you got it set up correctly. Also maybe add the -log option to see if natd is having problems. Mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message