From owner-freebsd-isp@FreeBSD.ORG  Fri Jun 25 18:01:48 2004
Return-Path: <owner-freebsd-isp@FreeBSD.ORG>
Delivered-To: freebsd-isp@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 4A49C16A4CE
	for <freebsd-isp@freebsd.org>; Fri, 25 Jun 2004 18:01:48 +0000 (GMT)
Received: from pd5mo3so.prod.shaw.ca (shawidc-mo1.cg.shawcable.net
	[24.71.223.10])	by mx1.FreeBSD.org (Postfix) with ESMTP id E8CD043D41
	for <freebsd-isp@freebsd.org>; Fri, 25 Jun 2004 18:01:47 +0000 (GMT)
	(envelope-from gbaratto@superb.net)
Received: from pd2mr2so.prod.shaw.ca (pd2mr2so-ser.prod.shaw.ca
	[10.0.141.109])2003))
	with ESMTP id <0HZV0088LM2MFY@l-daemon> for freebsd-isp@freebsd.org;
	Fri, 25 Jun 2004 12:01:34 -0600 (MDT)
Received: from pn2ml4so.prod.shaw.ca ([10.0.121.148])
 by pd2mr2so.prod.shaw.ca (Sun ONE Messaging Server 6.0 HotFix 1.01 (built Mar
 15 2004)) with ESMTP id <0HZV007QEM2MWDK0@pd2mr2so.prod.shaw.ca> for
 freebsd-isp@freebsd.org; Fri, 25 Jun 2004 12:01:34 -0600 (MDT)
Received: from chivas (S01060080c8118809.vc.shawcable.net [24.85.89.252])
 by l-daemon (iPlanet Messaging Server 5.2 HotFix 1.18 (built Jul 28 2003))
 with SMTP id <0HZV00A0MM2LIA@l-daemon> for freebsd-isp@freebsd.org; Fri,
 25 Jun 2004 12:01:34 -0600 (MDT)
Date: Fri, 25 Jun 2004 11:00:23 -0700
From: "Gustavo A. Baratto" <gbaratto@superb.net>
To: freebsd-isp@freebsd.org
Message-id: <028201c45ade$5a6b2f70$6400a8c0@chivas>
MIME-version: 1.0
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2800.1409
X-Mailer: Microsoft Outlook Express 6.00.2800.1409
X-Priority: 3
X-MSMail-priority: Normal
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
X-Content-Filtered-By: Mailman/MimeDel 2.1.1
Subject: ipfw and mail
X-BeenThere: freebsd-isp@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Internet Services Providers <freebsd-isp.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-isp>,
	<mailto:freebsd-isp-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-isp>
List-Post: <mailto:freebsd-isp@freebsd.org>
List-Help: <mailto:freebsd-isp-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-isp>,
	<mailto:freebsd-isp-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 25 Jun 2004 18:01:48 -0000

Hello guys,

some of our users' ISPs don't allow them to use port 25, so they cannot =
use out mail server.

I want to open a new port (2525) and forward all packets from 2525 to 25 =
so, they can use mail.

I tried this in IPFW:
0100 119649 44772439 allow tcp from any to me dst-port 25 keep-state
0200      0        0 divert 25 ip from any to me dst-port 2525 =
keep-state
0300 103075 35531648 allow ip from me to any keep-state
0400     60     4530 deny log ip from any to any


If I telnet directly to port 25, I can get the prompt, but if I telnet =
to port 2525, I get a connection refused.

What should I do in ipfw to forward port 2525 to port 25 tranparently?

Thanks