Date: Fri, 25 Jun 2004 20:30:58 +0200 From: Ondra Holecek <bln@bln.no-ip.org> To: "Gustavo A. Baratto" <gbaratto@superb.net>, freebsd-isp@freebsd.org Subject: Re: ipfw and mail Message-ID: <200406252030.58892.bln@bln.no-ip.org> In-Reply-To: <029601c45ae1$41f25b00$6400a8c0@chivas> References: <028201c45ade$5a6b2f70$6400a8c0@chivas> <029601c45ae1$41f25b00$6400a8c0@chivas>
next in thread | previous in thread | raw e-mail | index | archive | help
On Friday 25 June 2004 20:21, Gustavo A. Baratto wrote: > Thank you very much... but I think it doesnt work :( > > umail7# ipfw delete 200 > umail7# ipfw add 200 fwd localhost:25 tcp from any to me 2525 keep-state > 01400 fwd 127.0.0.1,25 tcp from any to me dst-port 2525 keep-state for me it is working.. does this rule really have number 1400? It is import= ant=20 to have it before any other matching rule if you have rule 0400 =A0 =A0 60 =A0 =A0 4530 deny log ip from any to any you are always blocked at 400 and never go to 1400 > umail7# telnet 207.228.225.128 2525 > Trying 207.228.225.128... > telnet: connect to address 207.228.225.128: Connection refused > telnet: Unable to connect to remote host > > I tried the IP as well, instead of localhost... it doesnt work. > > look the telnet response from port 25: > -bash-2.05b$ telnet 207.228.225.128 25 > Trying 207.228.225.128... > Connected to smtp3.superb.net. > Escape character is '^]'. > 220 smtp3.superb.net ESMTP > > thanks :) > > ----- Original Message ----- > From: "Ondra Holecek" <bln@bln.no-ip.org> > To: <freebsd-isp@freebsd.org> > Sent: Friday, June 25, 2004 11:10 AM > Subject: Re: ipfw and mail > > > On Friday 25 June 2004 20:00, Gustavo A. Baratto wrote: > > > Hello guys, > > > > > > some of our users' ISPs don't allow them to use port 25, so they cann= ot > > use > > > > out mail server. > > > > > > I want to open a new port (2525) and forward all packets from 2525 to > > > 25 so, they can use mail. > > > > > > I tried this in IPFW: > > > 0100 119649 44772439 allow tcp from any to me dst-port 25 keep-state > > > 0200 0 0 divert 25 ip from any to me dst-port 2525 > > keep-state > > > ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ > > this line does something other > > try to use this: > > ipfw delete 200 > > ipfw add 200 fwd localhost:25 tcp from any to me 2525 keep-state > > > > > 0300 103075 35531648 allow ip from me to any keep-state > > > 0400 60 4530 deny log ip from any to any > > > > > > > > > If I telnet directly to port 25, I can get the prompt, but if I telnet > > to > > > > port 2525, I get a connection refused. > > > > > > What should I do in ipfw to forward port 2525 to port 25 tranparently? > > > > > > Thanks > > > _______________________________________________ > > > freebsd-isp@freebsd.org mailing list > > > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > > > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > > > _______________________________________________ > > freebsd-isp@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200406252030.58892.bln>