Date: Fri, 25 Jun 2004 15:30:11 -0400 From: James Housley <jim@thehousleys.net> To: "Gustavo A. Baratto" <gbaratto@superb.net> Cc: freebsd-isp@freebsd.org Subject: Re: ipfw and mail Message-ID: <13740EED-C6DE-11D8-9698-000393C28CD4@thehousleys.net> In-Reply-To: <028201c45ade$5a6b2f70$6400a8c0@chivas> References: <028201c45ade$5a6b2f70$6400a8c0@chivas>
next in thread | previous in thread | raw e-mail | index | archive | help
--Apple-Mail-3-362945887 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII; format=flowed On Jun 25, 2004, at 2:00 PM, Gustavo A. Baratto wrote: > Hello guys, > > some of our users' ISPs don't allow them to use port 25, so they > cannot use out mail server. > > I want to open a new port (2525) and forward all packets from 2525 to > 25 so, they can use mail. > > I tried this in IPFW: > 0100 119649 44772439 allow tcp from any to me dst-port 25 keep-state > 0200 0 0 divert 25 ip from any to me dst-port 2525 > keep-state > 0300 103075 35531648 allow ip from me to any keep-state > 0400 60 4530 deny log ip from any to any > > > If I telnet directly to port 25, I can get the prompt, but if I telnet > to port 2525, I get a connection refused. > > What should I do in ipfw to forward port 2525 to port 25 tranparently? > I have done that with natd and ipfw. I think you want a forward rule instead of divert Jim -- /"\ ASCII Ribbon Campaign . \ / - NO HTML/RTF in e-mail . X - NO Word docs in e-mail . / \ ----------------------------------------------------------------- jeh@FreeBSD.org http://www.FreeBSD.org The Power to Serve jim@TheHousleys.Net http://www.TheHousleys.net --------------------------------------------------------------------- Do not meddle in the affairs of dragons, for you are crunchy and taste good with ketchup. --Apple-Mail-3-362945887--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?13740EED-C6DE-11D8-9698-000393C28CD4>