From owner-freebsd-questions Mon Jan 6 22:11:31 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D6A1737B401 for ; Mon, 6 Jan 2003 22:11:29 -0800 (PST) Received: from mtiwmhc11.worldnet.att.net (mtiwmhc11.worldnet.att.net [204.127.131.115]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0B99443ED8 for ; Mon, 6 Jan 2003 22:11:29 -0800 (PST) (envelope-from cswiger@mac.com) Received: from sec.local ([12.88.90.220]) by mtiwmhc11.worldnet.att.net (InterMail vM.5.01.05.12 201-253-122-126-112-20020820) with ESMTP id <20030107061127.UORO9286.mtiwmhc11.worldnet.att.net@sec.local>; Tue, 7 Jan 2003 06:11:27 +0000 Received: from mac.com (prime.local [192.168.1.3]) by sec.local (8.12.6/8.12.6) with ESMTP id h075sQ1j002964; Tue, 7 Jan 2003 00:54:27 -0500 (EST) (envelope-from cswiger@mac.com) Message-ID: <3E1A6F89.7030907@mac.com> Date: Tue, 07 Jan 2003 01:11:21 -0500 From: Chuck Swiger Organization: The Courts of Chaos User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.0.2) Gecko/20021120 Netscape/7.01 X-Accept-Language: en-us, en MIME-Version: 1.0 To: questions@FreeBSD.ORG Cc: adaml@visimation.com Subject: Re: Redirecting root's email References: <000001c2b610$c5d99c20$6501a8c0@5adam5> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Status: No, hits=-2.0 required=8.0 tests=NOSPAM_INC,QUOTED_EMAIL_TEXT,REFERENCES,SPAM_PHRASE_00_01, USER_AGENT,USER_AGENT_MOZILLA_UA,X_ACCEPT_LANG version=2.43 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Adam Lofstedt wrote: [ ... ] > Right, I don't care. I just want to get root's emails out of there. > Basically I'm trying to send root's emails outbound from the gateway > through the internal interface to my internal mail server. The gateway > uses my internal name server to resolve names, so nothing should even be > going out the external interface of the box. OK. >>Can you telnet internal_mailserver 25? > > Yes I can telnet to it from the gateway. Definately my internal mail > server is not the problem, as it is working normally. > >>Does it work if you turn off NAT and the redirect? > > Nope. I flushed all the rules, my ipnat.rules in empty and my ipf.rules > is pass in all and pass out all. These two answers suggest that it may be a problem with the local sendmail config, then. Can you try making sendmail setuid-root for a bit (and move /etc/mail/submit.cf out of the way, IIRC) to test whether that makes a difference? Or you could cvsup and/or get sendmail-8.12.7 from ftp.sendmail.org and use their "sh ./Build install-set-user-id". I'm not suggesting you should run setuid-root on a long-term basis, but it would be good to identify or eliminate this as a potential problem. Of course, rebuilding sendmail may be more overhead than it's worth, too. -Chuck To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message