From owner-freebsd-questions Sun Oct 28 11:48:51 2001 Delivered-To: freebsd-questions@freebsd.org Received: from shumai.marcuscom.com (rdu57-28-046.nc.rr.com [66.57.28.46]) by hub.freebsd.org (Postfix) with ESMTP id 00F1837B401 for ; Sun, 28 Oct 2001 11:48:48 -0800 (PST) Received: from localhost (marcus@localhost) by shumai.marcuscom.com (8.11.6/8.11.6) with ESMTP id f9SJmj967402; Sun, 28 Oct 2001 14:48:45 -0500 (EST) (envelope-from marcus@marcuscom.com) X-Authentication-Warning: shumai.marcuscom.com: marcus owned process doing -bs Date: Sun, 28 Oct 2001 14:48:45 -0500 (EST) From: Joe Clarke To: "Marc G. Fournier" Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Cisco 515R w/ nat and sendmail ... In-Reply-To: <20011028140545.S87815-100000@mail1.hub.org> Message-ID: <20011028144301.V35424-100000@shumai.marcuscom.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Sun, 28 Oct 2001, Marc G. Fournier wrote: > > I've got two servers setup behind a Cisco 515R ... the 'public address' of > the Cisco is being map'd to a 'private' on, one-to-one ... > > Both machines are running FreeBSD 4.4-STABLE ... both running sendmail ... > if I telnet to the smtp port from the 'Net side of the firewall, it > returns: > > > telnet 64.49.215.6 smtp > Trying 64.49.215.6... > Connected to rs2.postgresql.org. > Escape character is '^]'. > 220 **2***************************************************2******200***2*****2**0*00 ***** > > If I telnet to it from inside of the firewall, I get: > > hub# telnet 192.168.1.6 smtp > Trying 192.168.1.6... > Connected to 192.168.1.6. > Escape character is '^]'. > 220 rs2.postgresql.org ESMTP Sendmail 8.11.6/8.11.6; Sun, 28 Oct 2001 12:52:14 - 0600 (CST) > > I'm thinking it probably has something to do with the Cisco 515R itself, > but SSh through it works no problem ... anyone have an idea/direction I > can pursue/investigate? Are you doing fixup for smtp on the PIX? fixup protocol smtp The fixup protocol smtp command enables the Mail Guard feature, which only lets mail servers receive the RFC 821, section 4.5.1 commands of HELO, MAIL, RCPT, DATA, RSET, NOOP, and QUIT. All other commands are rejected with the "500 command unrecognized" reply code. As of version 5.1 and later, the fixup protocol smtp command changes the characters in the SMTP banner to asterisks except for the "2", "0", "0 " characters. Carriage return (CR) and linefeed (LF) characters are ignored. In version 4.4, all characters in the SMTP banner are converted to asterisks. Joe > > Thanks ... > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message