[ previous ] [ next ] [ threads ]
 
 From:  Gwyn Evans <gwyn dot evans at gmail dot com>
 To:  "James W. McKeand" <james at mckeand dot biz>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] Inbount NAT won't answer on WAN i/f
 Date:  Tue, 16 Nov 2004 15:43:07 +0000 
On Tue, 16 Nov 2004 09:38:17 -0500, James W. McKeand <james at mckeand dot biz> wrote:
> I just tried to test what would happen if I created a Inbound NAT and
> firewall rules for SMTP (I do not host any  of my mail or web on my
> LAN, but I do have servers...)  I created an Inbound NAT on my WAN
> interface IP with external port and internal port 25 and my SBS as the
> NAT IP. Allowed creation of the Firewall Rule (Pass -> Interface: WAN
> -> Source IP: any -> Source Port: any -> Destination IP: SBS ->
> Destination Port: 25). I tested this by using remote desktop
> connection to connect to a server at one of my client's site, then
> used telnet from there to connect back to my WAN IP on port 25. I
> connected to my SBS's Exchange as expected...

The bit that throws me is why the firewall rule needs to be there,
as my understanding of nat suggests that it's client<->firewall and
firewall<->server, but the rule's opening client<->server...

Anyone point out what I'm missing?

/Gwyn