Re: [m0n0wall] Inbount NAT won't answer on WAN i/f

From:	Dub Dublin <dub at infowave dot com>
To:	"James W. McKeand" <james at mckeand dot biz>
Cc:	m0n0wall at lists dot m0n0 dot ch
Subject:	Re: [m0n0wall] Inbount NAT won't answer on WAN i/f
Date:	Tue, 16 Nov 2004 10:15:58 -0600

Yes, I've definitely been trying this from the outside, and cannot get 
it to work as you have.  I've tried telnetting and port scanning to see 
what's there, and the m0n0wall box is a smooth teflon cliff-face from 
the outside (with the exception of a handhold for the PPTP port, as I 
mentioned earlier, so I know it *can* talk to the outside...

James W. McKeand wrote:

>Stupid question, but are you scanning from the inside of the firewall?
>The Inbound NAT page states - "Note: It is not possible to access
>NATed services using the WAN IP address from within LAN (or an
>optional network)."
>
>I just tried to test what would happen if I created a Inbound NAT and
>firewall rules for SMTP (I do not host any  of my mail or web on my
>LAN, but I do have servers...)  I created an Inbound NAT on my WAN
>interface IP with external port and internal port 25 and my SBS as the
>NAT IP. Allowed creation of the Firewall Rule (Pass -> Interface: WAN
>-> Source IP: any -> Source Port: any -> Destination IP: SBS ->
>Destination Port: 25). I tested this by using remote desktop
>connection to connect to a server at one of my client's site, then
>used telnet from there to connect back to my WAN IP on port 25. I
>connected to my SBS's Exchange as expected...
>
>Have you tried testing from the "outside"?
>
>_________________________________
>James W. McKeand
>
>  
>