Re: [m0n0wall] NAT question: redirect all outgoing SMTP to or own SMTP-server

From:	"Lee Sharp" <leesharp at hal dash pc dot org>
To:	"Jeroen Visser" <monowall at forty dash two dot nl>, <m0n0wall at lists dot m0n0 dot ch>
Subject:	Re: [m0n0wall] NAT question: redirect all outgoing SMTP to or own SMTP-server
Date:	Sat, 21 Jan 2006 12:27:20 -0600

From: "Jeroen Visser" <monowall at forty dash two dot nl>

> I've lost the original message, this is a copy and paste from the archive.
> For a refreshing of the mind I included the complete original message 
> below.

> Since we've experienced a major outbreak of virusses at the company I work 
> for and
> ppl are allowed to send smtp to other hosts (company rule, it's stupid I 
> know) I
> was forced to try this, because we would get cut off by or provider if I 
> had no
> quick fix.

> I can say it works !
> Maybe this is also possible for the transparent proxy thingy ppl ask for 
> so often !

> <nat>
> <rule>
>  <protocol>tcp</protocol>
>  <external-port>25</external-port>
>  <target>192.168.1.5</target>
>  <local-port>25</local-port>
>  <interface>wan</interface>
>  <descr>redirect SMTP to WAN SMTP server</descr>
> </rule>
> </nat>

A quick question.  From the look of this, the SMTP server at 192.168.1.5 
would be recursively routed to itself.  How would it get out?  Is there 
additional NAT for it?  Or does it get out auto-magically?

                        Lee