[ previous ] [ next ] [ threads ]
 
 From:  "jan gestre" <m0n0wall dot list at gmail dot com>
 To:  "Wayne Fiori" <dev9null at gmail dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] DMZ woes
 Date:  Sat, 18 Mar 2006 03:29:46 +0800 
On 3/18/06, Wayne Fiori <dev9null at gmail dot com> wrote:
>
> >
> > i isolated first the dmz from the network to be sure there is no problem
> > with the setup i have in mind, then i followed everything you said up to
> the
> > last detail.
> >
> > 1. ip address of squirrelmail+postfix = 192.168.101.2
> > 2. server NAT = 203.xxx.xxx.xxx
> > 3. proxy ARP = 203.xxx.xxx.xxx
> > 4. inbound NAT:
> >    * external address = 203.xxx.xxx.xxx
> >    * protocol = TCP
> >    * external port = HTTP
> >    * NAT ip = 192.168.2.2
> >    * local port = HTTP
> > 5. tick the boxes
> > 6. then repeated the procedure for the SMTP port
>
>
> For 2,3,4, what is the last octet of the address and the net mask.
> These masked addresses don't help debug your problem.
> 203.xxx.xxx.???/?? would be more helpful.
>
> for my mailserver: 203.xxx.xxx.190/29

   for webserver: 203.xxx.xxx.188/29 and 203.xxx.xxx.189/29
   while monowall's ip is 203.xxx.xxx.186

when i checked whatismyip.com from those servers, the result is
203.xxx.xxx.186/29


>
> > end result = i still can't browse the gui of my squirrelmail, i tried
> > browsing the said page from an ip address outside my lan and i can see
> the
> > login page of my mailserver. tried sending mail to the outside and i saw
> > from the mail logs that it was sent, but when i tried to send mail to my
> > mailserver, i wasn't able to recieved it, there's no entry in my
> > mail.logsindicating the mail was rejected or accepted. i also checked
> > the
> > www.whatismyip.com, i got the ip of the monowall not the ip of the
> > mailserver, is this result correct?
> > what more do i have to do in order for my mailserver to accept mails
> from
> > outside?
> > why is it that i cant see the web interface from within?
> > is there a special tweaking in order for the LAN to see it?
> >
> >
> > TIA
> >
> >
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
>