[Gllug] IPCop and port forwarding

Alistair Mann alistair at lgeezer.net
Wed Jun 4 21:43:19 UTC 2003


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Thus spaketh Xander D Harkness on Wednesday 04 June 2003 7:05 pm:
> I have set up IPCop 1.2 (and 1.3) with port forwarding port 25 on its
> red interface through to an internal IP address on a mail server.
>
> I have enabled external access for that port.
>
> When I try telnet IPaddress 25 from an external box I get a time out.
>
> I can ping the IP address on the IP cop box.  I can also see the NAT
> session under connections; however I always get a time out.  I have
> tried port 50000 to port 25 and get the same.
>
> If I put the mail server on the public IP I can talk to it.
>
> I am going to wander off to prod the network with ethereal; however I
> was hoping that someone might have some bright ideas.  My ISP here is
> Claranet  and the IP address if you feel the desire to prod is
> 213.253.36.55

I'm not familiar with IPCop, but I've seen the same problems using iptables 
where the internal webserver appears to respond to the firewall rather than 
to the original host, ie, iptables wasn't then correctly effecting NAT.

tcpdump would tell you more.
- -- 
Alistair
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQE+3mf3Ez+/jt85AfsRAjbqAJ9EAke7rRJIRnl1V/d9w6O/d782qQCfU/cQ
PJdSnu+JRhZtAs2I3cfske4=
=+z7q
-----END PGP SIGNATURE-----



-- 
Gllug mailing list  -  Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug




More information about the GLLUG mailing list