From owner-freebsd-questions  Mon Jan  6 22:55:43 2003
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 8C7DE37B405
	for <questions@FreeBSD.ORG>; Mon,  6 Jan 2003 22:55:39 -0800 (PST)
Received: from entwistle.sonicboom.org (node-423a3b1b-san-onnet.worldcom.com [66.58.59.27])
	by mx1.FreeBSD.org (Postfix) with ESMTP id EBC1C43F08
	for <questions@FreeBSD.ORG>; Mon,  6 Jan 2003 22:55:36 -0800 (PST)
	(envelope-from bri@sonicboom.org)
Received: from me3 (gateway.sonicboom.org [66.58.59.29])
	by entwistle.sonicboom.org (8.12.6/8.12.6) with SMTP id h076tZ25037504;
	Mon, 6 Jan 2003 22:55:35 -0800 (PST)
	(envelope-from bri@sonicboom.org)
Message-ID: <007d01c2b619$f249ddc0$1a24200a@me3>
From: "Brian" <bri@sonicboom.org>
To: <adaml@visimation.com>, "'Chuck Swiger'" <cswiger@mac.com>,
	<questions@FreeBSD.ORG>
References: <000001c2b610$c5d99c20$6501a8c0@5adam5>
Subject: Re: Redirecting root's email
Date: Mon, 6 Jan 2003 22:56:42 -0800
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2800.1106
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

I just fixed a similar prob by allowing udp with src port 53 from a trusted
name server to the server in question.

    Bri

----- Original Message -----
From: "Adam Lofstedt" <adaml@visimation.com>
To: "'Chuck Swiger'" <cswiger@mac.com>; <questions@FreeBSD.ORG>
Sent: Monday, January 06, 2003 9:50 PM
Subject: RE: Redirecting root's email


> Damn this is a long thread...
>
> > > Thanks Jack.  That didn't work.  This is what I got:
> > forcefield# mail
> > > -v -s test sendtest < /dev/null Null message body; hope that's ok
> > > sendtest... Connecting to localhost.visimation.com. via relay...
> > > sendtest... Deferred: Operation timed out with
> > localhost.visimation.com
> > >
> > > I think something else is wrong here.  This is on a
> > dual-homed gateway
> > > running ipf and ipnat.  For testing purposes I made the ipf.rules
> > > simply pass in all and pass out all, and then I am mapping
> > my external
> > > address on external NIC to my internal network.  In
> > ipnat.rules I am
> > > redirecting port 25 of the external interface to port 25 of my
> > > internal network's mailserver.
> >
> > That probably means that sendmail can't bind to port 25 on
> > that interface,
> > because your NAT rule is already listening on that port, in
> > order to redirect
> > connections.  [ However, you may not care if you're only
> > trying to send mail
> > outbound from this gateway box. ]
>
> Right, I don't care.  I just want to get root's emails out of there.
> Basically I'm trying to send root's emails outbound from the gateway
> through the internal interface to my internal mail server.  The gateway
> uses my internal name server to resolve names, so nothing should even be
> going out the external interface of the box.
>
> >
> > > This seems like a standard gateway setup.  I'm not sure how/why it
> > > would affect sendmail running on the gateway machine.  I just can't
> > > understand why I can telnet into 127.0.0.1 port 25 and get
> > a response
> > > from sendmail, but then when I try to send a mail out, it can't
> > > connect to the localhost.
> >
> > Are you sure that "localhost.visimation.com" maps to
> > 127.0.0.1?
>
> Yes.  I can ping localhost.visimation.com and it comes back just fine as
> 127.0.0.1.
>
> >Anyway, you
> > don't want to deliver the mail locally, right-- you want the
> > mail from
> > "forcefield" to be relayed (via an alias if I understood the
> > earlier part of
> > the thread) to your "internal network's mailserver".
> >
>
> Right.  Exactly.
>
> > Can you telnet internal_mailserver 25?
>
> Yes I can telnet to it from the gateway.  Definately my internal mail
> server is not the problem, as it is working normally.
>
> > Does it work if you turn off NAT and the redirect?
>
> Nope.  I flushed all the rules, my ipnat.rules in empty and my ipf.rules
> is pass in all and pass out all.
>
> > Is there anything interesting in /var/log/maillog?
>
> Nope.  Just the same things.
>
> Jan  4 00:00:00 forcefield newsyslog[7170]: logfile turned over
> Jan  4 00:07:33 forcefield sm-msp-queue[7180]: h03F7WAs006196: to=root,
> delay=17:00:01, xdelay=00:00:00, mailer=relay, pri=3091680,
> relay=localhost.visimation.com., dsn=4.0.0, stat=Deferred: Operation
> timed out with localhost.visimation.com.
> Jan  4 00:07:33 forcefield sm-msp-queue[7180]: h03F7WAr006196: to=root,
> delay=17:00:01, xdelay=00:00:00, mailer=relay, pri=3098805,
> relay=localhost.visimation.com., dsn=4.0.0, stat=Deferred: Operation
> timed out with localhost.visimation.com.
> Jan  4 00:07:33 forcefield sm-msp-queue[7180]: h03B2Nw3006001: to=root,
> ctladdr=root (0/0), delay=21:05:10, xdelay=00:00:00, mailer=relay,
> pri=3900062, relay=localhost.visimation.com., dsn=4.0.0, stat=Deferred:
> Operation timed out with localhost.visimation.com.
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message
>


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message