Hello,
Grant Taylor a écrit :
Balazs Fulop wrote:
If I telnet 192.168.3.1 25 on the firewall, an SMTP session starts. If
I telnet from outside (coming on eth0), it waits until timeout.
I am not surprised that telnet to a private address from the outside
fails. ;-)
It does not look like you are SNATing / MASQUERADing your traffic back
out to the internet.
You do not need to SNAT/MASQUERADE return traffic. The NAT code does it
implicitly. However, the target host must have a (default) route back to
the outside via the NATing gateway.
|