LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 10-19-2010, 12:45 PM   #1
jackaninny
LQ Newbie
 
Registered: Jan 2006
Posts: 6

Rep: Reputation: 1
Probably a simple Shorewall question - forward new email traffic to 2nd server


We purchased another company that has their own domain and email server (Exchange). The server sits inside our network now but I need to accept email traffic for their domain through my firewall and forward it to an internal email server for a few weeks while we transition users off of that server. Essentially I need to run a second email server inside our network EXCEPT that this particular email server will only be getting traffic from 5 specific IP addresses since they use a service to filter their email.

Is it wise to allow all traffic from those specific IP addresses through and forward them to the Exchange server IP address? I know the company and trust them. Also will my plan work? Most of all how do I configure Shorewall to do this forwarding? Thanks in advance.
 
Old 10-19-2010, 06:52 PM   #2
jackaninny
LQ Newbie
 
Registered: Jan 2006
Posts: 6

Original Poster
Rep: Reputation: 1
So I answered my won question.

DNAT net:123.123.123.0/24 loc:192.168.1.50:25 tcp 25

Will forward all requests from 123.123.123.0 network to the second email server running on 192.168.1.50. (Note this line needs to go before your normal email server DNAT entry or it won't get processed correctly.

I also needed the following line to allow the second email sever to send mail OUT through the firewall

ACCEPT loc:192.168.1.50 net tcp 25

All pretty basic but maybe it will help someone else out in the future.
 
1 members found this post helpful.
Old 10-19-2010, 07:15 PM   #3
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
Thank you for taking the time to share with us your solution.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
How to control traffic forward to Squid Server nguoimientay Linux - Software 1 05-06-2010 12:43 PM
iptables to forward mysql traffic to another server mycoolwater Linux - Newbie 5 02-20-2009 01:22 AM
OpenVPN sometimes does not forward all traffic to server depam Linux - Software 1 06-28-2008 04:13 PM
iptables: forward traffic through server Swakoo Linux - Networking 3 03-30-2008 11:59 PM
How do I configure postfix master to forward all email to an email server ? hello321_1999 Linux - Software 1 11-18-2004 04:43 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 06:48 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration