I have a new box running fedora core 4 x86-64 with squid and iptables. Whenever I try to send or recieve email through this box I am not able to connect.

The version of squid is 2.5 (I got it by running yum install squid)

I have tried opening up the SMTP and POP3 default ports in iptables but that is not helping.

The proxy is working great I am able to view all websites that I have opened up and it is blocking the ones that I do not want access too.

Thanks for any help

Dragonleech

Can you send mail with the firewall turned off?

I just tried it and I am not able to send with the firewall off or on.

for some more info I have my default gateway set to the IP of proxy server as I want everything routed through it. When I change it back to previous one I am able to send/recieve email.

Once I impliment this I want to have this proxy server as the only box that has direct access to the router so I am planning on setting up the proxy directly attached to the router and then from my second interface card have it connected to the switches of the network.

Thanks,

Dragonleech

Ok. So I'm assuming that you'd like the proxy/gateway to forward mail to and from the mail server, correct? If so, could you post the iptables rules that you are using (make sure to remove any publically routable IP addresses).

you are correct.

I am using webmin to manage the firewall and I just used the option to reset the firewall and set it to allow all traffic. and it is still not allowing email to go through

I have figured some of my problems out. I created a test network with my proxy as the only way to the outside world. I was not able to get of my requests for anything out. I went into the network configuration section of webmin and made some changes to the routing. I am now able to get my HTTP requests out (as I am working behind the proxy right now) but I am still not able to get my SMTP/POP3 packets out. they just time out.

I think that this problem has something to do with routing also as I am able to telnet into the mail server directly from the proxy server but not from behind it.

Thanks,

Dragonleech

I got this working. All I had to do was add a masquarade rule within IPtables for my external interface.

Thanks

Dragonleech

Cool. That's what I was getting to. Nice job on troubleshooting it yourself.

Dragonleech, i know this is really old but can you let me know the iptable rules you used to get SMTP and POP3 working behind your proxy?


Thanks heaps!