Hello, having a problem here at our isp getting smtp forwarding traffic to our spam filtering box using the dst-nat rule. I can get all smtp traffic going to our spam filtering box, however when our customers want to send an email it goes to this box also. Herein lies the problem, they can only send mail to their own email domains, nothing like gmail.com or yahoo.com without hitting our main mail server ( separate box than spam filter ). I tried doing some prioritizing in the dst-nat rules. I put the 0.0.0.0 0.0.0.0 rule on bottom, and the customers subnets up top to go to the correct smtp server. However it seems to skip my top 3 dst-nat rules and hit the one on bottom which would be the wrong smtp server for them to send mail out on. Any ideas ??? I’m sure it’s something stupid I’m overlooking.
Vstrator -
Sure someone could help you out - but you need to give us the rules you are using - what you have provided us is like - “do you like this color or that color” - where we can’t see the color…
Thom
Have you tried modifying that dst-nat rule’s input settings so your own customers are excluded from matching it? IP range would be a good way, though if you have several internal ranges you’d need multiple exclusions.
Not sure why I didn’t think of this. Just put them in the not field instead of nothing right? Thanks
That’s the basic idea, yep. 