Port Forwarding Problem

dazzaling69 · January 2, 2023, 8:52pm

I have a mail server on my LAN behind my ROS router. It has been working for a while but I’ve obviously done something to break it and I can’t figure out what.

If I access it from the LAN side (static route to direct it to the server) all works well. If I try to access the server from the WAN side mail doesn’t get sent or read from the email client. I had a simple NAT rule on the router to direct the traffic by ports, which used to work, then I replaced it with multiple port rules to see if I could troubleshoot it, but no joy.

Config attached. I’m aware that ports 22 and 443 shouldn’t be in the config.

I’m sure it’s really simple, once you spot the error. Can anyone help?

D.
mail.rsc (13.6 KB)

dazzaling69 · January 7, 2023, 2:14pm

Is there anyone who can offer some help?

anav · January 7, 2023, 2:58pm

I see that you have the right forward chain rule, a good sourcenat rule and a good dstnat rule.
So not sure why it isnt working…

Assuming lan direct to maiil serving is working by IP.
Assuming lan indirect to mail server using WANIP is NOT what is being discussed here so we can ignore hairpin nat
Assuming external users are not reaching mail server/

It should be easy to log if traffic is at least hitting the mail server… ( log the forward chain rule and the dstn nat rule, or sniff traffic etc… )