Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Firewall not allowing SMTP through

    Scheduled Pinned Locked Moved Firewalling
    11 Posts 2 Posters 3.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      danswartz
      last edited by

      without seeing your rules and such, i doubt anyone can really say.

      1 Reply Last reply Reply Quote 0
      • Q
        quiksilver755
        last edited by

        Here is my .xml file in .txt format to look at. I delete the opt1(DMZ) from the interface portion of the file before I load it into the StrongBochs because of one less NIC, leaving just LAN and WAN.

        [Copy of config-pfsens.txt](/public/imported_attachments/1/Copy of config-pfsens.txt)

        1 Reply Last reply Reply Quote 0
        • D
          danswartz
          last edited by

          can you please just post screen captures of the rules and any NAT you may have?  rather not grovel thru the config..

          1 Reply Last reply Reply Quote 0
          • Q
            quiksilver755
            last edited by

            Here is NAT and Rules

            RULES.jpg_thumb
            RULES.jpg
            NAT.jpg_thumb
            NAT.jpg

            1 Reply Last reply Reply Quote 0
            • D
              danswartz
              last edited by

              Rules look consistent, but looking at the config, your LAN IP is 192.168.1.9/29, which means that 192.168.1.2 (your server?) is not the the same subnet, so it can't reach it.  Should it be 192.168.1.9/24?

              1 Reply Last reply Reply Quote 0
              • Q
                quiksilver755
                last edited by

                I did not originally set up the PC I am bringing the settings from. I'm thinking that 192.168.1.2 has to do with the DMZ maybe? The DMZ had an IP of 192.168.1.1/29

                1 Reply Last reply Reply Quote 0
                • D
                  danswartz
                  last edited by

                  I assume you renumbered the server that used to be in the DMZ?  If so, you need to change the port forwards and such (or more easily, just change the LAN IP from a /29 to a /28?)  But the server likely is talking to the 192.168.1.1 address, so you will need to change one or the other?

                  1 Reply Last reply Reply Quote 0
                  • Q
                    quiksilver755
                    last edited by

                    I will try to change the LANs mask and IP to 192.168.1.1/28

                    1 Reply Last reply Reply Quote 0
                    • Q
                      quiksilver755
                      last edited by

                      Thank you danswartz. That fixed my problem.

                      1 Reply Last reply Reply Quote 0
                      • D
                        danswartz
                        last edited by

                        good to hear.

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.