Problems with mail server
-
OK, so pfSense LAN interface has IP address 192.168.1.1? and you have DNS forwarder enabled on pfSense? And ping mail.redcarpetfinancial.ca on the laptop says it is going to 206.248.167.232?
-
Using dig and other tools, mail.redcarpetfinancial.com is pointing to the external IP address: 206.248.167.232
-
Using dig and other tools, mail.redcarpetfinancial.com is pointing to the external IP address: 206.248.167.232
Looks like I dumbed down too much technically but not enough in attention span - you answered only one of my last three questions. :)
-
Sorry… DNS Forwarder is ENABLED and the other two boxes are UNCHECKED.
I don't know how to check the pfSense LAN interface (I don't think). I went into the SSH shell for pf sense and there are 6 interfaces. the LAN interface is 192.168.1.1 if that is what you are asking.
-
OK, so you should add a DNS forwarder override for mail.redcarpetfinancial.com so that from your private network you access it via its private IP address:
Go to Services -> DNS Forwarder, scroll down to the table with headings Host Domain IP Description click on the "+" button on the right and add an override entry for host mail on domain redcarpetfinancial.com with IP address 192.168.2.50 and some useful (to you) description. Click on the save button.
Then go back to your Windows laptop and attempt to ping mail.redcarpetfinancial.com. If the IP address is not the private IP address wait a few seconds (for the laptop's DNS cache entry to time out) and repeat if necessary (it shouldn't be necessary to repeat this more than a few times). Then try your web access by hostname.
-
I did as you suggested and when I went to ping redcarpetfinancial.ca it worked but when I pinged mail.redcarpetfinancial.ca it still went to the external IP.
-
I spoke too soon. It know resolves to 192.168.2.50
-
OK, so your access from LAN now works OK?
Lets try access from the internet. With your laptop disconnected from the LAN (to force access over wireless broadband) what IP address is accessed if you ping mail.redcarpetfinancial.ca? What happens with a web access to mail.redcarpetfinancial.ca?
-
Okay… I turned off my NIC and tethered my phone to my laptop forcing wireless broadband.
I tried pinging mail.redcarpetfinancial.ca and it was trying to resolve to my external IP address but it timed out.
I then tried in my normal (Firefox) browser to go to mail.redcarpetfinancial.ca and it automatically redirected to the pfSense PORT (mail.redcarpetfinancial.ca:PORT) and it gave me the re-binding attack error message again.
I wasn't sure if this is Firefox is, for some reason, redirecting so I tried in IE as well. It took a while but connected to my Zimbra machine.
-
AWESOME! I just cleared my Firefox cache and it worked there as well.
Thank you!!!