[Solved] Bind Machine/IP to specific outgoing WAN Interface
-
Hey, me again.
This is a follow up to my last question "DNS Rebinding Attack. No access to Server inside DMZ from LAN."
For technical details please take a look at that post. For the sake of redundancy, I'm not gonna post them here again.Here is my dilemma this time. Due tue my setup with the 3 WAN interfaces (and the 100MBit cable dynamic line as default) the mailserver uses that interface to send all the mails.
Unfortenately this leads to be on some mailing blacklists :).Is it possible to bind the internal ip of my mailserver to use with just the static leased line?
I played with some settings but couldn't get it to work.
On the 1:1 NAT Docs it is just from WAN to LAN. Not the other way arround.I did some more research and found "How to Configure Source NAT (Private IP => Public IP Outbound)" on serverfault.
Which sums up pretty much what I am trying to do.
Googling some more on SNAT/Source NAT got me to Outbound NAT in the pfsense Docs.So I did that as well. But every time I send an e-mail I still see the dynamic IP in the mailheader.
Any ideas or tips for me?
-
Just set a firewall rule on the internal interface that the mailserver is on. Specify the source IP as the mail server and the gateway as whichever WAN you want to use.
Steve
-
Just set a firewall rule on the internal interface that the mailserver is on. Specify the source IP as the mail server and the gateway as whichever WAN you want to use.
Steve
It is so easy when you know how it's done. Now I kinda feel stupid.
But thanks anyways :) Appreciate it very much!
