Problem with maiserver moved from lan to dmz
-
Hi all
I moved a mailserver from the lan to the dmz and I am having some troubles.
LAN B–------ ipsec -----router-vpn--------LAN A-----------FIREWALL -----internet
192.168.2/24 192.168.1.254 192.168.1/24 192.168.1.251 ---- dmz (192.168.100/24) - mailserverFrom the lanA subnet (192.168.1/24) is't all ok
But from the remote lan (192.168.2/24) (connected via an ipsec tunnel between two cisco routers) connections to the mailserver (192.168.100.2) are very slow and clients like imapclients give random errors.
The ipsec tunnel is 192.168.2/24 > any and any > 192.168.2/24
In the firewall there is a static route to 192.168.2/24 via 192.168.1.254
from LANB clients I can do telnet dmz:ports (25-80-143) but I receive answer after some seconds
I test the system with a pass all in the lan and in the dmzwhat can I check ?
thanks
Giacomo -
did you check the box in system –> advanced --> Static route filtering, you need to do so.
regards,
Johan -
did you check the box in system –> advanced --> Static route filtering, you need to do so.
regards,
JohanYes it's checked.
Giacomo