Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Sending mail between 2 servers in DMZ via external IP

    NAT
    2
    3
    1.7k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      Spinmaster
      last edited by

      Hi Everyone,

      I have two servers in my DMZ.  One is an email server, the is a list server which is trying to send emails to (amongst other places) the email server in the DMZ.

      What I have got in effect is:

      Mail Server (mailserver.mydomain.com):
      NAT: 192.168.100.10
      External IP: 123.123.1.1
      Port forwarding set up for SMPT from 123.123.1.1 to 192.168.100.10 via either WAN or LAN

      Other Server (listserv.mydomain.com):
      NAT: 192.168.100.20

      If listserv tries to send an email to myuser@mailserver.mydomain.com then I can see that via DNS it is resolving to 123.123.1.1, but then times out when it tries to send the email.

      I'm guessing that I might need another rule to get the SMTP traffic from DMZ back to DMZ again?

      Could someone give me some suggestions?

      Thanks!
      James.

      1 Reply Last reply Reply Quote 0
      • M
        MageMinds
        last edited by

        On the second server you can simply add a line in your hosts file saying that the server one is at "that" ip address … Then the second server will query your DNS for MX records you'll get mailserver.mydomain.com then the second server will query DNS for a address resolution for mailserver.mydomain.com and in hosts it will find 192.168.100.10

        You could also try enable NAT Reflection or in fact Disable the option saying "Disable NAT Reflection" in the System -> Advanced configuration page. This will allow internal network to access local services using external ip address for all your port forwarded services.

        1 Reply Last reply Reply Quote 0
        • S
          Spinmaster
          last edited by

          Hi MageMinds,

          Thanks for your post - enabling NAT Reflection solved the problem!

          Regards,
          James.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.