Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Multiple Interface

    Scheduled Pinned Locked Moved Firewalling
    4 Posts 3 Posters 291 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      scorpoin
      last edited by

      Hello,

      I have 3 Interfaces

      1-WAN
      2-LAN ==> 192.168.10.0/23
      3-MTA <== for mail server local 192.168.178.0/24

      I have local mail server having two NIC one is directly connected with local ip of same subnet as MTA interface of firewall and one with WAN IP for mail server.

      on mail server I have added a static route to route lan subnet via local interface which is connected to firewall MTA .

      ip route add 192.168.10.0/23 via 192.168.178.1 dev eth0

      Now all I want is to route all port 25 request which is made locally to route MTA interface which are made from LAN subnet ?
      any help would be appreciated.

      Regards

      S Dobby_D 2 Replies Last reply Reply Quote 0
      • S
        SteveITS Galactic Empire @scorpoin
        last edited by

        @scorpoin all connections to 25 from LAN? That would be like this but port 25:
        https://docs.netgate.com/pfsense/en/latest/recipes/dns-redirect.html

        Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
        Upvote 👍 helpful posts!

        S 1 Reply Last reply Reply Quote 0
        • Dobby_D
          Dobby_ @scorpoin
          last edited by

          @scorpoin

          Only a hint or tip by site from me about that set up.
          Would it not be better to set up the mail server in a
          DMZ able to connect the internet and also from the
          LAN users fetching their mail? I mean it is common
          and not a work around and you spare a eth port too.

          I have 3 Interfaces
          1-WAN
          2-LAN ==> 192.168.10.0/23
          3-MTA <== for mail server local 192.168.178.0/24

          WAN, LAN, DMZ port and in the DMZ the mail server
          will be placed. It is also able to set up the IP on the
          pfSense and then on the server the or a local private
          IP address. You may be also able to set up a reverse
          proxy such lightSquid on the pfSense in front of the
          mail server, so no direct contact is existing.

          #~. @Dobby

          Turris Omnia - 4 Ports - 2 GB RAM / TurrisOS 7 Release (Btrfs)
          PC Engines APU4D4 - 4 Ports - 4 GB RAM / pfSense CE 2.7.2 Release (ZFS)
          PC Engines APU6B4 - 4 Ports - 4 GB RAM / pfSense+ (Plus) 24.03_1 Release (ZFS)

          1 Reply Last reply Reply Quote 0
          • S
            scorpoin @SteveITS
            last edited by scorpoin

            @steveits

            I did exactly same now question is , I don't want to send request of port 25 via WAN but it suppose to goes via DMZ (MTA) .

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.