Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Problem with maiserver moved from lan to dmz

    Scheduled Pinned Locked Moved Firewalling
    3 Posts 2 Posters 1.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      capitangiaco
      last edited by

      Hi all

      I moved a mailserver from the lan to the dmz and I am having some troubles.

      LAN B–------ ipsec -----router-vpn--------LAN A-----------FIREWALL  -----internet
      192.168.2/24                    192.168.1.254    192.168.1/24      192.168.1.251  ---- dmz  (192.168.100/24) - mailserver

      From the lanA subnet (192.168.1/24) is't all ok
      But from the remote lan (192.168.2/24) (connected via an ipsec tunnel between two cisco routers) connections to the mailserver (192.168.100.2) are very slow and clients like imapclients give random errors.
      The ipsec tunnel is 192.168.2/24 > any and any > 192.168.2/24
      In the firewall there is a static route to 192.168.2/24 via 192.168.1.254
      from LANB clients I can do telnet dmz:ports (25-80-143) but I receive answer after some seconds
      I test the system with a pass all in the lan and in the dmz

      what can I check ?
      thanks
      Giacomo

      1 Reply Last reply Reply Quote 0
      • S
        Sylhouette
        last edited by

        did you check the box in system –> advanced -->  Static route filtering, you need to do so.

        regards,
        Johan

        1 Reply Last reply Reply Quote 0
        • C
          capitangiaco
          last edited by

          @Sylhouette:

          did you check the box in system –> advanced -->  Static route filtering, you need to do so.

          regards,
          Johan

          Yes it's checked.

          Giacomo

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.