kdog3445
asked on
Reverse Look up Problem
Hello
We are having a problem with some ISP's like AOL the do reverse Looks ups on incoming email.
Basicly we have a mail server sitting behind a Watchguard Firewall. The Firewall is doing 1 to 1 NAT from the external IP address to the mail server.
The problem is the External IP adrress the mail is routed from appears to the the Gateway address and not the mail server address.
So if some one send me an email my MX record sends it to 1.2.3.4
However when I send out and email it comes from my Gateway of 1.2.3.5
Any ideas?
Thanks
We are having a problem with some ISP's like AOL the do reverse Looks ups on incoming email.
Basicly we have a mail server sitting behind a Watchguard Firewall. The Firewall is doing 1 to 1 NAT from the external IP address to the mail server.
The problem is the External IP adrress the mail is routed from appears to the the Gateway address and not the mail server address.
So if some one send me an email my MX record sends it to 1.2.3.4
However when I send out and email it comes from my Gateway of 1.2.3.5
Any ideas?
Thanks
oops typo DNA=DNS
Sounds like your NAT isn't working correctly.
Use http://checkip.dyndns.org/ to see what IP address the traffic appears to be coming from.
You will probably need to review your NAT rules to ensure that they apply to both inbound and outbound traffic.
Simon.
Use http://checkip.dyndns.org/ to see what IP address the traffic appears to be coming from.
You will probably need to review your NAT rules to ensure that they apply to both inbound and outbound traffic.
Simon.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Oh yes on last thing. Make sure this filter is higher in the sort order than your filter for your other smtp traffic. Filtering is done in order from rule 1 to rule 250 so if you have any other smtp filters ahead of it in the order it will apply that filter without ever seeing the new filter you just created. Rule of thumb. Always place your specific and deny rules at the top of the list. You can see the order when you open WSM unless you have auto ordering on. Which is a bad thing in my opinion. Do you want the watchguard to control the rules or do you want to control them?
You can change the order mode by simply right clicking on any rule and selecting the order mode.
Hope this all helps.
You can change the order mode by simply right clicking on any rule and selecting the order mode.
Hope this all helps.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
A Record mailserver.yourdomain.com > 123.123.123.123 (the outside IP of your firewall)
MX Record for yourdomain pints to mailserver.yourdomain.com
PTR record for mailserver.yourdomain.com that points to 123.123.123.123
Then on your SMTP server set your masquerade domain to mailserver.yourdomain.com
Then sit back - light your pipe - and admire your handiwork