Pokusao sam da premestim mail server iz firewall-a ili u sustini rutera (2801), i uneo sam dve komande:
ip nat inside source static tcp 192.168.100.119 25 62.100.68.164 25
ip nat inside source static tcp 192.168.100.119 7 62.100.68.164 7
…
Znaci prva daresa je privatna adresa majl servara a druga javna.
Na ruteru postiji jos jedna slicna komanada za port forwarding ssh, koji radi.
ip nat inside source static tcp 192.168.0.112 22 200.100.68.166 19561 extendable
Moj majl server ne radi, istina moze da salje majlove napolje ali ne moze da ih prima.
Ping i tracert stizu do javne adrese majl severa, i to izgleda u redu.
2 <1 ms <1 ms <1 ms 216.98.153.73
3 <1 ms <1 ms <1 ms 65.77.90.41
…
20 178 ms 177 ms 177 ms 62.100.200.65
21 175 ms 175 ms 174 ms 62.100.68.164
Sada uzeo sam i da vidim d ali nat radi i on radi:
myrouter#sh ip nat trans
Pro Inside global Inside local Outside local Outside global
..
tcp 62.100.68.164 7 192.168.100.119 7 --- ---
tcp 62.100.68.164:25 192.168.100.119:25 212.227.126.188:52133 212.227.126.188:
52133
tcp 62.100.68.164:25 192.168.100.119:25 212.227.126.188:52388 212.227.126.188:
52388
Tj mogu d avidim da se neko prikacio za nat. Mislim neko hoce da mi posalje majl.
Sada testirao sam sa
http://www.dnsright.com portscanom:
62.100.68.164:21 --> Open
62.100.68.164:23 --> Closed
62.100.68.164:25 --> Closed
62.100.68.164:53 --> Closed
62.100.68.164:79 --> Closed
62.100.68.164:80 --> Closed
62.100.68.164:110 --> Closed
62.100.68.164:135 --> Closed
62.100.68.164:139 --> Closed
62.100.68.164:143 --> Closed
Na moj majl server sam testirao:
C:\Documents and Settings\adminco>netstat -an
Active Connections
Proto Local Address Foreign Address State
TCP 0.0.0.0:25 0.0.0.0:0 LISTENING
TCP 0.0.0.0:110 0.0.0.0:0 LISTENING
TCP 0.0.0.0:111 0.0.0.0:0 LISTENING
TCP 0.0.0.0:135 0.0.0.0:0 LISTENING
TCP 0.0.0.0:143 0.0.0.0:0 LISTENING
TCP 0.0.0.0:366 0.0.0.0:0 LISTENING
TCP 0.0.0.0:445 0.0.0.0:0 LISTENING
TCP 0.0.0.0:587 0.0.0.0:0 LISTENING
TCP 0.0.0.0:1000 0.0.0.0:0 LISTENING
TCP 0.0.0.0:1044 0.0.0.0:0 LISTENING
TCP 0.0.0.0:3172 0.0.0.0:0 LISTENING
TCP 0.0.0.0:3389 0.0.0.0:0 LISTENING
TCP 0.0.0.0:6389 0.0.0.0:0 LISTENING
TCP 0.0.0.0:7937 0.0.0.0:0 LISTENING
TCP 0.0.0.0:7938 0.0.0.0:0 LISTENING
TCP 0.0.0.0:8510 0.0.0.0:0 LISTENING
TCP 0.0.0.0:9004 0.0.0.0:0 LISTENING
Kada ukinem te na instrukcije ja imam sledece:
62.100.68.164:21 --> Open
62.100.68.164:23 --> Closed
62.100.68.164:25 --> Open
62.100.68.164:53 --> Closed
62.100.68.164:79 --> Closed
62.100.68.164:80 --> Closed
62.100.68.164:110 --> Open
62.100.68.164:135 --> Closed
62.100.68.164:139 --> Closed
62.100.68.164:143 --> Open
62.100.68.164:161 --> Closed
62.100.68.164162 --> Closed
62.100.68.164:389 --> Closed
62.100.68.164:443 --> Closed
62.100.68.164:445 --> Open
62.100.68.164:548 --> Closed
62.100.68.164:1433 --> Closed
Vidim da mi je ulaz i izlaz sa mjal servera preko iste putanje. Ne znam u cemu je greska? Sta bih trebao da radim?
[Ovu poruku je menjao pereubu dana 09.03.2009. u 13:03 GMT+1]