История изменений
Исправление sp1er, (текущая версия) :
Итак, айпишники висят на софтовом роутере VyOS, 2 провайдера. C VyOS проблросы на сервер почты. Прошлые посты редактировать не могу :(
Firewall
name block25 {
default-action accept
description "Used to block SMTP traffic from LANs"
rule 1000 {
action accept
destination {
address 10.32.0.99
}
}
rule 2000 {
action reject
destination {
port 25
}
protocol tcp
}
NAT
nat {
destination {
rule 100 {
description "Mail server (KrTel)"
destination {
address xxx.xxx.xxx.xxx
port 25
}
inbound-interface eth1.901
protocol tcp
translation {
address 10.32.0.99
port 25
}
}
rule 110 {
description "Mail server (KS)"
destination {
address yyy.yyy.yyy.yyy
port 25
}
inbound-interface eth1.900
protocol tcp
translation {
address 10.32.0.99
port 25
}
}
rule 111 {
description "Mail server (KS)"
destination {
address yyy.yyy.yyy.yyy
port 2525
}
inbound-interface eth1.900
protocol tcp
translation {
address 10.32.0.99
port 25
}
}
rule 120 {
description "IMAP (KS"
destination {
address yyy.yyy.yyy.yyy
port 143
}
inbound-interface eth1.900
protocol tcp
translation {
address 10.32.0.99
port 143
}
}
rule 125 {
description "Mail server (KrTel)"
destination {
address xxx.xxx.xxx.xxx
port 143
}
inbound-interface eth1.901
protocol tcp
translation {
address 10.32.0.99
port 143
}
}
rule 130 {
description "Mail server (KrTel)"
destination {
address xxx.xxx.xxx.xxx
port 110
}
inbound-interface eth1.901
protocol tcp
translation {
address 10.32.0.99
port 110
}
}
rule 140 {
description "POP3 (KS)"
destination {
address yyy.yyy.yyy.yyy
port 110
}
inbound-interface eth1.900
protocol tcp
translation {
address 10.32.0.99
port 110
}
}
Исправление sp1er, :
Итак, айпишники висят на софтовом роутере VyOS, 2 провайдера. R Прошлые посты редактировать не могу :(
Firewall
name block25 {
default-action accept
description "Used to block SMTP traffic from LANs"
rule 1000 {
action accept
destination {
address 10.32.0.99
}
}
rule 2000 {
action reject
destination {
port 25
}
protocol tcp
}
NAT
nat {
destination {
rule 100 {
description "Mail server (KrTel)"
destination {
address xxx.xxx.xxx.xxx
port 25
}
inbound-interface eth1.901
protocol tcp
translation {
address 10.32.0.99
port 25
}
}
rule 110 {
description "Mail server (KS)"
destination {
address yyy.yyy.yyy.yyy
port 25
}
inbound-interface eth1.900
protocol tcp
translation {
address 10.32.0.99
port 25
}
}
rule 111 {
description "Mail server (KS)"
destination {
address yyy.yyy.yyy.yyy
port 2525
}
inbound-interface eth1.900
protocol tcp
translation {
address 10.32.0.99
port 25
}
}
rule 120 {
description "IMAP (KS"
destination {
address yyy.yyy.yyy.yyy
port 143
}
inbound-interface eth1.900
protocol tcp
translation {
address 10.32.0.99
port 143
}
}
rule 125 {
description "Mail server (KrTel)"
destination {
address xxx.xxx.xxx.xxx
port 143
}
inbound-interface eth1.901
protocol tcp
translation {
address 10.32.0.99
port 143
}
}
rule 130 {
description "Mail server (KrTel)"
destination {
address xxx.xxx.xxx.xxx
port 110
}
inbound-interface eth1.901
protocol tcp
translation {
address 10.32.0.99
port 110
}
}
rule 140 {
description "POP3 (KS)"
destination {
address yyy.yyy.yyy.yyy
port 110
}
inbound-interface eth1.900
protocol tcp
translation {
address 10.32.0.99
port 110
}
}
Исходная версия sp1er, :
Итак, айпишники висят на софтовом роутере VyOS, 2 провайдера. Firewall
name block25 {
default-action accept
description "Used to block SMTP traffic from LANs"
rule 1000 {
action accept
destination {
address 10.32.0.99
}
}
rule 2000 {
action reject
destination {
port 25
}
protocol tcp
}
NAT
nat {
destination {
rule 100 {
description "Mail server (KrTel)"
destination {
address xxx.xxx.xxx.xxx
port 25
}
inbound-interface eth1.901
protocol tcp
translation {
address 10.32.0.99
port 25
}
}
rule 110 {
description "Mail server (KS)"
destination {
address yyy.yyy.yyy.yyy
port 25
}
inbound-interface eth1.900
protocol tcp
translation {
address 10.32.0.99
port 25
}
}
rule 111 {
description "Mail server (KS)"
destination {
address yyy.yyy.yyy.yyy
port 2525
}
inbound-interface eth1.900
protocol tcp
translation {
address 10.32.0.99
port 25
}
}
rule 120 {
description "IMAP (KS"
destination {
address yyy.yyy.yyy.yyy
port 143
}
inbound-interface eth1.900
protocol tcp
translation {
address 10.32.0.99
port 143
}
}
rule 125 {
description "Mail server (KrTel)"
destination {
address xxx.xxx.xxx.xxx
port 143
}
inbound-interface eth1.901
protocol tcp
translation {
address 10.32.0.99
port 143
}
}
rule 130 {
description "Mail server (KrTel)"
destination {
address xxx.xxx.xxx.xxx
port 110
}
inbound-interface eth1.901
protocol tcp
translation {
address 10.32.0.99
port 110
}
}
rule 140 {
description "POP3 (KS)"
destination {
address yyy.yyy.yyy.yyy
port 110
}
inbound-interface eth1.900
protocol tcp
translation {
address 10.32.0.99
port 110
}
}