Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: ip track through natting

From: Devdas Bhagat <dvb () users sourceforge net>
Date: Fri, 25 Jul 2003 09:13:47 +0530
On 24/07/03 12:40 -0400, Paul Robertson wrote:

On Wed, 23 Jul 2003, parul devgan wrote:


The mail server is on a private network, the client ip
address is natted when the request comes to the mail
server. The problem is that I have to find the client
ip address without the nat address.



That's an abnormal setup.  You should NAT the server's address, not the 
client's.  Otherwise, you'll have to get the info from the NAT device, or 
trust the EHLO/HELO or message headers.

This is typical for an ISP setup here, where a small redistributor will NAT
from a single IP address and have his clients use his providers SMTP
server. Not a good thing, but people like to go cheap :(.
To the OP, this is simply not possible. You either run a server on the
NATing device and use that, or you use SMTP AUTH.

Devdas Bhagat
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: