NW5.1SP6 - BMv3.7 SP2 - edir 862 sp3.

Having problems receiving incoming mail on GWIA box, this box is a
seperate
server inside LAN. I have both dynamic & Static NAT enabled. I have a
static
NAT for GWIA box setup. Using DNS Proxy, GWIA box can ping
www.novell.com.
I have Citrix filters for incoming setup (ok) I have filter setup for
GW
Client to access internal GW server from internet(ok) BM Proxy works,
(In
fact has never had a problem). When disable filtering GWIA can receive

incoming email.

I setup up GWIA SMTP per TID 10013822 number 3 & 4. didn't need dns
filters
since running, here are the 2 filters.

DNS Proxy.

Here is the 2 filters

Source Interface Type: Interface
Source Interface: CE100B_1 (Public)
Source Circuit:
Destination Interface Type: Interface
Destination Interface: <All Interfaces>
Destination Circuit:

Packet Type: SMTP Mail-In Protocol: TCP
Src Port(s): 25 Dest Port(s): 1024-65535 ACK Bit Filtering: Disabled Stateful Filtering: Disabled

Src Addr Type: Any Address
Src IP Address:
Dest Addr Type: Host
Dest IP Address: 10.10.10.2
Logging: Disabled
Comment: Allow Incoming SMTP, JT, 5-6-2003,
#10013822



Source Interface Type: Interface
Source Interface: <All Interfaces>
Source Circuit:

Destination Interface Type: Interface
Destination Interface: CE100B_1 (Public)
Destination Circuit:

Packet Type: SMTP Mail-Out Protocol: TCP
Src Port(s): 1024-65535 Dest Port(s): 25
ACK Bit Filtering: Disabled Stateful Filtering: Disabled

Src Addr Type: Host
Src IP Address: 10.10.10.2
Dest Addr Type: Any Address
Dest IP Address:
Logging: Disabled
Comment: Allow Outgoing SMTP, JT, 6-5-2003,
#10013822


I was reading a previous post on this issue & I am having simliar
problem.

I noticed a response that I have a question about

If GWIA is on another server, you would have to static NAT a secondary

public IP address to the internal server, and have filter exceptions
as
follows: I have the STATIC NAT done and 1st 2 filters it seems I am
missing
the 3rd.

Allow tcp dest. Port 25 to GWIA address.
Allow tcp source port 25 from GWIA address.
Allow smtp-st from private interface to public interface.

These 3 exceptions allow inbound and outbound smtp mail, if the
routing
and NAT are correct. This also assumes the GWIA server can resolve
DNS, and ping the internet, etc.

On the 3rd filter would it look like this since my problem is
incoming.



Source Interface Type: Interface
Source Interface: CE100B_1 (Public)
Source Circuit:

Destination Interface Type: Interface
Destination Interface: CPQNF3_1 (Private)
Destination Circuit:

Packet Type: smtp-st Protocol: TCP
Src Port(s): <All> Dest Port(s): 25
ACK Bit Filtering: Disabled Stateful Filtering: Enabled

Src Addr Type: Host
Src IP Address: xx.xx.xx.219 External address for
GWIA


Dest Addr Type: Host
Dest IP Address: 10.10.10.2 - Internal address of GWIA

Logging: Disabled
Comment: Allow incoming from public to private ,
JT,
6-5-2003,


Would you need the bottom section filled in at all - or is just doing
the
top what is need?

If bottom is need do I need both or just one or the other?

If Src Addr Type is need and set to Host, would IP address be the
public IP
address for BM server or public IP address for GWIA.


Thanks