Hello. I have an annoying problem that I can't seem to sort out. I have a server that runs my web, dns and mail services. It has two NICs, one has always been disabled and the other is setup 10.0.0.100/24 GW 10.0.0.1. I have static IPs, lets say 1.1.1.193 and 1.1.1.194. They are both setup in proxy ARP in the firewall and there is NAT setup to route .193:80,53 to 10.0.0.100 and .194:110/25 to 10.0.0.100 and .194:80 to 10.0.0.100:8000 (for my webmail).
This has worked great for a long time. However, I went to email a craigslist ad and CL bounced my mail claiming DNS issues. I checked into it and I can see how a paranoid mail server would be unhappy with me. My domain's MX record is mail.domain.com and the corresponding A record is set to 1.1.1.194. However, looking at the SMTP logs I see that Craigslist is resolving my connection to m0n0's WAN interface 1.1.1.205 rather than .194 so when it compares it to the reverse lookup on mail.domain.com and gets .194 it bounces me.
Figured the simple solution was enable the second NIC and set it up for my mail. I went into m0n0 and removed the proxy ARP for .194 and removed all the NAT and rules for .194. Then I enabled the NIC and set it to 1.1.1.194/28, GW 1.1.1.206. I then switched my LAN NIC from DHCP to static and set it as 10.0.0.100/24 with no gateway. This works fine for accessing the mail on .194, but for some reason m0n0 is refusing to route things via NAT to 10.0.0.102 now. Is that because there is no gateway? I was under the impression that local 10.x.x.x traffic would be fine w/o the gateway...? Windows bitches if I give BOTH of the NICs a gateway.
Is there any solution aside from moving the mail services to another server? Thanks!
|
Topic: Working with multiple IPs