>I just tried the reverse; attempting to telnet to a
> working mail server on port 25 from the problem box. the telnet command
> hung, and never did make a connection to the other server.




A rule in rc.local was carried over to the new firewall. It blocked all
outgoing mail unless it originated from the the old IP of the server. I
commented it out and everything works fine. Not sure how any mail ever got
delivered.

sorry