[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-security] pmfirewall , IPCHAINS, CDONTS and mail forwarding
- Subject: RE: [cobalt-security] pmfirewall , IPCHAINS, CDONTS and mail forwarding
- From: "Sean Ward" <planxty@xxxxxxxx>
- Date: Mon, 22 Apr 2002 23:07:04 -0500
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Thanks! Now if I can just figure out why I can't add the nameservers to
the pmfirewall.conf without the box dropping off the net...
DO I need a similar rule for port 53?
Thanks,
Sean
-----Original Message-----
From: cobalt-security-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-security-admin@xxxxxxxxxxxxxxx] On Behalf Of Gerald Waugh
Sent: Monday, April 22, 2002 10:55 PM
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: Re: [cobalt-security] pmfirewall , IPCHAINS, CDONTS and mail
forwarding
On Monday 22 April 2002 08:01 pm, Sean Ward wrote:
> I installed pmfirewall with this:
>
> $IPCHAINS -A input -p tcp -s $REMOTENET -d $OUTERNET 25 -j ACCEPT
>
> Several websites use CDONTS and the mail is forwarded to accounts off
> the RAQ
>
> When pmfirewall is running, the mail won't forward
You have port 25 being accepted coming in not going out.... Add
$IPCHAINS -A output -p tcp -s $OUTERNET -d $REMOTENET 25 -j ACCEPT
--
Gerald Waugh : Registered Linux user # 255245
http://www.frontstreetnetworks.com
Front Street Networks LLC - ph. 203.785.0699
229 Front Street, Ste. #C, New Haven, CT, United States of America
11:49pm up 32 days, 7:16, 3 users, load average: 1.22, 1.52, 1.77
_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security