Hi Tom,
On DMZ I run SMTP server on port 25 and Check-Virus on port 2500
So I portforward firewall port 25 to DMZ:2500, and 2500 to DMZ:25.
If I just blacklist
IP tcp 25
it does not work.
If I do IP tcp 2500
it works.
To be safe I did both "IP tcp 25,2500", but could you explain me why? I
think that IP tcp 25 on firewall should be enough because that where
Shorewall should have checked. Or maybe the order of my settings in
/etc/shorewall/rules
Thank you.
-----Original Message-----
Date: Mon, 06 Jan 2003 09:41:00 -0800
From: Tom Eastep <[EMAIL PROTECTED]>
Cc: "'[EMAIL PROTECTED]'" <[EMAIL PROTECTED]>
Subject: RE: [leaf-user] Blacklist in Shorewall (Bering)
--On Monday, January 06, 2003 12:38:29 PM -0500 Binh Do <[EMAIL PROTECTED]>
wrote:
> Sorry, Tom. I meant blocking traffic from certain IP to my external
> interface. Actually I saw a person keep sending me junk mail constantly
> for several days. He/she uses YAHOO, HOTMAIL accounts but uses a
> mail-server not beloging to HOTMAIL/YAHOO. So I want to black-list that
> IP.
>
If you specify 'blacklist' as an option for your external interface then
you can place either just the offending IP address or the address followed
by "tcp 25" in the /etc/shorewall/blacklist file.
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
Shoreline, \ http://shorewall.sf.net
Washington USA \ [EMAIL PROTECTED]
-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
