RE: [qmailtoaster] qtp-newmodel backing up /home/vpopmail/domains

[Craig Smith]

On my box, with our standard tar backups, we also have a large amount of
data, but I still wanted to preserve/backup the domains folder and it's
associated structure.  Because we are taring we can exclude the data and tar
only the folders and in our case .qmail files.

If you want to preserve the domains structure, then you could also add
something as follows.  

tar cfj $SANDBOX/home/vpopmail/domains.tar /home/vpopmail/domains
--exclude=*doc-net.com,*> /dev/null 2>&1 

at --exclude=* replace doc-net.com, with whatever is relevant to your
server, the actual file name of the mail files.

I find that quite handy, so thought I would share.


-Original Message-
From: Eric "Shubes" [mailto:[EMAIL PROTECTED] 
Sent: 08 May 2007 16:25
To: qmailtoaster-list@qmailtoaster.com
Subject: Re: [qmailtoaster] qtp-newmodel backing up /home/vpopmail/domains

Dan Herbon wrote:
> Hello,
> 
> Can anyone assist me with an issue regarding the qtp-newmodel script.
> The problem I am having is that when it creates the sandbox it wants to
> copy the contents of the /home/vpopmail/domains directory. That
> directory contains over 12gigs of data, mostly from my archive directory
> where all mail that's goes through the server is archived. Is there a
> way to exclude my archive directory so it doesn't create it in the
sandbox?
> 
>  
> 
> thanks
> 

You can edit /opt/qmailtoaster-plus/bin/qtp-build-sandbox, replacing line
290:
cp -pR /home/vpopmail $SANDBOX/home/.

with:
mkdir -p $SANDBOX/home/vpopmail
cp -pR /home/vpopmail/bin $SANDBOX/home/vpopmail/.
cp -pR /home/vpopmail/doc $SANDBOX/home/vpopmail/.
cp -pR /home/vpopmail/etc $SANDBOX/home/vpopmail/.
cp -pR /home/vpopmail/include $SANDBOX/home/vpopmail/.
cp -pR /home/vpopmail/lib $SANDBOX/home/vpopmail/.

For what it's worth, there is a major enhancement in the works for
qtp-newmodel, thanks to Justice London. The existing sandbox processing is
being replaced with an overlay filesystem, which will eliminate the bloat
that the present sandbox contains. The enhancement is presently in the
testing stage, but I've had little time for testing. I hope to get it out
this month. Stay tuned.

-- 
-Eric 'shubes'

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] qtp-newmodel backing up /home/vpopmail/domains

[PakOgah]

Just searching the archive about qtp-newmodel and qtp-build-sandbox
and found this
http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg10667.html
which gave me enough picture what qtp-newmodel and qtp-build-sandbox done

lets say currently I am using qmail-toaster-1.03-1.3.13 and it's friends 
at the time
and when running qtp-ami-up2date found new version is 
qmail-toaster-1.03-1.3.15 also many other packages listed also
other than upgrading manually one-by-one, it will be easier to upgrade 
all toaster packages with qtp-newmodel right?
although I dont know what is the difference. (I can see the changelog on 
qmailtoaster.com site but it is not details)
but if the upgrade just a minor (only cosmestic, no bugs fixed or 
security update) it could be waste of time right?


now my primary question,
why building a sandbox is needed for new released qmailtoaster packages?
why dont we just build the rpm source and upgrade it?
if you suggest using qtp-newmodel / sandbox just for major changes only 
when that time come?
what is major version on this package qmail-toaster-1.03-1.3.13 (I am 
guessing it's 3)?

building a sandbox require much space and time to consume.

another thing, why qmailtoaster dont have version number like qmailrocks 
or deepofix?
which easier for us if someone asking what version you are using rather 
than listing all qt packages?


Craig Smith wrote:

On my box, with our standard tar backups, we also have a large amount of
data, but I still wanted to preserve/backup the domains folder and it's
associated structure.  Because we are taring we can exclude the data and tar
only the folders and in our case .qmail files.

If you want to preserve the domains structure, then you could also add
something as follows.  


tar cfj $SANDBOX/home/vpopmail/domains.tar /home/vpopmail/domains
--exclude=*doc-net.com,*> /dev/null 2>&1 


at --exclude=* replace doc-net.com, with whatever is relevant to your
server, the actual file name of the mail files.

I find that quite handy, so thought I would share.


-Original Message-
From: Eric "Shubes" [mailto:[EMAIL PROTECTED] 
Sent: 08 May 2007 16:25

To: qmailtoaster-list@qmailtoaster.com
Subject: Re: [qmailtoaster] qtp-newmodel backing up /home/vpopmail/domains

Dan Herbon wrote:
  

Hello,

Can anyone assist me with an issue regarding the qtp-newmodel script.
The problem I am having is that when it creates the sandbox it wants to
copy the contents of the /home/vpopmail/domains directory. That
directory contains over 12gigs of data, mostly from my archive directory
where all mail that's goes through the server is archived. Is there a
way to exclude my archive directory so it doesn't create it in the


sandbox?
  
 


thanks




You can edit /opt/qmailtoaster-plus/bin/qtp-build-sandbox, replacing line
290:
cp -pR /home/vpopmail $SANDBOX/home/.

with:
mkdir -p $SANDBOX/home/vpopmail
cp -pR /home/vpopmail/bin $SANDBOX/home/vpopmail/.
cp -pR /home/vpopmail/doc $SANDBOX/home/vpopmail/.
cp -pR /home/vpopmail/etc $SANDBOX/home/vpopmail/.
cp -pR /home/vpopmail/include $SANDBOX/home/vpopmail/.
cp -pR /home/vpopmail/lib $SANDBOX/home/vpopmail/.

For what it's worth, there is a major enhancement in the works for
qtp-newmodel, thanks to Justice London. The existing sandbox processing is
being replaced with an overlay filesystem, which will eliminate the bloat
that the present sandbox contains. The enhancement is presently in the
testing stage, but I've had little time for testing. I hope to get it out
this month. Stay tuned.

  



-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[qmailtoaster] Greylisting

[Ron Dyck]

I'm new to qmailtoaster, though I have been using qmail for a number
of years. I'm now in the process of setting up a new server and have
implemented qmailtoaster.

I'm considering greylisting to cut down on spam and have breifly
looked at a few implementations. Does anyone have suggestions as to
which implementation/experience in set-up etc.?

Regards,

ron

--
=
Ron Dyck
[EMAIL PROTECTED]
www.webbtech.net
=

-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] QTP 0.2.11-1.3.13 Released

[CK Lee]

I got the following error upon installation for both download

qmailtoaster-plus-current.noarch.rpm: not an rpm package (or package manifest):
or
qmailtoaster-plus-0.2.11-1.3.13.noarch.rpm: not an rpm package (or package
manifest):


> Version 0.2.11-1.3.13 of QTP has been released.  This is a maintenance
> release to make a few small changes.
> Notables are:
>
> Rules du Jour config has been changed to no longer gives warnings about
> Antidrug and Comcast network
> RBLs have been updated to a more sane set of lists
> Minor changes to scripts to correct variable locations
>
> Official release:
> http://qtp.qmailtoaster.com/trac/browser/releases/qmailtoaster-plus-0.2.11-1.3.13.noarch.rpm
>
>
> Shortcut for lazy people (myself included):
> http://qtp.qmailtoaster.com/trac/browser/releases/qmailtoaster-plus-current.noarch.rpm
>
> !DSPAM:4640a7b496648549282577!



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] QTP 0.2.11-1.3.13 Released

[Eric \"Shubes\"]

CK Lee wrote:
> I got the following error upon installation for both download
> 
> qmailtoaster-plus-current.noarch.rpm: not an rpm package (or package 
> manifest):
> or
> qmailtoaster-plus-0.2.11-1.3.13.noarch.rpm: not an rpm package (or package
> manifest):
> 
> 
>> Version 0.2.11-1.3.13 of QTP has been released.  This is a maintenance
>> release to make a few small changes.
>> Notables are:
>>
>> Rules du Jour config has been changed to no longer gives warnings about
>> Antidrug and Comcast network
>> RBLs have been updated to a more sane set of lists
>> Minor changes to scripts to correct variable locations
>>
>> Official release:
>> http://qtp.qmailtoaster.com/trac/browser/releases/qmailtoaster-plus-0.2.11-1.3.13.noarch.rpm
>>
>>
>> Shortcut for lazy people (myself included):
>> http://qtp.qmailtoaster.com/trac/browser/releases/qmailtoaster-plus-current.noarch.rpm
>>
>> !DSPAM:4640a7b496648549282577!
> 

I think you need to go straight to subversion for the rpms. The links should
have pointed to http://qtp.qmailtoaster.com/trac/svn/releases/

-- 
-Eric 'shubes'

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Firewall rules

[Eric \"Shubes\"]

[EMAIL PROTECTED] wrote:
> Hello,
> It seems i have trouble getting my email programs to connect when i have
> the linux firewall on, centos 5 builtin firewall.
> 
> connection time out on whatever i try. pop3,imap,smtp, submission, ssl
> 
> Clues? I have checked the iptables and it should be ok, still not
> 
> ( yeah i have run firewall.sh :P )
> 
> B/R
> Ole J
> 

Is your toaster on a private IP address behind a firewall? If so, you'll
need to modify your toaster firewall.sh to allow traffic from your local subnet.

Example (includes existing lines for reference):
## Drop all incoming fragments
iptables -A INPUT -i eth0 -f -j DROP
#
# shubes 5/16/06 - accept packets from local net
iptables -A INPUT -s 192.168.nnn.0/255.255.255.0 -j ACCEPT
#
## Drop outside packets with local addresses - anti-spoofing measure


-- 
-Eric 'shubes'

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Firewall rules

[Ole J]

This server has official static ip

This is my iptables:


# Firewall configuration written by system-config-securitylevel
# Manual customization of this file is not recommended.
*filter
:FORWARD ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:RH-Firewall-1-INPUT - [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -j RH-Firewall-1-INPUT
-A FORWARD -j RH-Firewall-1-INPUT
-A RH-Firewall-1-INPUT -i lo -j ACCEPT
-A RH-Firewall-1-INPUT -p icmp --icmp-type any -j ACCEPT
-A RH-Firewall-1-INPUT -p 50 -j ACCEPT
-A RH-Firewall-1-INPUT -p 51 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp -d 224.0.0.251 --dport 5353 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp -m udp --dport 631 -j DROP
-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 631 -j DROP
-A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
# ftp
-A RH-Firewall-1-INPUT -p tcp -m tcp -m state --dport 21 --state NEW -j 
ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m tcp -m state --dport 25 --state NEW -j 
ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 22 --state NEW -j 
ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 443 --state NEW -j 
ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 80 --state NEW -j 
ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 1 --state NEW 
-j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 2 --state NEW 
-j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 587 --state NEW -j 
ACCEPT

-A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited
# imap
-A RH-Firewall-1-INPUT -p tcp -m tcp -m state --dport 143 --state NEW -j 
ACCEPT

# imapssl
-A RH-Firewall-1-INPUT -p tcp -m tcp -m state --dport 993 --state NEW -j 
ACCEPT

# ftp
-A RH-Firewall-1-INPUT -p tcp -m tcp -m state --dport 21 --state NEW -j 
ACCEPT

COMMIT
# Generated by webmin
*mangle
:FORWARD ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:PREROUTING ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
COMMIT
# Completed
# Generated by webmin
*nat
:OUTPUT ACCEPT [0:0]
:PREROUTING ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
COMMIT
# Completed


Eric "Shubes" wrote:


[EMAIL PROTECTED] wrote:
 


Hello,
It seems i have trouble getting my email programs to connect when i have
the linux firewall on, centos 5 builtin firewall.

connection time out on whatever i try. pop3,imap,smtp, submission, ssl

Clues? I have checked the iptables and it should be ok, still not

( yeah i have run firewall.sh :P )

B/R
Ole J

   



Is your toaster on a private IP address behind a firewall? If so, you'll
need to modify your toaster firewall.sh to allow traffic from your local subnet.

Example (includes existing lines for reference):
## Drop all incoming fragments
iptables -A INPUT -i eth0 -f -j DROP
#
# shubes 5/16/06 - accept packets from local net
iptables -A INPUT -s 192.168.nnn.0/255.255.255.0 -j ACCEPT
#
## Drop outside packets with local addresses - anti-spoofing measure


 




--
Please note that this message may contain confidential information. If you
have received this message by mistake, please inform the sender of the
mistake by sending a reply, then delete the message from your system without
making, distributing or retaining any copies of it.
Although we believe that the message and any attachments are free from
viruses and other errors that might affect the computer or IT system where
it is received and read, the recipient opens the message at his or her own
risk. We assume no responsibility for any loss or damage arising from the
receipt or use of this message.



-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Firewall rules

[Warren (mailing lists)]

Ole J wrote:

This server has official static ip

This is my iptables:


# Firewall configuration written by system-config-securitylevel
# Manual customization of this file is not recommended.
*filter
:FORWARD ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:RH-Firewall-1-INPUT - [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -j RH-Firewall-1-INPUT
-A FORWARD -j RH-Firewall-1-INPUT
-A RH-Firewall-1-INPUT -i lo -j ACCEPT
-A RH-Firewall-1-INPUT -p icmp --icmp-type any -j ACCEPT
-A RH-Firewall-1-INPUT -p 50 -j ACCEPT
-A RH-Firewall-1-INPUT -p 51 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp -d 224.0.0.251 --dport 5353 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp -m udp --dport 631 -j DROP
-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 631 -j DROP
-A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
# ftp
-A RH-Firewall-1-INPUT -p tcp -m tcp -m state --dport 21 --state NEW -j 
ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m tcp -m state --dport 25 --state NEW -j 
ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 22 --state NEW -j 
ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 443 --state NEW -j 
ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 80 --state NEW -j 
ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 1 --state NEW 
-j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 2 --state NEW 
-j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 587 --state NEW -j 
ACCEPT

-A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited
# imap
-A RH-Firewall-1-INPUT -p tcp -m tcp -m state --dport 143 --state NEW -j 
ACCEPT

# imapssl
-A RH-Firewall-1-INPUT -p tcp -m tcp -m state --dport 993 --state NEW -j 
ACCEPT

# ftp
-A RH-Firewall-1-INPUT -p tcp -m tcp -m state --dport 21 --state NEW -j 
ACCEPT

COMMIT
# Generated by webmin
*mangle
:FORWARD ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:PREROUTING ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
COMMIT
# Completed
# Generated by webmin
*nat
:OUTPUT ACCEPT [0:0]
:PREROUTING ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
COMMIT
# Completed


Eric "Shubes" wrote:


[EMAIL PROTECTED] wrote:
 


Hello,
It seems i have trouble getting my email programs to connect when i have
the linux firewall on, centos 5 builtin firewall.

connection time out on whatever i try. pop3,imap,smtp, submission, ssl

Clues? I have checked the iptables and it should be ok, still not

( yeah i have run firewall.sh :P )

B/R
Ole J

  


Is your toaster on a private IP address behind a firewall? If so, you'll
need to modify your toaster firewall.sh to allow traffic from your 
local subnet.


Example (includes existing lines for reference):
## Drop all incoming fragments
iptables -A INPUT -i eth0 -f -j DROP
#
# shubes 5/16/06 - accept packets from local net
iptables -A INPUT -s 192.168.nnn.0/255.255.255.0 -j ACCEPT
#
## Drop outside packets with local addresses - anti-spoofing measure


 






You have your imap rules after your reject rule.  That would explain 
imap not working.  I don't know about the rest.


W

-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[qmailtoaster] greylisting implementation

[Ron Dyck]

I'm new to qmailtoaster, though I have been using qmail for a number
of years. I'm now in the process of setting up a new server and have
implemented qmailtoaster.

I'm considering greylisting to cut down on spam and have breifly
looked at a few implementations. Does anyone have suggestions as to
which implementation/experience in set-up etc.?

Regards,

ron

--
=
Ron Dyck
www.webbtech.net
=

-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] greylisting implementation

[Erik A. Espinoza]

http://www.kabewm.com/?p=19

Also, greylisting can cause issues with spam appliances. Many of these
spam appliances do not have a large cache and will just take the
temporary rejection as a permanent rejection.

Thanks,
Erik

On 5/9/07, Ron Dyck <[EMAIL PROTECTED]> wrote:

I'm new to qmailtoaster, though I have been using qmail for a number
of years. I'm now in the process of setting up a new server and have
implemented qmailtoaster.

I'm considering greylisting to cut down on spam and have breifly
looked at a few implementations. Does anyone have suggestions as to
which implementation/experience in set-up etc.?

Regards,

ron

--
=
Ron Dyck
www.webbtech.net
=

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]




-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] greylisting implementation

[davide bozzelli]

Ron Dyck writes:

I'm new to qmailtoaster, though I have been using qmail for a number
of years. I'm now in the process of setting up a new server and have
implemented qmailtoaster.

I'm considering greylisting to cut down on spam and have breifly
looked at a few implementations. Does anyone have suggestions as to
which implementation/experience in set-up etc.?


-
The implementation available at: 
http://freesoftware.silence.org/spamdyke/ is coded in pure c and so it's 
fast than the other counterparts.


You could choose the localdomains to be greylisted and the remote ip to 
be whitelisted .


Spamdyke gives you also some other useful anti-spam protection ...

Could be useful,

have fun,

Davide

-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Firewall rules

[Ole J]

No, it isnt behind other firewalls.


Warren (mailing lists) wrote:


Ole J wrote:


This server has official static ip

This is my iptables:


# Firewall configuration written by system-config-securitylevel
# Manual customization of this file is not recommended.
*filter
:FORWARD ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:RH-Firewall-1-INPUT - [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -j RH-Firewall-1-INPUT
-A FORWARD -j RH-Firewall-1-INPUT
-A RH-Firewall-1-INPUT -i lo -j ACCEPT
-A RH-Firewall-1-INPUT -p icmp --icmp-type any -j ACCEPT
-A RH-Firewall-1-INPUT -p 50 -j ACCEPT
-A RH-Firewall-1-INPUT -p 51 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp -d 224.0.0.251 --dport 5353 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp -m udp --dport 631 -j DROP
-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 631 -j DROP
-A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
# ftp
-A RH-Firewall-1-INPUT -p tcp -m tcp -m state --dport 21 --state NEW 
-j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m tcp -m state --dport 25 --state NEW 
-j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 22 --state NEW 
-j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 443 --state NEW 
-j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 80 --state NEW 
-j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 1 --state 
NEW -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 2 --state 
NEW -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 587 --state NEW 
-j ACCEPT

-A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited
# imap
-A RH-Firewall-1-INPUT -p tcp -m tcp -m state --dport 143 --state NEW 
-j ACCEPT

# imapssl
-A RH-Firewall-1-INPUT -p tcp -m tcp -m state --dport 993 --state NEW 
-j ACCEPT

# ftp
-A RH-Firewall-1-INPUT -p tcp -m tcp -m state --dport 21 --state NEW 
-j ACCEPT

COMMIT
# Generated by webmin
*mangle
:FORWARD ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:PREROUTING ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
COMMIT
# Completed
# Generated by webmin
*nat
:OUTPUT ACCEPT [0:0]
:PREROUTING ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
COMMIT
# Completed


Eric "Shubes" wrote:


[EMAIL PROTECTED] wrote:
 


Hello,
It seems i have trouble getting my email programs to connect when i 
have

the linux firewall on, centos 5 builtin firewall.

connection time out on whatever i try. pop3,imap,smtp, submission, ssl

Clues? I have checked the iptables and it should be ok, still not

( yeah i have run firewall.sh :P )

B/R
Ole J

  



Is your toaster on a private IP address behind a firewall? If so, 
you'll
need to modify your toaster firewall.sh to allow traffic from your 
local subnet.


Example (includes existing lines for reference):
## Drop all incoming fragments
iptables -A INPUT -i eth0 -f -j DROP
#
# shubes 5/16/06 - accept packets from local net
iptables -A INPUT -s 192.168.nnn.0/255.255.255.0 -j ACCEPT
#
## Drop outside packets with local addresses - anti-spoofing measure


 






You have your imap rules after your reject rule.  That would explain 
imap not working.  I don't know about the rest.


W

-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]




--
Please note that this message may contain confidential information. If you
have received this message by mistake, please inform the sender of the
mistake by sending a reply, then delete the message from your system without
making, distributing or retaining any copies of it.
Although we believe that the message and any attachments are free from
viruses and other errors that might affect the computer or IT system where
it is received and read, the recipient opens the message at his or her own
risk. We assume no responsibility for any loss or damage arising from the
receipt or use of this message.



-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[qmailtoaster] qtp-menu error

[dnk]

Hi therre - I just updated to the latest qtp, and now for some reason
when I run the qtp-menu and then run the SATATS, i get the following
error:

Illegal division by zero at /usr/sbin/sa-stats line 291.

Any ideas?

DNK

-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]