Hi there I have a quick IP Tables question.
I have an SMTP server behind my firewall and I would like to deny all
outbound SMTP traffic except if it originates from my internal SMTP
server.
The current rule allows SMTP traffic outbound from any IP on the internal
network. (See below for
)
Subject: [leaf-user] IP Tables question
Hi there I have a quick IP Tables question.
I have an SMTP server behind my firewall and I would like to deny all
outbound SMTP traffic except if it originates from my internal SMTP
server.
The current rule allows SMTP traffic outbound from any IP
Whoops, I didn't read the whole thing.
You would want to add:-s 192.168.1.67 to the outbound permit.
Troy Aden [EMAIL PROTECTED] on 11/26/2002 02:02:44 PM
To: Leaf-User (E-mail) [EMAIL PROTECTED]
cc:(bcc: Phillip Watts/austin/Nlynx)
Subject: [leaf-user] IP Tables question
, November 26, 2002 2:49 PM
To: Troy Aden
Cc: Leaf-User (E-mail)
Subject: Re: [leaf-user] IP Tables question
Whoops, I didn't read the whole thing.
You would want to add:-s 192.168.1.67 to the outbound permit.
Troy Aden [EMAIL PROTECTED] on 11/26/2002 02:02:44 PM
To: Leaf-User (E-mail
I believe that to do what you want, you just need to add a -d parameter to
the first rule and an -s parameter to the second rule. That is (using your
rules as the starting point):
# Allow SMTP outbound from only one host on the internal network.
iptables -A FORWARD -i ${OUTSIDE_DEVICE} -p tcp
At 02:40 PM 11/26/02 -0600, Troy Aden wrote:
Can you please show me where I need to add -s 192.168.1.67? I am assuming
that I can't just tack it onto the end of the rule.
Actually you can. iptables doesn't care about the order of parameters. But
as my prior reply noted, the first rule needs
, RELATED line to accept the responses.
Troy Aden [EMAIL PROTECTED] on 11/26/2002 02:40:42 PM
To: Phillip Watts/austin/Nlynx@Nlynx
cc: Leaf-User (E-mail) [EMAIL PROTECTED]
Subject: RE: [leaf-user] IP Tables question
Can you please show me where I need to add -s 192.168.1.67? I am assuming