Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 3 Apr 2003 13:53:38 -0500 (EST)
From:      Steve Bertrand <iaccounts@northnetworks.ca>
To:        Sereciya Kurdistani <sereciya@kurdistan.ath.cx>
Cc:        freebsd-ipfw@freebsd.org
Subject:   Re: Quick IPFW Question Concerning Sendmail
Message-ID:  <20030403135048.D92663-100000@diana.northnetworks.ca>
In-Reply-To: <20030403182847.GC23675@kurdistan.ath.cx>

next in thread | previous in thread | raw e-mail | index | archive | help
Try allowing access to the sendmail submission port 587/tcp.

I honestly don't know if this will help, but it may be worth a shot.

Steve

>
> Hello,
>
>   I have a quick question for you ipfw/firewall experts out there.
>
>   I've have set up an elaborate firewall only to have trouble with
>   Sendmail.
>
>   I have opened port 25 incoming, and also allow outgoing to another
>   port 25, but I always find stuck mail when I use "mailq".
>
>   Using tcpdump -- and no firewall -- I've found that between the
>   dns lookups and smtp connections there are in fact some auth
>   lookups too.
>
>   I opened incoming port 113 and outgoing to 113 but I still have
>   stuck mail!
>
>   Any help would be greately appreciated, many thanks in advance!
>
> -Sereciya Kurdistani
>
> PS
> My basic rules look like:
>
> ipfw add NNNN allow \{ tcp or udp \}     from any to any smtp,smtps out
> ipfw add NNNN allow \{ tcp \}        log from any to any smtp,smtps in
>
> ipfw add NNNN allow \{ tcp or udp \}     from any to any auth out
> ipfw add NNNN allow \{ tcp \}        log from any to any auth in
>
> and yes, this is ipfw2 on 4.8-STABLE
> _______________________________________________
> freebsd-ipfw@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw
> To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe@freebsd.org"
>



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030403135048.D92663-100000>