Date: Thu, 3 Apr 2003 13:53:38 -0500 (EST) From: Steve Bertrand <iaccounts@northnetworks.ca> To: Sereciya Kurdistani <sereciya@kurdistan.ath.cx> Cc: freebsd-ipfw@freebsd.org Subject: Re: Quick IPFW Question Concerning Sendmail Message-ID: <20030403135048.D92663-100000@diana.northnetworks.ca> In-Reply-To: <20030403182847.GC23675@kurdistan.ath.cx>
next in thread | previous in thread | raw e-mail | index | archive | help
Try allowing access to the sendmail submission port 587/tcp. I honestly don't know if this will help, but it may be worth a shot. Steve > > Hello, > > I have a quick question for you ipfw/firewall experts out there. > > I've have set up an elaborate firewall only to have trouble with > Sendmail. > > I have opened port 25 incoming, and also allow outgoing to another > port 25, but I always find stuck mail when I use "mailq". > > Using tcpdump -- and no firewall -- I've found that between the > dns lookups and smtp connections there are in fact some auth > lookups too. > > I opened incoming port 113 and outgoing to 113 but I still have > stuck mail! > > Any help would be greately appreciated, many thanks in advance! > > -Sereciya Kurdistani > > PS > My basic rules look like: > > ipfw add NNNN allow \{ tcp or udp \} from any to any smtp,smtps out > ipfw add NNNN allow \{ tcp \} log from any to any smtp,smtps in > > ipfw add NNNN allow \{ tcp or udp \} from any to any auth out > ipfw add NNNN allow \{ tcp \} log from any to any auth in > > and yes, this is ipfw2 on 4.8-STABLE > _______________________________________________ > freebsd-ipfw@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw > To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe@freebsd.org" >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030403135048.D92663-100000>