On 08/18/2011 07:33 AM, Andre Speelmans wrote: > On Thu, Aug 18, 2011 at 7:21 AM, Paul Allen Newell <pnewell@xxxxxxxxxx> wrote: >> On 8/17/2011 12:49 PM, Roberto Ragusa wrote: >>> I would have just duplicated the ssh rule, which works, for port 23. >>> >>> -A INPUT -p tcp -m state --state NEW -m tcp --dport 23 -j ACCEPT > > This rule will not work. The difference being the port. 23 is for > telnet (the protocol, not the command). You need the rule with 25, > which would be for SMTP and the port the mailserver is probably > listening on. Of course. I said "23 or 25" everywhere in the mail, assuming it was clear that "telnet 25" is a just a trick to connect to the smtp server and is not related to the telnet port (23). >> telnet <name> 25 returns with No route to host > > No route to host?? "--reject-with icmp-host-prohibited" does that. -- Roberto Ragusa mail at robertoragusa.it -- users mailing list users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines