Re: Iptables problem with Mail Server

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

your link is broken

sameer bagwe wrote:

 I have two servers running Linux. Server A is SAMBA domain controller and Server B is MAIL server(qmail)
My Server A has two NIC. One two my ISP(172.16.57.188/30) and the other to my LAN.(172.16.19.0/24)

Server A LAN IP = 172.16.19.230
Server A ISP IP = 172.16.57.190

Server B IP = 172.16.19.231
Server B also has a dial up option for backup if ISP is down

I have attached my iptable script.
http://s59.yousendit.com/d.aspx?id=...GF23Y94C8R092VF

If i set default INPUT Policy to DROP then incoming Mail stop coming.

I add a rule at the end of the script:
ipt -A -s 0/0 -d $LAN_IP -j REJECT

The above rule will also block nmap port scans.

I am not a pro in iptables. Just know scripting and adding intermediate level rules.Please let me know how to fix this
Thanks 
Best Regards,
Sameer Bagwe

--
Only The Inquiring Mind Solves Problems !

!DSPAM:435e231e12299217213932!



--
-----------------------------------------------------------------------
mnemon
Jörg Harmuth
Niederkastenholzerstr. 24a
53881 Euskirchen

Tel.: (+49) 22 55 9 48 78 22
mail: harmuth@xxxxxxxxx
Web:  http://www.mnemon.de
PGP-Key: http://www.mnemon.de/keys/harmuth_mnemon.asc
PGP-Fingerprint: 692E 4476 0838 60F8 99E2  7F5D B7D7 E48E 267B 204F
-----------------------------------------------------------------------
English version below.

Aufgrund massiven SPAM Aufkommens, werden Mails, die unser SPAM
Filter als SPAM einstuft, automatisch gelöscht. Falls Ihre Mail
fälschlicherweise als SPAM eingestuft wurde, senden Sie bitte eine
Email mit "No-Spam:" im Betreff.

Diese Mail wurde vor dem Versenden auf Viren und andere schädliche
Software untersucht. Es wurde keine maliziöse Software gefunden.

Due to massive SPAM, all mails our content filter classifies as SPAM,
are discarded silently. If you mail was classified as SPAM by mistake,
please send an email with "No-Spam:" within the subject.

This Mail was checked for virusses and other malicious software before
sending. No malicious software was detected.
-----------------------------------------------------------------------
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux