Hi, I have a problem with my SuSEfirewall2..despite reading the examples and faq I cant get it to allow incoming and otugoing traffic on port 25 the firewall is run on a machine configured as follows eth0 = external network (internet) eth1 = internal network (192.168.1.1) the machine runs postfix and postfix can't open port 25. I've enclosed my firewall script..I'm hoping someone can see what I've done wrong. Thomas -------------------------------------------------------
On Saturday 29 June 2002 15:24, Thomas Nyman wrote:
Hi, I have a problem with my SuSEfirewall2..despite reading the examples and faq I cant get it to allow incoming and otugoing traffic on port 25
the firewall is run on a machine configured as follows eth0 = external network (internet) eth1 = internal network (192.168.1.1)
the machine runs postfix and postfix can't open port 25.
I've enclosed my firewall script..I'm hoping someone can see what I've done wrong.
Why are you doing this if you don't have a DMZ, just leave it empty. FW_DEV_DMZ="eth0" also leave those FW_SERVICES_DMZ_* empty, I don't know if that really matters, but you don't need them. # Common: "DNS" or "domain ntp", better is "yes" to be sure ... FW_ALLOW_INCOMING_HIGHPORTS_UDP="NO" Replace the NO with domain else domain resolving doesn't work. FW_SERVICE_DNS="no" If you're not runing a nameserver, why do you allow DNS traffic to your box in the FW_SERVICES_* settings? You haven't told which version of SuSE you are running, but I understand from other postings that in 8.0 sendmail is default configured to allow internal traffic only, don't know about the default for Postfix but chances are it's also configured like that. So if you're running 8.0 you probably also have to change the Postfix config to allow external traffic. -- GertJan
Hi, I have a problem with my SuSEfirewall2.. FW_NETS_MASQ="172.16.1.0/24,0/0,tcp,80 172.16.1.0/24,0/0,tcp,21" FW_ALLOW_INCOMING_HIGHPORTS_TCP="yes" FW_ALLOW_INCOMING_HIGHPORTS_UDP="DNS" My users can visit paginas Web, but archives with protocol FTP cannot lower. That it can these happening? I hope that they help me... -------------------------------------------------------
Hi, I have a problem with my SuSEfirewall2.. FW_NETS_MASQ="172.16.1.0/24,0/0,tcp,80 172.16.1.0/24,0/0,tcp,21" FW_ALLOW_INCOMING_HIGHPORTS_TCP="yes" FW_ALLOW_INCOMING_HIGHPORTS_UDP="DNS" My users can visit paginas Web, but archives with protocol FTP cannot lower. That it can these happening? I hope that they help me... ------------------------------------------------------- -- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here
try nmap -sS localhost and see if 25 is open. what does your log file say when you resart postfix Hi, I have a problem with my SuSEfirewall2..despite reading the examples and faq I cant get it to allow incoming and otugoing traffic on port 25
the firewall is run on a machine configured as follows eth0 = external network (internet) eth1 = internal network (192.168.1.1)
the machine runs postfix and postfix can't open port 25.
I've enclosed my firewall script..I'm hoping someone can see what I've do ne wrong.
Thomas
-------------------------------------------------------
participants (4)
-
Carlos Carrera -
GertJan Spoelman -
matthew zonderop -
Thomas Nyman