On 22.06.2023 02:50, Marc Chamberlin via openSUSE Users wrote:
So I have configured firewalld to do port forwarding of these low numbered ports to high numbered ports that Apache James is actually listening to.
Brilliant. So it took just a dozen of emails to finally inform us about your actual configuration and actual problem.
This works fine for the interfaces connected to my external and internal zones/networks, including port 25, but for some reason I don't grok, I cannot get port forwarding to work for the localhost.
Because firewalld rules are for incoming traffic (i.e. INPUT chain) and packets from local processes are not incoming but outgoing packets (i.e. they go via OUTPUT chain). Current firewalld allows adding port redirection in OUTPUT chain using policy with egress zone HOST and ingress zone ANY, but it is not yet supported in the version provided by Leap 15.4. If you absolutely need it, use direct rule to configure redirection. Anyway, instead of jumping through the hoops it is much more easier to configure your relay mailer to connect to the correct port.