Mailinglist Archive: opensuse-security (228 mails)

< Previous Next >
Re: [suse-security] Problem with SuSEfirewall and Postfix SMTP?
  • From: "M. Edwin" <edwin@xxxxxxxxx>
  • Date: Fri, 18 Mar 2005 14:04:39 +0700
  • Message-id: <423A7D87.5040108@xxxxxxxxx>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Jürgen Mell wrote:

>
> FW_SERVICES_EXT_TCP="http https smtp ssh ftp"
>
> Adding
>
> FW_TRUSTED_NETS="<Provider's mailserver IP>,tcp,25"
>
> did not change anything.
>

It looks Ok.


> Postfix restarts the smtp daemons after some time. Then we can receive mail
> again for some minutes but after that the system is blocked again.
>
>

Hm........

>
> nslookup with querytype=MX tells
>
> <our domain> mail exchanger = 20 <Provider's mail server>.
> <out domain> mail exchanger = 10 mail.<our domain>.
>

It's OK too.

You wrote this in your previous email

Mar 17 21:52:18 pluto kernel: SFW2-OUT-ERROR IN= OUT=dsl0 SRC=<our IP>
DST=<Provider's mail server IP> LEN=52 TOS=0x00 PREC=0x00 TTL=64
ID=3530 DF PROTO=TCP SPT=25 DPT=58506 WINDOW=1404 RES=0x00 ACK RST
URGP=0 OPT (0101080A015E41E40C059CEB)

It seems that when you send an email from your server port 25 to your
provider server an error happened in SFW2. (If you have fwlogwatch
installed in your systems it can be easier to read the SFW log. Take a
look in http://fwlogwatch.inside-security.de/)


Can you do a

ps auxww | grep postfix

and send the result

Edwin


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (MingW32)

iD8DBQFCOn2FkaMcq796kjoRAikOAJ0bqeIkS+dscbdAB4tSkvL0/6jgGQCfTD1B
YmOJ23+2d0TSa8CW16sfTZI=
=M14w
-----END PGP SIGNATURE-----

< Previous Next >
Follow Ups