You need something as this in your linux router/firewall box:
#!/bin/sh ip_mail_srv=a.b.c.d
iptables -t filter -A INPUT -d $ip_mail_srv -p tcp --dport 25 --syn -j ACCEPT iptables -t filter -A INPUT -p tcp --dport 25 --syn -j DROP
#the same in FORWARD chain:
iptables -t filter -A FORWARD -d $ip_mail_srv -p tcp --dport 25 --syn -j ACCEPT iptables -t filter -A FORWARD -p tcp --dport 25 --syn -j DROP
You need integrate this rules into your firewall scripts, for example upon -A could you need -I <line_number>
Dave Ewart escribi�:
On Wednesday, 18.05.2005 at 08:37 +0530, shyam hirurkar wrote:
Hi All,
I have a mail server running on Qmail and a gateway running on IPtables on kernel 2.4.26.
Now my question is: I want to block SMTP port on the firewall. Also allow only SMTP connection to my mail server.
I assume this is a followup to your previous post. You are going to need to give us *much* more information before we can help. Show us your current IP ruleset, tell us about your network topology: how your mail server relates to your firewall, their network interface addresses etc.
Dave.
-- Samuel D�az Garc�a Director Gerente ArcosCom Wireless, S.L.L.
CIF: B11828068 c/ Romero Gago, 19 Arcos de la Frontera 11630 - Cadiz
http://www.arcoscom.com
mailto:[EMAIL PROTECTED] msn: [EMAIL PROTECTED]
M�vil: 651 93 72 48 Tlfn.: 956 70 13 15 Fax: 956 70 34 83
begin:vcard fn;quoted-printable:Samuel D=C3=ADaz Garc=C3=ADa n;quoted-printable:D=C3=ADaz Garc=C3=ADa;Samuel org:ArcosCom Wireless, S.L.L.;I+D+I adr;quoted-printable;quoted-printable:;;c/ Romero Gago, 19;Arcos de la Frontera;C=C3=A1diz;11630;Espa=C3=B1a email;internet:[EMAIL PROTECTED] title:Director Gerente tel;work:956 70 13 15 tel;fax:956 70 34 83 tel;cell:651 937 248 x-mozilla-html:FALSE url:http://www.arcoscom.com version:2.1 end:vcard
