On Tue, Jan 04, 2005 at 04:34:03PM -0500, Borsari, Matt wrote: > Hello all, > > I am a new user of Ipfilter and am running into some difficulty defining > a rule for a specific purpose. > Any assistance that you can provide would be appreciated. > > OS Type: Solaris 8 and 9 > IP Filter version: 4.1.3 > > What I need the rule to do: Block outbound packets destined for port 25 > on any system located on > any subnet. The rule should apply to all local network interfaces on the > server that has the rule in > place and blocking activity should be logged locally. >
block in log quick proto tcp from any to !my.mailserver.ip port 25 I seem to find blocking packets inbound more effective than outbound. So, any tcp packet, bound for port 25 on any ip address other than that of your mailserver, is logged and blocked. Matt. -- Matthew Wallis. Systems and Networks Administrator. Cybersource. Level 4, 10 Queen St, Melbourne, 3000. Ph: 03 9621 2377 Fax : 03 9621 2477
