If I understand you right, yes and yes. When your CF server makes a connection with cfpop it will look similar to this:
127.0.0.1:4582 -> mail.server.com:110 Make another connection a sec later and it may look like this: 127.0.0.1:4811 -> mail.server.com:110 You never know what port you'll get on the client side, but your mail server only offers POP service at address 110. So, don't restrict the "outgoing" ports. You can't even browse the web without a host of local ports available. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Colin Wilson Sent: Thursday, August 18, 2005 10:33 PM To: [email protected] Subject: RE: Cfpop and ip filters? So if I understand you right I should be allowing a filter that will provide permit from my ip address to any address with any outgoing port to a destination port of 110? The requests are always going to go for standard pop3 to a port 110? Colin -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Daniel Elmore Sent: August 18, 2005 9:47 PM To: [email protected] Subject: RE: Cfpop and ip filters? Remember that port 110 is for the service host, not the client. Your 2003 doesn't need port 110 open, it will establish an outgoing connection on any number of randomly selected ports. Are you blocking all ports? Your box is only going to be attacked/scanned on ports that it is offering services on. Blocking all ports put you in a virtual bunker, in which I'm surprised CF can even run unless you enabled its required ports or gave full access to localhost. Daniel -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Colin Wilson Sent: Thursday, August 18, 2005 12:25 PM To: [email protected] Subject: Cfpop and ip filters? Does anyone have experience opening up the IP filters on a windows 2003 box to allow the cfpop to connect to an outside pop3 mailbox? I have installed thunderbird to test the access from the server to an email box but it won't connect either so I am figuring it's windows 2003's filters - I tried opening port 110 incoming as well as outgoing but that doesn't seem to work... Thanks Colin ---------------------------------------------------------- To post, send email to [email protected] To unsubscribe: http://www.dfwcfug.org/form_MemberUnsubscribe.cfm To subscribe: http://www.dfwcfug.org/form_MemberRegistration.cfm ---------------------------------------------------------- To post, send email to [email protected] To unsubscribe: http://www.dfwcfug.org/form_MemberUnsubscribe.cfm To subscribe: http://www.dfwcfug.org/form_MemberRegistration.cfm ---------------------------------------------------------- To post, send email to [email protected] To unsubscribe: http://www.dfwcfug.org/form_MemberUnsubscribe.cfm To subscribe: http://www.dfwcfug.org/form_MemberRegistration.cfm ---------------------------------------------------------- To post, send email to [email protected] To unsubscribe: http://www.dfwcfug.org/form_MemberUnsubscribe.cfm To subscribe: http://www.dfwcfug.org/form_MemberRegistration.cfm
