Hi guys!
I have BB on a place who has a MailServer inside. This place have a lot
of machines and from time to time i get listed on CBL for some machine
who send spam using my ip address.
I need to create this rules:
1. Accept 25 TCP port from all internal host to my own WAN ip address.
This if for permit send mails using my own MailServer using mail.domain.com
2. Accept 25 TCP port from MailServer internal host to outside.
3. Block 25 TCP port from all internal hosts to any outside place. this
is the deny all rule
Using luci-app y create this rule:
config redirect
option target 'SNAT'
option src 'lan'
option dest 'wan'
option name 'Block25'
option proto 'tcp'
option src_ip '192.168.20.237'
option dest_port '25'
option src_dip '192.168.20.1'
192.168.20.237 is my lan ip address and 192.168.20.1 is the OpenWRT IP
address.
This rule block everything from 192.168.20.237 to 25 TCP port
Best regards.
Emiliano
_______________________________________________
openwrt-users mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-users
