On Sun, 10 Dec 2000, Peter Green wrote:
> Most likely, you have a rule in the output chain that has a higher
> precendence that is blocking the outgoing traffic. By adding a rule like:
Or a 'default' REJECT rule is catching it because the ACCEPT higher up is
too specific.
> /sbin/ipchains -I output 1 -j ACCEPT -i $EXTERNAL_INTERFACE -p tcp -s
> $IPADDR -d 0/0 25
> (Note that port 25 is the *destination* port also, NOT the source port.)
> Also, you might check the output chain to ensure that a block is actually
> there:
> /sbin/ipchains -L output -n | grep " 25"
A better method is to get the rule number from the log fragments posted
(#37), do a 'ipchains -L output' and look at that rule number.
> See what that turns up. Finally, you might check with the firewall software
> author or support list, since it would seem that that is where the problem
> apparently lies.
True, this is entirely an ipchains problem, not a qmail one.
--Colin.
Colin Palmer -- [EMAIL PROTECTED] -- http://raccoon.osoal.org.nz/
Systems Engineer -- [One Short Of A Llama] http://web.osoal.org.nz/
