Hello everyone, is a pleasure to be here.
I have a problem with my server, it runs qmail SMTP and protect it with
shorewall. Since yesterday I get syn flood attacks on port 25, which means
that no longer meet. How can I stop this with shorewall?
my setup is as follows.
zones:
#ZONE DISPLAY COMMENTS
net Net Internet
loc Local Local networks
dmz DMZ Demilitarized zone
interfaces:
#ZONE INTERFACE BROADCAST OPTIONS
net eth0 detect tcpflags,blacklist,routefilter
policy:
#SOURCE DEST POLICY LOG LEVEL LIMIT:BURST
(we must put here?)
loc net ACCEPT
$FW net ACCEPT
net all DROP info
all all REJECT info
rules:
# MailServer
ACCEPT net $FW tcp 25
ACCEPT net $FW tcp 110
ACCEPT net $FW tcp 143
ACCEPT net $FW tcp 993
ACCEPT net $FW tcp 995
ACCEPT net $FW tcp 465
Thank you for listening.
greetings!
Lucas
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
