On 8/1/2018 12:35 PM, daniel_1983--- via Shorewall-users wrote: > Hello list, > > Shorewall is installed on my mail server. Its policy is to ACCEPT all traffic > from $fw to net (same interface). Since the only thing I changed in the > configuration is the policy file, I will paste the policy file that it > working (mail is sent), and the policy file that is not working (mail is not > sent). > > > NON-WORKING POLICY > > root@messagerie[10.10.10.19] ~ # cat /etc/shorewall/policy > [...] > $FW net ACCEPT > net $FW DROP INFO > root@messagerie[10.10.10.19] ~ # > >
If you have the policy 'net $FW DROP' you will need to open those required ports in '/etc/shorewall/rules'.: net $FW tcp 25 > shorewall dump after doing a shorewall reset then trying to send mail to host > 192.162.70.68 : https://clbin.com/yO9h3. You can see that the connexion isn't > even listed. > > > > > > > WORKING POLICY > > root@messagerie[10.10.10.19] ~ # cat /etc/shorewall/policy > [...] > $FW net ACCEPT > net $FW ACCEPT > root@messagerie[10.10.10.19] ~ # > 'net $FW ACCEPT' means that all traffic is 'ACCEPT'ed on the firewall from the net zone. -Matt -- Matt Darfeuille ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
