Hi Guys, I'm trying to test smtp by telneting to it but I am being blocked by the firewall on the server running the smtp daemon. I've tried adding iptables rules to allow me through however nothing I am doing is working. If I disable the firewall totally, then my telnet works. Currently the iptables rules that are running are listed below (output from iptables -L):
********************************* Chain INPUT (policy DROP) target prot opt source destination ACCEPT all -- localhost.localdomain localhost.localdomain ACCEPT all -- go.read.the.RFC.this.server.doesnt.resolve.rfc1918 anywhere ACCEPT all -- go.read.the.RFC.this.server.doesnt.resolve.rfc1918 anywhere ACCEPT tcp -- anywhere anywhere tcp dpt:ssh ACCEPT tcp -- anywhere anywhere tcp dpt:http ACCEPT udp -- anywhere anywhere udp dpt:http ACCEPT tcp -- anywhere anywhere tcp dpt:https ACCEPT udp -- anywhere anywhere udp dpt:https ACCEPT tcp -- anywhere anywhere tcp dpt:postgres ACCEPT udp -- anywhere anywhere udp spt:domain ACCEPT tcp -- anywhere anywhere tcp spt:auth ACCEPT tcp -- anywhere anywhere tcp dpt:auth ACCEPT icmp -- pop02.iprimus.net.au anywhere icmp echo-reply ACCEPT icmp -- pop01.iprimus.net.au anywhere icmp echo-reply ACCEPT icmp -- pop01.iprimus.net.au anywhere icmp destination-unreachable ACCEPT icmp -- pop02.iprimus.net.au anywhere icmp destination-unreachable ACCEPT icmp -- pop01.iprimus.net.au anywhere icmp time-exceeded ACCEPT icmp -- pop02.iprimus.net.au anywhere icmp time-exceeded firewall icmp -- anywhere anywhere firewall tcp -- anywhere anywhere tcp flags:SYN,RST,ACK/SYN firewall udp -- anywhere anywhere ACCEPT tcp -- anywhere anywhere tcp dpt:smtp flags:SYN,RST,ACK/SYN ACCEPT tcp -- anywhere anywhere tcp dpt:pop3 flags:SYN,RST,ACK/SYN ACCEPT tcp -- anywhere anywhere tcp dpts:32000:36000 ACCEPT icmp -- 157.d.004.brs.iprimus.net.au anywhere icmp echo-reply ACCEPT icmp -- 157.d.004.brs.iprimus.net.au anywhere icmp destination-unreachable ACCEPT icmp -- 157.d.004.brs.iprimus.net.au anywhere icmp time-exceeded ACCEPT tcp -- 157.d.004.brs.iprimus.net.au anywhere ACCEPT udp -- 157.d.004.brs.iprimus.net.au anywhere ACCEPT icmp -- 157.d.004.brs.iprimus.net.au anywhere ACCEPT tcp -- anywhere anywhere tcp dpt:telnet flags:SYN,RST,ACK/SYN ACCEPT udp -- anywhere anywhere udp dpt:telnet ACCEPT tcp -- anywhere anywhere tcp dpt:telnet Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination Chain firewall (3 references) target prot opt source destination LOG all -- anywhere anywhere LOG level info prefix `Firewall:' DROP all -- anywhere anywhere ********************************* I've been playing around so you will see some weird entries above, however can you let me know if there is anything I am missing here? Even when I ssh to the box and try the telnet locally, it still is blocked. I can see the blocked entries in /var/log/messages. I am running RH 7.3 with kernel 2.4.19 TIA Anthony _________________________________________________________________ Join the world�s largest e-mail service with MSN Hotmail. http://www.hotmail.com -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
