Boston Linux & Unix (BLU) Home | Calendar | Mail Lists | List Archives | Desktop SIG | Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings
Linux Cafe | Meeting Notes | Blog | Linux Links | Bling | About BLU

BLU Discuss list archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

IPTables Newbie

On Mon, Nov 24, 2003 at 02:14:38PM -0600, Michael White wrote:
> Hello All,
> I'm building an RH9 firewall/mailserver combo box for a small
> client.  Sendmail appears to be running correctly in that I'm able
> to telnet to port 25 from an internal system.  However, after
> performing the following commands, I'm unable to telnet to the same
> port from and external IP:

> IPTABLES -A INPUT -p tcp --dport 25 -j ACCEPT
> IPTABLES -A INPUT -p ucp --dport 25 -j ACCEPT

> Am I going about this all wrong?  Should I be entering the command
> differently?

It's probably not an iptables issue. The default setup for sendmail 
restricts it to listening for connections from the "localhost" only, 
since it's usually used only for outgoing mail.

Check the /etc/mail/ file, and search for the loopback 
address, which is "". If you find it, remove the 
"Addr=" option (it's a good idea to copy the line, and 
put "dnl" in front of the original to "comment it out", and then 
make your changes to the copy).

You'll need to do a "make" after the change; just follow the 
example at the top of the file. After you create the new, restart sendmail and you should be set.


Bill Horne

BLU is a member of BostonUserGroups
BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Valid HTML 4.01! Valid CSS!

Boston Linux & Unix /