|
Home > Archive > alt.os.linux > August 2002 > Problem with firewall configuration
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Problem with firewall configuration
|
|
| Jean-Sébastien Frerot 2002-08-10, 1:23 pm |
| Hi, i've installed RedHat 7.3 and I've installed some service like pop, ssh
and sendmail. All services are runing well but I cannot connect to my
sendmail server when I use another interface then localhost. I use ipchains
but there is no rules about bloking port 25. I don't really understand cause
all others server services are working well... Here is some configuration
and command that could help...
[root@hector etc]# ipchains -L
Chain input (policy ACCEPT):
target prot opt source destination ports
ACCEPT tcp -y---- anywhere anywhere any ->
smtp
Chain forward (policy DENY):
target prot opt source destination ports
MASQ all ------ anywhere anywhere n/a
Chain output (policy ACCEPT):
[root@hector etc]# nmap 127.0.0.1
Starting nmap V. 2.54BETA31 ( www.insecure.org/nmap/ )
Interesting ports on hector (127.0.0.1):
(The 1549 ports scanned but not shown below are in state: closed)
Port State Service
22/tcp open ssh
25/tcp open smtp
110/tcp open pop-3
111/tcp open sunrpc
1024/tcp open kdm
Nmap run completed -- 1 IP address (1 host up) scanned in 1 second
[root@hector etc]# nmap 192.168.0.1
Starting nmap V. 2.54BETA31 ( www.insecure.org/nmap/ )
Interesting ports on (192.168.0.1):
(The 1550 ports scanned but not shown below are in state: closed)
Port State Service
22/tcp open ssh
110/tcp open pop-3
111/tcp open sunrpc
1024/tcp open kdm
Nmap run completed -- 1 IP address (1 host up) scanned in 1 second
Thank You
Jean-Sébastien
| |
| Marco de Zeeuw 2002-08-10, 2:23 pm |
| On Sat, 10 Aug 2002 20:32:56 +0200, Jean-Sébastien Frerot wrote:
> Hi, i've installed RedHat 7.3 and I've installed some service like pop,
> ssh and sendmail. All services are runing well but I cannot connect to
> my sendmail server when I use another interface then localhost. I use
> ipchains but there is no rules about bloking port 25. I don't really
> understand cause all others server services are working well... Here is
> some configuration and command that could help...
>
> [root@hector etc]# ipchains -L
> Chain input (policy ACCEPT):
> target prot opt source destination ports ACCEPT
> tcp -y---- anywhere anywhere any -> smtp
> Chain forward (policy DENY):
> target prot opt source destination ports MASQ
> all ------ anywhere anywhere n/a Chain output (policy
> ACCEPT):
>
> [root@hector etc]# nmap 127.0.0.1
>
> Starting nmap V. 2.54BETA31 ( www.insecure.org/nmap/ ) Interesting ports
> on hector (127.0.0.1): (The 1549 ports scanned but not shown below are
> in state: closed) Port State Service 22/tcp open
> ssh
> 25/tcp open smtp
> 110/tcp open pop-3
> 111/tcp open sunrpc
> 1024/tcp open kdm
> Nmap run completed -- 1 IP address (1 host up) scanned in 1 second
>
> [root@hector etc]# nmap 192.168.0.1
>
> Starting nmap V. 2.54BETA31 ( www.insecure.org/nmap/ ) Interesting ports
> on (192.168.0.1):
> (The 1550 ports scanned but not shown below are in state: closed) Port
> State Service
> 22/tcp open ssh
> 110/tcp open pop-3
> 111/tcp open sunrpc
> 1024/tcp open kdm
> Nmap run completed -- 1 IP address (1 host up) scanned in 1 second
>
> Thank You
> Jean-Sébastien
Dear Jean-Sébastien,
I've also recently started looking into the sendmail configuration and
the file setting you are seeking is in /etc/mail/sendmail.mc.
There should be somethings looking like this in there:
dnl This changes sendmail to only listen on the loopback device 127.0.0.1
dnl and not on any other network devices. Comment this out if you want
dnl to accept email over the network.
DAEMON_OPTIONS(`Port=smtp,Addr
=127.0.0.1, Name=MTA')
After you've done editing the file, as stated in the top of the file:
[root@host]# m4 /etc/mail/sendmail.mc > /etc/sendmail.cf
To generate a new config file.
Hope this helps.
With regards,
Marco de Zeeuw
|
|
|
|
|