* Iptables for webmail access
@ 2005-09-27 16:44 Alejandro Cabrera Obed
[not found] ` <65aa6af90509270945451b637e@mail.gmail.com>
2005-09-28 9:32 ` Jörg Harmuth
0 siblings, 2 replies; 3+ messages in thread
From: Alejandro Cabrera Obed @ 2005-09-27 16:44 UTC (permalink / raw)
To: Netfilter lista (iptables)
Hi people,
I have a Linux machine with a webmail server (smtp+imap+http), and I have a
iptables script in order to protect the host.
By default I deny all the traffic. Then, I enable all new connections
(--syn) from every hosts (-s 0/0) to ports 25, 80 and 143.
But whern a try to log in via web, I can enter the webmail interface and I
get a message teling "IMAP timeout".
The connection from the webmail to the imap server is from eth0 to eth0, I
suposse Im forgetting something like this.....
Can you help me with a iptables rule in order to connect to my imap server
from the webmail interface, both in a unique machine ???
Thanks a lot,
Alejandro
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: Iptables for webmail access
[not found] ` <65aa6af90509270945451b637e@mail.gmail.com>
@ 2005-09-27 16:45 ` Edmundo Carmona
0 siblings, 0 replies; 3+ messages in thread
From: Edmundo Carmona @ 2005-09-27 16:45 UTC (permalink / raw)
To: netfilter
are you allowing traffic on the lookback interface in input?
iptables -A INPUT -i lo -j ACCEPT
Remember traffic to localhost will go through OUTPUT, and then will reach INPUT.
On 9/27/05, Alejandro Cabrera Obed <sisdis@tournet.com.ar> wrote:
> Hi people,
>
> I have a Linux machine with a webmail server (smtp+imap+http), and I have a
> iptables script in order to protect the host.
>
> By default I deny all the traffic. Then, I enable all new connections
> (--syn) from every hosts (-s 0/0) to ports 25, 80 and 143.
>
> But whern a try to log in via web, I can enter the webmail interface and I
> get a message teling "IMAP timeout".
>
> The connection from the webmail to the imap server is from eth0 to eth0, I
> suposse Im forgetting something like this.....
>
> Can you help me with a iptables rule in order to connect to my imap server
> from the webmail interface, both in a unique machine ???
>
> Thanks a lot,
>
>
> Alejandro
>
>
>
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: Iptables for webmail access
2005-09-27 16:44 Iptables for webmail access Alejandro Cabrera Obed
[not found] ` <65aa6af90509270945451b637e@mail.gmail.com>
@ 2005-09-28 9:32 ` Jörg Harmuth
1 sibling, 0 replies; 3+ messages in thread
From: Jörg Harmuth @ 2005-09-28 9:32 UTC (permalink / raw)
To: netfilter
Alejandro Cabrera Obed wrote:
> Hi people,
>
> I have a Linux machine with a webmail server (smtp+imap+http), and I have a
> iptables script in order to protect the host.
>
> By default I deny all the traffic. Then, I enable all new connections
> (--syn) from every hosts (-s 0/0) to ports 25, 80 and 143.
>
> But whern a try to log in via web, I can enter the webmail interface and I
> get a message teling "IMAP timeout".
>
> The connection from the webmail to the imap server is from eth0 to eth0, I
> suposse Im forgetting something like this.....
>
> Can you help me with a iptables rule in order to connect to my imap server
> from the webmail interface, both in a unique machine ???
No, not enough information :( Please post your rule set, either the
output of iptables -nvxL or iptables-save.
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2005-09-28 9:32 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-09-27 16:44 Iptables for webmail access Alejandro Cabrera Obed
[not found] ` <65aa6af90509270945451b637e@mail.gmail.com>
2005-09-27 16:45 ` Edmundo Carmona
2005-09-28 9:32 ` Jörg Harmuth
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox