Re: 30s delay while receiving mail

Linux Netfilter discussions
 help / color / mirror / Atom feed

* Re: 30s delay while receiving mail
       [not found] <BAY108-F26F9A9A119223E58D8E647978D0@phx.gbl>
@ 2005-09-29 10:43 ` Jörg Harmuth
  2005-09-29 15:54 ` Jörg Harmuth
  1 sibling, 0 replies; 2+ messages in thread
From: Jörg Harmuth @ 2005-09-29 10:43 UTC (permalink / raw)
  To: netfilter

david v wrote:
> Hello,
> I'm having problems receiving email. There is always a delay of 30s 
> behinf the DMZ zone.

[SNIP]

> telnet mail 110 (30s delay)
> telnet mail 25 (no delay)
> 
> Forewall Nat rules are properly configured so that the firewall forward 
> pop incoming queries to the correct IP adress(mail machine).
> 
> I'm not sure how to resolve that issue, any help would be extremely 
> useful. Could that be a problem on the firewall side ?

Yes and no - a matter of taste. May be there is a identd call from your 
POP3 server ? And this call is DROPed somewhere ? If so, this rule will 
help:

iptables -I OUTPUT -p tcp --dport 113 -j REJECT \
          --reject-with tcp-reset

Hmm, your talking about DMZ. The above rule is written for the POP3 
server itself. On the firewall you should replace OUTPUT with INPUT. If 
these rules don't solve the problem you can delete the rule by

iptables -D [IN|OUT]PUT 1

HTH,

Joerg



^ permalink raw reply	[flat|nested] 2+ messages in thread

* Re: 30s delay while receiving mail
       [not found] <BAY108-F26F9A9A119223E58D8E647978D0@phx.gbl>
  2005-09-29 10:43 ` 30s delay while receiving mail Jörg Harmuth
@ 2005-09-29 15:54 ` Jörg Harmuth
  1 sibling, 0 replies; 2+ messages in thread
From: Jörg Harmuth @ 2005-09-29 15:54 UTC (permalink / raw)
  To: netfilter

Arrrrrgh - sorry for the spam - wrong list :(

david v wrote:
> Hello,
> I'm having problems receiving email. There is always a delay of 30s 
> behinf the DMZ zone.

[SNIP]

> telnet mail 110 (30s delay)
> telnet mail 25 (no delay)
> 
> Forewall Nat rules are properly configured so that the firewall forward 
> pop incoming queries to the correct IP adress(mail machine).
> 
> I'm not sure how to resolve that issue, any help would be extremely 
> useful. Could that be a problem on the firewall side ?

Yes and no - a matter of taste. May be there is a identd call from your
POP3 server ? And this call is DROPed somewhere ? If so, this rule will
help:

iptables -I OUTPUT -p tcp --dport 113 -j REJECT \
          --reject-with tcp-reset

Hmm, your talking about DMZ. The above rule is written for the POP3
server itself. On the firewall you should replace OUTPUT with INPUT. If
these rules don't solve the problem you can delete the rule by

iptables -D [IN|OUT]PUT 1

HTH,

Joerg



!DSPAM:433bc6f472101927516234!


^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2005-09-29 15:54 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
     [not found] <BAY108-F26F9A9A119223E58D8E647978D0@phx.gbl>
2005-09-29 10:43 ` 30s delay while receiving mail Jörg Harmuth
2005-09-29 15:54 ` Jörg Harmuth

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox