View Single Post
  #15  
Old 17th February 2006, 03:48
Tekorei Tekorei is offline
Junior Member
 
Join Date: Feb 2006
Posts: 6
Thanks: 0
Thanked 0 Times in 0 Posts
Default

falko,

is there any PREROUTING or POSTROUTING rule that I should add to my iptables to allowing my LAN for sending outgoing mails?

for now my server does send outgoing mails, but I cant access any external host on port 25 or 110 through my LAN.. or the server himself on port 25/110

this is my current iptables -L:

Code:
Chain INPUT (policy DROP)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere
ACCEPT     tcp  --  host33-10.wireless.com.py  host33-10.wireless.com.py tcp spt:smtp
ACCEPT     udp  --  anywhere             host33-10.wireless.com.py udp dpt:domain
ACCEPT     udp  --  host33-10.wireless.com.py  host33-10.wireless.com.py udp spt:domain
ACCEPT     tcp  --  host33-10.wireless.com.py  host33-10.wireless.com.py tcp spt:domain
ACCEPT     tcp  --  192.168.0.0/24       anywhere            tcp dpt:ssh
ACCEPT     tcp  --  192.168.0.0/24       anywhere            tcp spt:ssh
ACCEPT     tcp  --  anywhere             host33-10.wireless.com.py tcp dpt:smtp
ACCEPT     tcp  --  anywhere             host33-10.wireless.com.py tcp spt:smtp
ACCEPT     tcp  --  anywhere             host33-10.wireless.com.py tcp dpt:pop3
ACCEPT     tcp  --  anywhere             host33-10.wireless.com.py tcp dpt:http
ACCEPT     udp  --  anywhere             host33-10.wireless.com.py udp dpt:domain
ACCEPT     udp  --  host33-10.wireless.com.py  host33-10.wireless.com.py udp spt:domain
ACCEPT     udp  --  inet2.telecel.com.py  host33-10.wireless.com.py udp spt:domain
ACCEPT     tcp  --  host33-10.wireless.com.py  host33-10.wireless.com.py tcp spt:domain
ACCEPT     tcp  --  inet2.telecel.com.py  host33-10.wireless.com.py tcp spt:domain
ACCEPT     tcp  --  host33-10.wireless.com.py  host33-10.wireless.com.py tcp spt:pop3
ACCEPT     tcp  --  anywhere             host33-10.wireless.com.py tcp spt:smtp
ACCEPT     tcp  --  anywhere             host33-10.wireless.com.py tcp spt:ftp
ACCEPT     tcp  --  anywhere             host33-10.wireless.com.py tcp spt:ftp-data
ACCEPT     tcp  --  anywhere             host33-10.wireless.com.py
ACCEPT     all  --  192.168.0.0/24       anywhere

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy DROP)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere
ACCEPT     tcp  --  host33-10.wireless.com.py  host33-10.wireless.com.py tcp dpt:smtp
ACCEPT     udp  --  host33-10.wireless.com.py  anywhere            udp spt:domain
ACCEPT     udp  --  host33-10.wireless.com.py  host33-10.wireless.com.py udp dpt:domain
ACCEPT     tcp  --  host33-10.wireless.com.py  host33-10.wireless.com.py tcp dpt:domain
ACCEPT     tcp  --  anywhere             192.168.0.0/24      tcp dpt:ssh
ACCEPT     tcp  --  anywhere             192.168.0.0/24      tcp spt:ssh
ACCEPT     tcp  --  host33-10.wireless.com.py  anywhere            tcp spt:smtp
ACCEPT     tcp  --  host33-10.wireless.com.py  anywhere            tcp dpt:smtp
ACCEPT     tcp  --  host33-10.wireless.com.py  anywhere            tcp spt:pop3
ACCEPT     tcp  --  host33-10.wireless.com.py  anywhere            tcp spt:http
ACCEPT     udp  --  host33-10.wireless.com.py  anywhere            udp spt:domain
ACCEPT     udp  --  host33-10.wireless.com.py  host33-10.wireless.com.py udp dpt:domain
ACCEPT     udp  --  host33-10.wireless.com.py  inet2.telecel.com.py udp dpt:domain
ACCEPT     tcp  --  host33-10.wireless.com.py  host33-10.wireless.com.py tcp dpt:domain
ACCEPT     tcp  --  host33-10.wireless.com.py  inet2.telecel.com.py tcp dpt:domain
ACCEPT     tcp  --  host33-10.wireless.com.py  host33-10.wireless.com.py tcp dpt:pop3
ACCEPT     tcp  --  host33-10.wireless.com.py  anywhere            tcp dpt:smtp
ACCEPT     tcp  --  host33-10.wireless.com.py  anywhere            tcp dpt:ftp
ACCEPT     tcp  --  host33-10.wireless.com.py  anywhere            tcp dpt:ftp-data
ACCEPT     tcp  --  host33-10.wireless.com.py  anywhere
ACCEPT     all  --  anywhere             192.168.0.0/24
host33-10.wireless.com.py = my servers host (given by the ISP)
inet2.telecel.com.py = ISP DNS host
Reply With Quote