Thread: mail problem
View Single Post
  #16  
Old 24th April 2007, 20:10
docuweb docuweb is offline
Junior Member
 
Join Date: Apr 2007
Posts: 3
Thanks: 0
Thanked 0 Times in 0 Posts
Default

Quote:
Originally Posted by falko
Any errors in your mail log? What's the output of
Code:
iptables -L
? Is AppArmor disabled?
1. No Errors in mail log.

2. At the time I posted, I had ISPConfig firewall and Suse's firewall both shut off, so there were no items listed in iptables. Since then, I have turned on ONLY the ISPConfig firewall, thinking that perhaps having no entry at all for SMTP in the tables might be part of the problem.

iptables -L *now* reports:

Quote:
Chain INPUT (policy DROP)
target prot opt source destination
DROP tcp -- anywhere loopback/8
ACCEPT 0 -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT 0 -- anywhere anywhere
DROP 0 -- BASE-ADDRESS.MCAST.NET/4 anywhere
PUB_IN 0 -- anywhere anywhere
PUB_IN 0 -- anywhere anywhere
PUB_IN 0 -- anywhere anywhere
PUB_IN 0 -- anywhere anywhere
DROP 0 -- anywhere anywhere

Chain FORWARD (policy DROP)
target prot opt source destination
ACCEPT 0 -- anywhere anywhere state RELATED,ESTABLISHED
DROP 0 -- anywhere anywhere

Chain OUTPUT (policy ACCEPT)
target prot opt source destination
PUB_OUT 0 -- anywhere anywhere
PUB_OUT 0 -- anywhere anywhere
PUB_OUT 0 -- anywhere anywhere
PUB_OUT 0 -- anywhere anywhere

Chain INT_IN (0 references)
target prot opt source destination
ACCEPT icmp -- anywhere anywhere
DROP 0 -- anywhere anywhere

Chain INT_OUT (0 references)
target prot opt source destination
ACCEPT icmp -- anywhere anywhere
ACCEPT 0 -- anywhere anywhere

Chain PAROLE (9 references)
target prot opt source destination
ACCEPT 0 -- anywhere anywhere

Chain PUB_IN (4 references)
target prot opt source destination
ACCEPT icmp -- anywhere anywhere icmp destination-unreachable
ACCEPT icmp -- anywhere anywhere icmp echo-reply
ACCEPT icmp -- anywhere anywhere icmp time-exceeded
ACCEPT icmp -- anywhere anywhere icmp echo-request
PAROLE tcp -- anywhere anywhere tcp dpt:ftp
PAROLE tcp -- anywhere anywhere tcp dpt:ssh
PAROLE tcp -- anywhere anywhere tcp dpt:smtp
PAROLE tcp -- anywhere anywhere tcp dpt:domain
PAROLE tcp -- anywhere anywhere tcp dpt:http
PAROLE tcp -- anywhere anywhere tcp dpt:hosts2-ns
PAROLE tcp -- anywhere anywhere tcp dpt:pop3
PAROLE tcp -- anywhere anywhere tcp dpt:https
PAROLE tcp -- anywhere anywhere tcp dpt:ndmp
ACCEPT udp -- anywhere anywhere udp dpt:domain
DROP icmp -- anywhere anywhere
DROP 0 -- anywhere anywhere

Chain PUB_OUT (4 references)
target prot opt source destination
ACCEPT 0 -- anywhere anywhere
3. AppArmor being the Suse firewall software? According to Yast2, yes - it is disabled.

---

I discovered something that might give us a clue - it answers on port 25 from another machine on in my block, but it won't answer from anywhere else.

arch.docuweb.ca = 199.246.50.100
girt.docuweb.ca = 199.246.50.22 (this machine is sitting literally next to arch)
sean.docuweb.ca = 74.104.228.147 (this machine is at my home, outside of the facility)

Quote:
girt:~ # telnet arch.docuweb.ca 25
Trying 199.246.50.100...
Connected to arch.docuweb.ca.
Escape character is '^]'.
220 arch.docuweb.ca ESMTP Postfix
ehlo arch
250-arch.docuweb.ca
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-STARTTLS
250-AUTH PLAIN LOGIN
250-AUTH=PLAIN LOGIN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
quit
221 2.0.0 Bye
Connection closed by foreign host.
Quote:
sean:~# telnet arch.docuweb.ca 25
Trying 199.246.50.100...
telnet: connect to address 199.246.50.100: Connection timed out
edit:

Just found the solution to this - see: http://www.howtoforge.com/forums/sho...5&postcount=17

Last edited by docuweb; 24th April 2007 at 20:57.
Reply With Quote