[Gllug] Guarddog firewall question
Casper Gasper
casper.gasper at gmail.com
Sun Jun 11 09:37:17 UTC 2006
> >> If you have set the custom protocol to TCP only and non-bidirectional,
> >> and then enabled it in the protocols tab for "Protocol served from zone
> >> 'Internet' to clients in zones...local" then you should be fine, with no
> >> unnecessary ports open.
> >
> > Shouldn't this be in the other direction -- from clients in
> > zones...local to zone internet? The connection is being initiated by
> > the client.
>
> Port 2525 is being served /from/ the internet (zone) - i.e. the SMTP
> server is on the internet and you want to access it.
Is it? If the OP is sending mail, the connection is made /from/ the
local zone to the internet. I'm not familiar with Guarddog, so maybe
you're right and I'm mis-understanding this. To put it in
iptables-terms, the port hole needs to be on the OUTPUT chain, not the
INPUT.
Casper.
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list