Re: smtp daemons

To: debian-firewall@lists.debian.org
Subject: Re: smtp daemons
From: Michael Wood <wood@kingsley.co.za>
Date: Fri, 29 Jun 2001 08:23:56 +0200
Message-id: <20010629082356.D4991@lion.kingsley.co.za>
Mail-followup-to: Michael Wood <wood@kingsley.co.za>, debian-firewall@lists.debian.org
In-reply-to: <20010628220027.A3996@sackman.co.uk>; from matthew@sackman.co.uk on Thu, Jun 28, 2001 at 10:00:27PM +0100
References: <20010628220027.A3996@sackman.co.uk>

Hi

On Thu, Jun 28, 2001 at 10:00:27PM +0100, Matthew Sackman wrote:
> Hi Guys,
> 
> When you send an email and it goes to the smtp server, that
> server then tries to connect to the mail exchange for the
> domain which the email is going to.
> 
> Will it connect to this mail exchange from port 25, or will it
> open another unpriveledged port? I'm just wondering whether I
> can set a firewall option to only allow connections to the
> smtp server if it comes from port 25.

SMTP clients (including other SMTP servers sending your SMTP
server mail) use an unpriveleged port as the source port.  (I
suppose some clients could use port 25, but I've never seen
that.)

i.e. if you add a rule to allow only tcp src port 25 to tcp dst
port 25, you will not get mail.

-- 
Michael Wood        | Tel: +27 21 762 0276 | http://www.kingsley.co.za/
wood@kingsley.co.za | Fax: +27 21 761 9930 | Kingsley Technologies

Reply to:

Follow-Ups:
- Re: smtp daemons
  - From: matthew@sackman.co.uk (Matthew Sackman)

References:
- smtp daemons
  - From: matthew@sackman.co.uk (Matthew Sackman)

Prev by Date: Re: How do I surely know I'm connected ?
Next by Date: Re: Forwarding RealAudio thru 2.2.19 firewall?
Previous by thread: Re: smtp daemons
Next by thread: Re: smtp daemons
Index(es):
- Date
- Thread