Re: trying to restrict exim smtp to specific IP
On Thu, 21 Jan 2010 00:01:01 +0000, Adam Hardy wrote:
> Camaleón on 20/01/10 21:30, wrote:
>>>> inet_interfaces = 10.20.30.40, localhost ***
>>>>
>>>>
>>> master_service_disable=smtp.inet
>>
>> And what is that parameter for? :-?
>>
>> Ah, you wanted to disable "smtp" connections at all? Mmm, I'm still a
>> bit confused about your goals...
>
> I would like port 25 to be closed. Surely if I'm not receiving, I don't
> need to listen on it? I don't need it to send, do I?
I'm lost :-?
Didn't you say this?
***
It should listen like this (or all hell breaks loose on their server
farm):
tcp 0 0 10.20.30.40:25 0.0.0.0:* LISTEN
***
So if that remains true, you do need to open port 25 "locally" and bind
Postfix to listen in that IP.
But opening a port "locally" does not mean your SMTP server can be used
from remote, in fact it cannot unless:
a) The router (frame relay, xdsl line...) of your ISP/hosting provider is
actually forwarding the requests to port 25 to your machine (by using NAT
or iptables).
b) You allow Postfix to do that.
Greetings,
--
Camaleón
Reply to: