source: trunk/server/fedora/config/etc/sysconfig/ip6tables @ 2783

Last change on this file since 2783 was 2708, checked in by andersk, 9 years ago
Remove temporary outgoing port 25 exemption for cssa
File size: 484 bytes
Line 
1*filter
2:INPUT ACCEPT [0:0]
3:FORWARD ACCEPT [0:0]
4:OUTPUT ACCEPT [0:0]
5:log-smtp - [0:0]
6-A OUTPUT -p tcp -m tcp --dport 25 --syn -j log-smtp
7-A log-smtp -m owner --uid-owner postfix -j RETURN
8-A log-smtp -m owner --uid-owner nrpe -o lo -j RETURN
9# 537644531=scripts (for heartbeat)
10-A log-smtp -m owner --uid-owner 537644531 -o lo -j RETURN
11-A log-smtp -j LOG --log-prefix "SMTP " --log-uid
12-A log-smtp -o lo -j RETURN
13-A log-smtp -j REJECT --reject-with icmp6-adm-prohibited
14COMMIT
Note: See TracBrowser for help on using the repository browser.