source: trunk/server/fedora/config/etc/sysconfig/iptables @ 2618

Last change on this file since 2618 was 2618, checked in by andersk, 10 years ago
ip[6]tables: Really ignore SMTP to localhost Packets in OUTPUT have an output interface, not an input interface.
File size: 466 bytes
[1689]2:INPUT ACCEPT [0:0]
[39]3:FORWARD ACCEPT [0:0]
[1689]4:OUTPUT ACCEPT [0:0]
[2614]5:log-smtp - [0:0]
6-A INPUT -p udp -m udp --dport 161 ! -s -j REJECT
7-A OUTPUT -p tcp -m tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j log-smtp
[2618]8-A log-smtp -o lo -j RETURN
[2614]9-A log-smtp -m owner --uid-owner postfix -j RETURN
10-A log-smtp -m owner --uid-owner nrpe -j RETURN
11-A log-smtp -m owner --uid-owner 537644531 -j RETURN
12-A log-smtp -j LOG --log-prefix "SMTP " --log-uid
