[ previous ] [ next ] [ threads ]
 
 From:  Chris Hoy Poy <chrishp at dugeo dot com>
 To:  m0n0wall at lists dot m0n0 dot ch
 Cc:  Phil <xphilz at gmail dot com>, "Joe Lagreca" <lagreca at gmail dot com>, "Vadim Pushkin" <wiskbroom at hotmail dot com>
 Subject:  Re: [m0n0wall] Unable To Determine Why Outbound SMTP Does Not Work
 Date:  Tue, 24 Oct 2006 15:48:57 +0800 
Probably be interesting to see one of the config.xml files from a server with 
this issue - it just doesnt make any sense.. ;) The only thing I can think of 
is perhaps a parsing error in the rule set, resulting in a kind of silent 
rule or something, or some other non-intuitive display issue cropping up. But 
for something like monowall, it doesnt make sense that an issue like this can 
survive over reboot , without something wierd in the config.xml. 

//chris


On Tuesday 24 October 2006 15:42, Phil wrote:
> I had no other products running that blocked SMTP.
>
> Was definately a fw issue as it worked perfectly on the same laptop outside
> my network elsewhere.
>
> I spent ages doing traces, logging and even had the ISP involved.
> Everything pointed to my fw. As mentioned however, the m0n0 showed
> absolutely nothing in the logs as being blocked nor did it have any rules
> that could possibly block this traffic.
>
> On 10/24/06, Joe Lagreca <lagreca at gmail dot com> wrote:
> > If you are sure your ISP isn't blocking port 25, you may want to see
> > if you are running McAfee Virusscan.  Check the access protection
> > section, and turn off mass mailing...., which blocks port 25 on your
> > local machine.
> >
> > On 10/23/06, Vadim Pushkin <wiskbroom at hotmail dot com> wrote:
> > > I was able to recover by also rebuilding.  BTW, I too am using the
> >
> > latest
> >
> > > version of m0n0.
> > >
> > > .vp
> > >
> > > >Hi,
> > > >
> > > >I am not sure if this helps, but I had a similar problem with the
> >
> > latest
> >
> > > >build of m0n0wall.
> > > >
> > > >Basically I lost access to an external mail server on port 25 (not
> >
> > blocked
> >
> > > >by the ISP) and the only way I could fix it was to rebuild my m0n0wall
> >
> > and
> >
> > > >then everything returned to normal.
> > > >
> > > >It was bizarre as I never put any rules in my m0n0wall to block SMTP,
> > > > I only
> > > >ever put in a rule to allow it to my DMZ.
> > > >
> > > >I still have no idea why m0n0wall dropped this nor could I find
> >
> > anything in
> >
> > > >any log saying it was blocked.
> > > >
> > > >Rgds,
> > > >Phil.
> > > >
> > > >On 10/22/06, Vadim Pushkin <wiskbroom at hotmail dot com> wrote:
> > > >>Thanks guys, but my problem is getting outbound connections to other
> >
> > smpt
> >
> > > >>servers.  I am testing by telnetting to another host on port 25.  I
> > > >> am
> >
> > not
> >
> > > >>getting connected from one particuliar machine only, and it has no
> >
> > selinux
> >
> > > >>running.  I have another windoze box that this does work for.  This
> > > >>happened
> > > >>after I created a nat rule, which I've since removed.  I am not sure
> >
> > if
> >
> > > >>perhaps a remnant of this rule is hosing me somehow, which is why I
> >
> > need
> >
> > > >>to
> > > >>know how to clean nat cache or something else.
> > > >>
> > > >>Thanks all,
> > > >>
> > > >>.vp
> > > >>
> > > >> >Lee Sharp wrote:
> > > >> > > On Sat, 2006-10-21 at 00:58 +0000, Vadim Pushkin wrote:
> > > >> > >> Hello;
> > > >> > >>
> > > >> > >> I've been using monowall for my home for quite some time, now I
> >
> > wish
> >
> > > >>to
> > > >>
> > > >> >use
> > > >> >
> > > >> > >> it for bigger things but I am baffled as to why I am unable to
> >
> > get
> >
> > > >> >outbound
> > > >> >
> > > >> > >> smtp from inside my LAN.  I have very simple rules and setup.
> > > >> > >>
> > > >> > >> My internal network is 192.168.1.0, my m0n0 box is 192.168.1.1
> > > >> > >
> > > >> > > Many ISPs filter smtp.  That is most likely your problem, as I
> > > >> > > am running mail servers behind many m0n0walls.
> > > >> >
> > > >> >Many ISPs who think they are smart block port 25, but do not
> >
> > understand
> >
> > > >> >that port is for MTA (Mail Transport Agent) use to move message.
> > > >> >
> > > >> >The port to inject a message into the system is the "submission
> > > >> >services" port, which is 587.  Try setting that as your SMTP port.
> > > >> >Works on my ISP, which blocks inbound 25, but not 587.
> > >
> > > ---------------------------------------------------------------------
> > > To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> > > For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch

-- 
Chris Hoy Poy
System Administrator
DownUnder GeoSolutions
http://www.dugeo.com