You are not logged in.
- Topics: Active | Unanswered
#1 2014-03-03 17:04:59
- freaks
- Member
- Registered: 2010-11-10
- Posts: 63
[postfix] port 25 filtered
hello
i'd like to activate the port 25 in my postfix configuration. I need this because i have a special software using only insecure 25 port.
i think i must change something in this file : /etc/postfix/master.cf
this is the content of this file
smtp inet n - n - - smtpd
-o smtpd_enforce_tls=no
-o smtpd_sasl_auth_enable=no
submission inet n - n - - smtpd
25 inet n - n - - smtpd
587 inet n - n - - smtpd
dovecot unix - n n - - pipe
flags=DRhu user=vmail:vmail argv=/usr/lib/dovecot/deliver -d ${recipient}
smtp-amavis unix - - n - 2 smtp
-o smtp_data_done_timeout=1200
-o disable_dns_lookups=yes
-o smtp_send_xforward_command=yes
-o max_use=20
-o smtpd_enforce_tls=no -o smtpd_sasl_auth_enable=no
127.0.0.1:10025 inet n - - - - smtpd
-o content_filter=
-o local_recipient_maps=
-o relay_recipient_maps=
-o smtpd_restriction_classes=
-o smtpd_delay_reject=no
-o smtpd_client_restrictions=permit_mynetworks,reject
-o smtpd_helo_restrictions=
-o smtpd_sender_restrictions=
-o smtpd_recipient_restrictions=permit_mynetworks,reject
-o smtpd_data_restrictions=reject_unauth_pipelining
-o mynetworks=127.0.0.0/8
-o strict_rfc821_envelopes=yes
-o smtpd_end_of_data_restrictions=
-o smtpd_error_sleep_time=0the local result of netstat -tulnp
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 127.0.0.1:10024 0.0.0.0:* LISTEN 11266/amavisd (mast
tcp 0 0 127.0.0.1:10025 0.0.0.0:* LISTEN 15137/master
tcp 0 0 0.0.0.0:3306 0.0.0.0:* LISTEN 18269/mysqld
tcp 0 0 37.59.13.100:587 0.0.0.0:* LISTEN 15137/master
tcp 0 0 127.0.0.1:587 0.0.0.0:* LISTEN 15137/master
tcp 0 0 0.0.0.0:110 0.0.0.0:* LISTEN 15186/dovecot
tcp 0 0 127.0.0.1:10030 0.0.0.0:* LISTEN 6461/postgrey.pid -
tcp 0 0 0.0.0.0:143 0.0.0.0:* LISTEN 15186/dovecot
tcp 0 0 127.0.0.1:783 0.0.0.0:* LISTEN 15721/spamassassin
tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN 26312/proftpd: (acc
tcp 0 0 37.59.13.100:53 0.0.0.0:* LISTEN 26271/pdns_server-i
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 3652/sshd
tcp 0 0 37.59.13.100:25 0.0.0.0:* LISTEN 15137/master
tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN 15137/master
tcp 0 0 0.0.0.0:4190 0.0.0.0:* LISTEN 15186/dovecot
tcp 0 0 0.0.0.0:993 0.0.0.0:* LISTEN 15186/dovecot
tcp 0 0 0.0.0.0:995 0.0.0.0:* LISTEN 15186/dovecot
tcp6 0 0 ::1:10024 :::* LISTEN 11266/amavisd (mast
tcp6 0 0 :::110 :::* LISTEN 15186/dovecot
tcp6 0 0 :::143 :::* LISTEN 15186/dovecot
tcp6 0 0 :::80 :::* LISTEN 2181/httpd
tcp6 0 0 :::22 :::* LISTEN 3652/sshd
tcp6 0 0 :::443 :::* LISTEN 2181/httpd
tcp6 0 0 :::4190 :::* LISTEN 15186/dovecot
tcp6 0 0 :::993 :::* LISTEN 15186/dovecot
tcp6 0 0 :::995 :::* LISTEN 15186/dovecot
udp 0 0 37.59.13.100:53 0.0.0.0:* 26271/pdns_server-i
udp 0 0 0.0.0.0:10526 0.0.0.0:* 26271/pdns_server-i
udp6 0 0 :::10452 :::* 26271/pdns_server-i and the result of a distant nmap on the server
PORT STATE SERVICE
21/tcp open ftp
22/tcp open ssh
25/tcp filtered smtp
53/tcp open domain
80/tcp open http
110/tcp open pop3
135/tcp filtered msrpc
139/tcp filtered netbios-ssn
143/tcp open imap
443/tcp open https
445/tcp filtered microsoft-ds
587/tcp open submission
993/tcp open imaps
995/tcp open pop3s
3306/tcp open mysqlthanks for your help
Last edited by freaks (2014-03-03 17:06:39)
Offline
#2 2014-03-03 17:17:24
- Gcool
- Member
- Registered: 2011-08-16
- Posts: 1,456
Re: [postfix] port 25 filtered
Check the "# Network settings" section in /etc/postfix/main.cf. It's probably set to only listen on localhost.
Burninate!
Offline
#3 2014-03-03 17:31:48
- freaks
- Member
- Registered: 2010-11-10
- Posts: 63
Re: [postfix] port 25 filtered
Check the "# Network settings" section in /etc/postfix/main.cf. It's probably set to only listen on localhost.
is it this part ?
and must i replace this -o mynetworks=127.0.0.0/8 ?
if i can't activate 25 port i'd like tu use 587 with the possibility of with or without STARTTLS
127.0.0.1:10025 inet n - - - - smtpd
-o content_filter=
-o local_recipient_maps=
-o relay_recipient_maps=
-o smtpd_restriction_classes=
-o smtpd_delay_reject=no
-o smtpd_client_restrictions=permit_mynetworks,reject
-o smtpd_helo_restrictions=
-o smtpd_sender_restrictions=
-o smtpd_recipient_restrictions=permit_mynetworks,reject
-o smtpd_data_restrictions=reject_unauth_pipelining
-o mynetworks=127.0.0.0/8
-o strict_rfc821_envelopes=yes
-o smtpd_end_of_data_restrictions=
-o smtpd_error_sleep_time=0
-o smtpd_soft_error_limit=1001
-o smtpd_hard_error_limit=1000
-o smtpd_client_connection_count_limit=0
-o smtpd_client_connection_rate_limit=0
-o receive_override_options=no_header_body_checks,no_unknown_recipient_checks
-o local_header_rewrite_clients=
-o smtpd_enforce_tls=no -o smtpd_sasl_auth_enable=noLast edited by freaks (2014-03-03 17:36:13)
Offline
#4 2014-03-03 18:59:58
- Gcool
- Member
- Registered: 2011-08-16
- Posts: 1,456
Re: [postfix] port 25 filtered
is it this part ?
and must i replace this -o mynetworks=127.0.0.0/8 ?
If I'm not mistaken (been a while since I had to tinker with Postfix), it's the inet_interfaces and mynetworks variables you're looking for.
Burninate!
Offline