Last change
on this file since 2691 was
2618,
checked in by andersk, 10 years ago
|
ip[6]tables: Really ignore SMTP to localhost
Packets in OUTPUT have an output interface, not an input interface.
|
File size:
304 bytes
|
Rev | Line | |
---|
[2614] | 1 | *filter |
---|
| 2 | :INPUT ACCEPT [0:0] |
---|
| 3 | :FORWARD ACCEPT [0:0] |
---|
| 4 | :OUTPUT ACCEPT [0:0] |
---|
| 5 | :log-smtp - [0:0] |
---|
[2618] | 6 | -A log-smtp -o lo -j RETURN |
---|
[2614] | 7 | -A OUTPUT -p tcp -m tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j log-smtp |
---|
| 8 | -A log-smtp -m owner --uid-owner postfix -j RETURN |
---|
| 9 | -A log-smtp -j LOG --log-prefix "SMTP " --log-uid |
---|
| 10 | COMMIT |
---|
Note: See
TracBrowser
for help on using the repository browser.