mail to another machine on the LAN
Rick Stevens
ricks at nerd.com
Tue Oct 26 23:07:35 UTC 2010
On 10/26/2010 03:42 PM, Hiisi wrote:
> ti, 2010-10-26 kello 18:23 -0400, Sam Varshavchik kirjoitti:
>> telnet 192.168.3.30 25
>
> Hi, Sam.
> $ telnet 192.168.3.30 25
> Trying 192.168.3.30...
> telnet: connect to address 192.168.3.30: Connection refused
>
> However port 25 is open on 192.168.3.30:
> # cat /etc/sysconfig/iptables
> # Generated by iptables-save v1.3.5 on Wed Oct 27 02:40:05 2010
> *filter
> :INPUT ACCEPT [0:0]
> :FORWARD ACCEPT [0:0]
> :OUTPUT ACCEPT [433:53995]
> :RH-Firewall-1-INPUT - [0:0]
> -A INPUT -j RH-Firewall-1-INPUT
> -A INPUT -p tcp -m tcp --dport 25 -j ACCEPT
> -A INPUT -d 192.168.3.20 -p tcp -m tcp --sport 1024:65535 --dport 25 -m
> state --state NEW,ESTABLISHED -j ACCEPT
> -A FORWARD -j RH-Firewall-1-INPUT
> -A OUTPUT -s 192.168.3.20 -p tcp -m tcp --sport 25 --dport 1024:65535 -m
> state --state ESTABLISHED -j ACCEPT
> -A RH-Firewall-1-INPUT -i lo -j ACCEPT
> -A RH-Firewall-1-INPUT -p icmp -m icmp --icmp-type any -j ACCEPT
> -A RH-Firewall-1-INPUT -p esp -j ACCEPT
> -A RH-Firewall-1-INPUT -p ah -j ACCEPT
> -A RH-Firewall-1-INPUT -d 224.0.0.251 -p udp -m udp --dport 5353 -j
> ACCEPT
> -A RH-Firewall-1-INPUT -p udp -m udp --dport 631 -j ACCEPT
> -A RH-Firewall-1-INPUT -p tcp -m tcp --dport 631 -j ACCEPT
> -A RH-Firewall-1-INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
> -A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j
> ACCEPT
> -A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 25 -j
> ACCEPT
> -A RH-Firewall-1-INPUT -p udp -m state --state NEW -m udp --dport 137 -j
> ACCEPT
> -A RH-Firewall-1-INPUT -p udp -m state --state NEW -m udp --dport 138 -j
> ACCEPT
> -A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 139 -j
> ACCEPT
> -A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 445 -j
> ACCEPT
> -A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited
> COMMIT
> # Completed on Wed Oct 27 02:40:05 2010
>
> Any other suggestions?
Just because it's not blocked by your firewall doesn't mean sendmail is
listening. Try:
netstat -lpn | grep :25
and make sure sendmail is listening. If you get nothing then sendmail
isn't running at all and as root, you need to:
# service sendmail start
# chkconfig sendmail on
If you get something, but the line says something like:
tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN 8381/sendmail
then sendmail is running, but it's only listening to mail on localhost
(the "127.0.0.1:25" part of the line). In that case, as root, edit
the /etc/mail/sendmail.mc file and search for the line:
DAEMON_OPTIONS(`Port=smtp,Addr=127.0.0.1, Name=MTA')dnl
Modify the line to read:
DAEMON_OPTIONS(`Port=smtp, Name=MTA')dnl
And save the file. Finally, as root:
# service sendmail restart
----------------------------------------------------------------------
- Rick Stevens, Systems Engineer, C2 Hosting ricks at nerd.com -
- AIM/Skype: therps2 ICQ: 22643734 Yahoo: origrps2 -
- -
- We are born naked, wet and hungry. Then things get worse. -
----------------------------------------------------------------------
More information about the users
mailing list