| Last change
                  on this file since 2620 was
                  2618,
                  checked in by andersk, 11 years ago | 
        
          | ip[6]tables: Really ignore SMTP to localhost
Packets in OUTPUT have an output interface, not an input interface. | 
        | File size:
            304 bytes | 
      
      
        
  | Line |  | 
|---|
| 1 | *filter | 
|---|
| 2 | :INPUT ACCEPT [0:0] | 
|---|
| 3 | :FORWARD ACCEPT [0:0] | 
|---|
| 4 | :OUTPUT ACCEPT [0:0] | 
|---|
| 5 | :log-smtp - [0:0] | 
|---|
| 6 | -A log-smtp -o lo -j RETURN | 
|---|
| 7 | -A OUTPUT -p tcp -m tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j log-smtp | 
|---|
| 8 | -A log-smtp -m owner --uid-owner postfix -j RETURN | 
|---|
| 9 | -A log-smtp -j LOG --log-prefix "SMTP " --log-uid | 
|---|
| 10 | COMMIT | 
|---|
       
      
      Note: See 
TracBrowser
        for help on using the repository browser.