Re: Linux Mail Server problems, help please!

From: Ohmster (donteven_at_thinkaboutit.com)
Date: 07/25/04 

Date: Sun, 25 Jul 2004 03:41:29 GMT

"ynotssor" <ynotssor@example.net> wrote in
news:2mgkjoFmolrhU1@uni-berlin.de:

> Since port 80 is open but port 25 is not, be sure that sendmail is
> listening on the external interface (netstat -pan | grep :25), or that
> your router is forwarding port 25 to the sendmail machine.
>
> Also, maybe you should read your Terms of Service Agreement again.
> bellsouth.net may be blocking port 25 both inbound and outbound to all
> but their own mailservers.
>
>
> tony

Tony,

[root@ohmster root]# netstat -pan | grep :25
tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN
23930/sendmail: acc
raw 0 0 0.0.0.0:255 0.0.0.0:* 7
1429/upnpd
[root@ohmster root]#

I have no router. I configured my Westell modem to run in bridged ethernet
mode so that it will be transparent to the linux machine. I login to my PPPoE
connection with the roaring penguin script so that my redhat box actually
does get the IP address and not the modem. Hmmmm...

Just went to www.grc.com to do a "Shields Up" test to see what is going on.
Well what do you know, port 25 is being reported as "Stealth". That is
supposed to read as "OPEN". Dammit. Gotta check firestarter firewall to see
if it is getting into the act. I did upgrade firestarter when a slightly
newer version came out not very long ago. Huh, SMTP is listed as a service
but it is still being blocked! This has always worked in the past. Grrrr,
shutting down firewall to test again at grc.com.

Ahhh crap, no firewall at all and port 25 is still reading "Stealth". WTF?!
Doing a side by side comparison at grc with firewall running and firewall not
running now. Yeah, with no firewall, 25 is still "Stealth", along with 135,
139, and 445. Gonna go read the TOS now to see if this is mentioned. Cannot
find anything specific about this on bellsouth.

Bellsouth never blocked these ports before, this must be something new. Oh
man, is this really the end of my mail server? What more can I do?

(Thanks for your help, Tony.) 

-- 
My email address is invalid, thanks to
all of these rotten spambots.
Email me by assembling this address:
ohmster "ay tea" newsguy "dee oh tea" com
~Ohmster

Relevant Pages

  • Re: keeping ports open
    ... If a port is open, it means that 1) a software or service is running on your ... and 2) you're not using a firewall or your firewall isn't ... Use firewall software and hardware and antivirus software that is ... Follow the instructions for hardening Windows and IIS at ...
    (microsoft.public.security)
  • Re: How to Maintain an IIS Server?
    ... > server running on a Windows 2000 server. ... before a firewall and antivirus have been installed]. ... open ports; however, this will not identify which program is using the port. ...
    (microsoft.public.inetserver.iis.security)
  • Re: CEICW fails at firewall config
    ... ISA Server prevents connection to a remote desktop when you connect through ... Remote Web Workplace on a Windows Small Business Server 2003-based computer ... Acceleration Server as a firewall. ... connection uses TCP port 4125. ...
    (microsoft.public.windows.server.sbs)
  • Re: How to Maintain an IIS Server?
    ... >> server running on a Windows 2000 server. ... > before a firewall and antivirus have been installed]. ... > program or executable using that port. ...
    (microsoft.public.inetserver.iis.security)
  • How to stealth port 113 (ident/auth) for users of [NAT] routers
    ... not stealth port 113 using their firewall software (Norton ... Turns out it wasn't a fault of their firewall. ... My NAT router was the culprit although it has some ... router to block traffic on port 113, ...
    (microsoft.public.security)