This (CentOS5.1) box is my new imap server. Using system-config-security-level I opened port 143 tcp, and mail is readable throughout the LAN. I want a Roaming account on my laptop so that I can read mail while away from home. I have set up the account in kmail, and I know that that part is correct, as it worked on my old, less-secured, imap server. However, I haven't been able so far to make a connection. Do I need 143 udp open? What else must I do to allow me to connect over WAN? Thanks Anne
----- "Anne Wilson" <cannewilson at googlemail.com> wrote:> This (CentOS5.1) box is my new imap server. Using > system-config-security-level I opened port 143 tcp, and mail is > readable > throughout the LAN. I want a Roaming account on my laptop so that I > can read > mail while away from home. I have set up the account in kmail, and I > know > that that part is correct, as it worked on my old, less-secured, imap > server. > However, I haven't been able so far to make a connection. > > Do I need 143 udp open? What else must I do to allow me to connect > over WAN? > > Thanks > > Anne > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos > > -- > This message has been scanned for viruses and > dangerous content by MailScanner, and is > believed to be clean.Hi Anne, is your firewall set up ? port forwarding/NAT and how about your DNS, does that all point to the right place ? -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
----- "Anne Wilson" <cannewilson at googlemail.com> wrote:> This (CentOS5.1) box is my new imap server. Using > system-config-security-level I opened port 143 tcp, and mail is > readable > throughout the LAN. I want a Roaming account on my laptop so that I > can read > mail while away from home. I have set up the account in kmail, and I > know > that that part is correct, as it worked on my old, less-secured, imap > server. > However, I haven't been able so far to make a connection. > > Do I need 143 udp open? What else must I do to allow me to connect > over WAN? > > Thanks > > Anne > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos > > -- > This message has been scanned for viruses and > dangerous content by MailScanner, and is > believed to be clean.Hi Anne, is your firewall setup with the appropriate NAT/port forwarding and how about DNS ? Cheers, Brian. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
On Tue, Feb 05, 2008, Anne Wilson wrote:>This (CentOS5.1) box is my new imap server. Using >system-config-security-level I opened port 143 tcp, and mail is readable >throughout the LAN. I want a Roaming account on my laptop so that I can read >mail while away from home. I have set up the account in kmail, and I know >that that part is correct, as it worked on my old, less-secured, imap server. >However, I haven't been able so far to make a connection. > >Do I need 143 udp open? What else must I do to allow me to connect over WAN?You should have port 993 open which provides security via SSL. One can use TLS to initiate connections via port 143, but this may result in unencrypted logins which result in your username and password being sent in clear text across the Internet. You will also have to make provisions to allow mail relaying from the roaming IP for the duration of the authenticated connection (assuming that your mail server is not an open relay which will get it black listed pretty quickly). There are various ways to handle this. We have used WHOSON for years which doesn't require any action on the part of the IMAP client. One can also use SMTP AUTH, POP/IMAP before SMTP, or other methods. It would probably be easier to set up OpenVPN so you can tunnel from the remote systems into your private network, then connect via the private IP address for IMAP and SMTP sending. Once one has generated the proper keys for the OpenVPN connections, it is easy to make the connections (and easy to revoke them as well). There are OpenVPN clients for the Microsoft virus, Windows, OS X, and every version of Unix I've used. Bill -- INTERNET: bill at celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX: (206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Democracy, n.: A government of the masses. Authority derived through mass meeting or any other form of direct expression. Results in mobocracy. Attitude toward property is communistic... negating property rights. Attitude toward law is that the will of the majority shall regulate, whether it is based upon deliberation or governed by passion, prejudice, and impulse, without restraint or regard to consequences. Result is demagogism, license, agitation, discontent, anarchy. -- U. S. Army Training Manual No. 2000-25 (1928-1932), since withdrawn.