Here''s what I want to do ... (single interface config):
I want to allow incoming mail from the entire Internet. However,
I would like to write a log message for those SMTP connections
originating off-campus. Mail coming in from campus
(152.10.0.0/16) should arrive silently.
After trying to understand how I might do this by reading the
documentation, I was ready to start editing the *dreaded*
/etc/shorewall/hosts file. When I saw Tom''s 90%/80% warnings in the
docs (in RED!) and "hosts" file, I decided maybe I''d ask the
mailing
list for guidance. This does seem -- according to my understanding --
a proper use of "hosts", but I''m not positive about it ...
Not trying to shirk my work here, but just don''t want to mess things
up!
Thanks for any ideas,
--
Prof Kenneth H Jacker khj@cs.appstate.edu
Computer Science Dept www.cs.appstate.edu/~khj
Appalachian State Univ
Boone, NC 28608 USA
--On Sunday, January 26, 2003 5:04 PM -0500 Kenneth Jacker <khj@be.cs.appstate.edu> wrote:> Here''s what I want to do ... (single interface config): > > I want to allow incoming mail from the entire Internet. However, > I would like to write a log message for those SMTP connections > originating off-campus. Mail coming in from campus > (152.10.0.0/16) should arrive silently. > > After trying to understand how I might do this by reading the > documentation, I was ready to start editing the *dreaded* > /etc/shorewall/hosts file. When I saw Tom''s 90%/80% warnings in the > docs (in RED!) and "hosts" file, I decided maybe I''d ask the mailing > list for guidance. This does seem -- according to my understanding -- > a proper use of "hosts", but I''m not positive about it ... > > Not trying to shirk my work here, but just don''t want to mess things up! >In /etc/shorewall/rules: ACCEPT:info net:!152.10.0.0/16 fw tcp 25 -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://www.shorewall.net Washington USA \ teastep@shorewall.net
--On Sunday, January 26, 2003 2:10 PM -0800 Tom Eastep <teastep@shorewall.net> wrote:>> > > In /etc/shorewall/rules: > > ACCEPT:info net:!152.10.0.0/16 fw tcp 25 >And of course, you want to follow that rule with: ACCEPT net fw tcp 25 #Campus mail -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://www.shorewall.net Washington USA \ teastep@shorewall.net