Added a SMTP_SECURE_OK rule (port 465)

Signed-off-by: Gregory Colpart <reg@evolix.fr>
10 years ago · 821af4d12f
2 changed files with 10 additions and 0 deletions
--- a/firewall.rc
+++ b/firewall.rc
@ -66,6 +66,9 @@ SSHOK='0.0.0.0/0'
 # SMTP
 SMTPOK='0.0.0.0/0'

+# SMTP secure (port 465 et 587)
+SMTPSOK=''
+
 # NTP
 NTPOK='78.153.240.29'

--- a/7
+++ b/7
@ -271,6 +271,13 @@ for x in $SMTPOK
        $IPT -A INPUT -p tcp ! --syn --sport 25 --dport $PORTSUSER -j ACCEPT
    done

+# SMTP secure
+for x in $SMTP_SECURE_OK
+    do
+        $IPT -A INPUT -p tcp ! --syn --sport 465 --dport $PORTSUSER -j ACCEPT
+        $IPT -A INPUT -p tcp ! --syn --sport 587 --dport $PORTSUSER -j ACCEPT
+    done
+
 # NTP
 # autoriser synchronisation ntpdate
 for x in $NTPOK