Differences

This shows you the differences between two versions of the page.

--- howtos:network_services:postfix_dovecot_mysql:email_firewall [2018/02/06 00:58 (UTC)]
astrogeek Removed UFW syntax added by others - added policy lines
+++ howtos:network_services:postfix_dovecot_mysql:email_firewall [2018/02/06 01:17 (UTC)]
astrogeek [Firewall Rules For Virtual Mail Server]
@@ Line 8: / Line 8: @@
 <note important>Loading //only// the rules below as your firewall will close other access that may be important to you such as http and ssh!
-You should first use iptables -L to check for pre-existing rules and merge those below into your existing firewall.
+You should first use iptables -L to check for pre-existing rules and __merge those below into your existing firewall__.
-If you have no existing firewall and need to allow http and ssh, uncomment the lines for those also included here.</note>
+If you have no existing firewall and/or need to allow http and ssh, uncomment the --policy lines and those for http and ssh as necessary to meet your requirements.</note>
-Following is a minimal set of iptables rules to provide a firewall for your email server.
+Following is a **minimal** set of iptables rules to provide a firewall for your email server. While
 <code>
---policy INPUT DROP
+#--policy INPUT DROP
---policy FORWARD DROP
+#--policy FORWARD DROP
---policy OUTPUT DROP
+#--policy OUTPUT ACCEPT
 -A INPUT -m state --state INVALID -j DROP