Enjoy the Holiday season!

Welcome to the Slackware Documentation Project

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
howtos:network_services:postfix_dovecot_mysql:email_firewall [2018/02/06 00:58 (UTC)]
astrogeek Removed UFW syntax added by others - added policy lines
howtos:network_services:postfix_dovecot_mysql:email_firewall [2018/02/06 01:17 (UTC)] (current)
astrogeek [Firewall Rules For Virtual Mail Server]
Line 8: Line 8:
  
 <note important>Loading //only// the rules below as your firewall will close other access that may be important to you such as http and ssh! <note important>Loading //only// the rules below as your firewall will close other access that may be important to you such as http and ssh!
-You should first use iptables -L to check for pre-existing rules and merge those below into your existing firewall+You should first use iptables -L to check for pre-existing rules and __merge those below into your existing firewall__
-If you have no existing firewall and need to allow http and ssh, uncomment the lines for those also included here.</note>+If you have no existing firewall and/or need to allow http and ssh, uncomment the --policy lines and those for http and ssh as necessary to meet your requirements.</note>
  
-Following is a minimal set of iptables rules to provide a firewall for your email server.+Following is a **minimal** set of iptables rules to provide a firewall for your email server. While 
  
 <code> <code>
---policy INPUT DROP +#--policy INPUT DROP 
---policy FORWARD DROP +#--policy FORWARD DROP 
---policy OUTPUT DROP+#--policy OUTPUT ACCEPT
  
 -A INPUT -m state --state INVALID -j DROP -A INPUT -m state --state INVALID -j DROP

In Other Languages
QR Code
QR Code howtos:network_services:postfix_dovecot_mysql:email_firewall (generated for current page)