SYSTEM WARNING: 'date_default_timezone_get(): It is not safe to rely on the system's timezone settings. You are *required* to use the date.timezone setting or the date_default_timezone_set() function. In case you used any of those methods and you are still getting this warning, you most likely misspelled the timezone identifier. We selected the timezone 'UTC' for now, but please set date.timezone to select your timezone.' in '/usr/share/mantis/www/core.php' line 264
|Anonymous | Login||2020-01-18 00:28 UTC|
|Main | My View | View Issues | Change Log | Roadmap|
|View Issue Details|
|ID||Project||Category||View Status||Date Submitted||Last Update|
|0002389||Endian Firewall||Other Services||public||2009-11-07 15:22||2010-09-23 15:26|
|Target Version||Fixed in Version|
|Summary||0002389: a lot of forward:drop entries when using POP3-Proxy|
I have a lot of forward:DROP entries in firewall protocol like this:
FORWARD:DROP TCP (br1) <int. mailserver>:xxxx -> <ext. mailserver>:110 (eth3)
An outgoing rule for tcp 110 for the int. mailserver to red is active.
Without pop3-proxy everything looks correct, but after activating pop3-proxy, I get a lot of drop entries in firewall protocol - but emails still arrive.
Is there a way to stop this forward:drop entries in firewall protocol ? (that I can see easier real problems ...)
By the way: Endian 2.3 looks very nice!
|Tags||No tags attached.|
do you have a mailserver which fetches mails from an external pop server?
not sure why you have pop3 connections in forward at all. pop3 proxy transparently intercepts those connections, so you should not have any pop3 connections anymore.
Are you sure the connections go through pop3-proxy?
bodo olschewski (reporter)
I use hMailer on orange (with pop3 proxy on orange) to load emails from external pop3-Accounts from various external servers. (the server has to lan, but only the orange LAN has a gateway, also the orange lan adress appears in the firewall list)
Sometimes I get not one entry (for pop3 traffic) for 30 minutes or even longer (after restart endian or try changing rules etc.), but lately after some hours it starts again.
So in one day I get 30-50 protocol pages full with such entries.
Receiving the emails still work all the time.
|2009-11-07 15:22||bodo olschewski||New Issue|
|2009-11-25 15:08||peter-endian||Note Added: 0003383|
|2009-11-25 15:08||peter-endian||Status||new => feedback|
|2009-11-27 15:49||bodo olschewski||Note Added: 0003428|
|2010-09-23 15:26||peter-endian||Status||feedback => acknowledged|
|Copyright © 2000 - 2012 MantisBT Group|