Fedora Linux Support Community & Resources Center

Home Forums Posting Rules Linux Help Fedora Set-Up Guides Ask Fedora Fedora Project
Go Back   FedoraForum.org > Fedora 17/18 > Servers & Networking
Reload this Page Block connections from specific IP range
FedoraForum Search
Forgot Password? Join Us!
Register All Albums FAQ Search Today's Posts Mark Forums Read

Servers & Networking Discuss any Fedora server problems and Networking issues such as dhcp, IP numbers, wlan, modems, etc.

Reply
 
Thread Tools Search this Thread Display Modes
  #1  
Old 19th December 2008, 07:03 PM
sdotsen Offline
Registered User
  
Join Date: Jul 2006
Posts: 9
Block connections from specific IP range
So we opened up port 25 for our mail server. I ran "lsof -i TCP:25 -n" and found atleast 60+ connections to other servers. Because of this, our mail server isn't able to send emails to external domains. I verify this by killing the PID of connection, but seconds later they reappear. During this 3-5 second span, my emails that were in queue were sent out. Anyways, I think there's a setting in the oracle install that will accommodate these additional connections but I would also like to know so that I can block them if possible. I have iptables enabled but the same IPs keep showing up!

essmo 7110 applmail 185u IPv4 410413 TCP 192.168.10.31:3030->168.95.5.44:smtp (SYN_SENT)
essmo 7110 applmail 186u IPv4 411288 TCP 192.168.10.31:3312->168.95.6.180:smtp (SYN_SENT)
essmo 7110 applmail 189u IPv4 410424 TCP 192.168.10.31:3033->168.95.5.28:smtp (SYN_SENT)

IPTABLES OUTPUT

-A OUTPUT -d 168.95.6.0/255.255.255.0 -j DROP
-A OUTPUT -d 168.95.5.0/255.255.255.0 -j DROP
-A OUTPUT -d 168.95.4.0/255.255.255.0 -j DROP
Reply With Quote
  #2  
Old 23rd December 2008, 03:35 AM
spinnerdog Offline
Registered User
  
Join Date: Dec 2008
Posts: 6
try something like this from the command line. if it works then add it /etc/sysconfig/iptables
-A INPUT -s 168.95.5.0/255.255.255.0 -i eth0 -p tcp -m tcp --dport 25 -j REJECT --reject-with icmp-port-unreachable
Reply With Quote
  #3  
Old 23rd December 2008, 03:37 AM
spinnerdog Offline
Registered User
  
Join Date: Dec 2008
Posts: 6
don't forget to call iptables when trying from the command line

/sbin/iptables -A INPUT -s 66.0.0.0/255.0.0.0 -i eth0 -p tcp -m tcp --dport 22 -j REJECT --reject-with icmp-port-unreachable
Reply With Quote
Reply

Tags
block, connections, range, specific

« Previous Thread | Next Thread »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Block certain domains for specific account THE Ralfinator Servers & Networking 1 28th March 2007 09:01 PM
Unable to access home box, from specific IP range. InfRecursion Using Fedora 2 14th February 2007 07:07 PM


Current GMT-time: 19:58 (Friday, 24-05-2013)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.
Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

 FedoraForum is Powered by RedHat