Port 25/SMTP problem

[zengatsu]

---

yep squid na bay..proxy server

[kyle_nexus]

agnitum outpost firewall can be configured to block port 25 or SMTP port.

[MelodyMan]

kyle_nexus:

im using the free version only. where can i find that setting? my policty setting now is "allow most mode" because if I set it to "rules wizard" then most workstations will experience little internet connection problems and sometimes cant connect at all. I'm not in the office all the time to monitor the network. One man army jud ni.

Furthermore, there have been cases where I experienced connection problems connecting from one domain to another within the same network segment or not. And even if I allow netbios communications and trust on both domains.

Thanks!
------------------------
OT:

What I like on Outpost compare to other freeware firewalls is that the network traffic report/diagram is so clear and easy to understand. I can find all the info I want in a glance.

[njclark]

Hi,


I'd recommend the following set-up.

Try to install Ubuntu 5.10 as a server.
apt-get install postfix postfix-pcre clamav clamav-daemon amavisd-new spamassassin firehol
install the freeware version of BitDefender http://www.bitdefender.com/

Use postfix as your main SMTP server, make sure Anti-virus and Anti-spam is setup, should help rid of some issues.

Set-up firehol to NAT your network connection. Pretty easy configuration. (just hides the IPTables details from you).

Other go with pre-packaged stuff

http://www.astaro.com/
http://www.securepoint.cc/
http://www.redwall-firewall.com/
http://m0n0.ch/wall/


Cheers,


John Clark

[MelodyMan]

thanks john clark. i've heard good stuffs about ubunto but i was hoping or should i say i want to use Linux with GUI installation. i checked on distrowatch.com and it seems that ubunto is like debian. i have a bad experience installing debian when configuring the monitor/video.

i really find this post fruitful. thanks to all who replied.

[kyle_nexus]

blocking port 25/smtp port with agnitum outpost firewall

create a rule with the application that uses port 25/smtp.

ex. (blocking internet explorer from using smtp port)

1. at the main window go to Options. choose Application...
2. on the Application dialog box search for IEXPLORER.EXE. click on Edit and choose Create Rules...
3. on the Rules' window it should look like this.

(1) select event the rule will handle
[X] where the specified protocol is
[X] where the specified direction is
[X] where the specified local port is


NOTE: check 'block it' first before checking 'where the specified local port is'

(2) Select actions with which the the rule will respond

[X] Block it

(3) Rule Description (click on an underlined value to edit it)

Where the protocol is TCP
and where the direction is Outbound
and where the local port is SMTP
Block it

(4) Rule Name
IEXPLORER RULE #1

4. Click OK.

that should be working. i never tried it basin daghan ang mahigh-blood if ako na suwayan diri sa opisina...

i just give u an idea of creating a rule with iexplorer, try to implement it with other application that uses smtp port. prehas ta ug firewall..nice kaau ang agnitum...

[blitz]

When port scanning on my own IP, I wonder why port 25 is open when I dont have any SMTP service/server installed.

What port scanner are you using?

Does it display the server response when port 25 is scanned?

Here's a port scanner output showing how AVG (an antivirus program) can make port 25 available when you configured it to scan outgoing mails..

* + 192.168.1.251
|___ 25 Simple Mail Transfer
|___ 220 AVG ESMTP Proxy Server 7.0.362/7.1.362 [267.13.4/175]..
|___ 80 World Wide Web HTTP
|___ f.2}.t8.f_..Q.
|___ 110 Post Office Protocol - Version 3
|___ -ERR AVG POP3 Proxy Server: Cannot connect to the mail server!..
|___ 135 DCE endpoint resolution
|___ 139 NETBIOS Session Service
|___ 443 https MCom
|___ 445 Microsoft-DS

[MelodyMan]

Hi kyle_nexus,

thanks a lot for your reply. are you using the free version?. I've tested the commercial version moths ago and it's way too good!

is there a way to block a port without having to specify an exe program? Windows XP firewall has 'Add a Port' option but this opens port.

Thanks a lot!

[MelodyMan]

hi blitz,

im using this Advanced Port Scanner. It's free.

i've other similar softwares that I used to check the incoming packets of our servers.

thanks.

[blitz]

hi blitz,

im using this Advanced Port Scanner. It's free.

i've other similar softwares that I used to check the incoming packets of our servers.

thanks.

i used Superscan.. if it displays the response of the listener at port 25, it may tell you what app it is.