On Mon, Jul 4, 2011 at 09:55, Walter Dnes <waltd...@waltdnes.org> wrote: > > On Mon, Jul 04, 2011 at 08:31:10AM +0700, Pandu Poluan wrote > > > If that is not possible, what solution would you recommend to 'harden' > > the non-25 mail port? > > portknocking sounds like doing things the hard way. The gateway has > to have either a fixed IP address or at least a domain name. Set up > iptables on your internal server to accept connections on the shifted > smtp port only if the connection is coming from the right IP address or > domain name. >
*slaps forehead* Gosh, you're right. What was I thinking... Clearly a case of Rube Goldberg-ian solution >.< Thanks for knocking some sense into my thick skull :-) Rgds, -- FdS Pandu E Poluan ~ IT Optimizer ~ Visit my Blog: http://pepoluan.posterous.com Google Talk: pepoluan Y! messenger: pepoluan MSN / Live: pepol...@hotmail.com (do not send email here) Skype: pepoluan
