On Fri, Oct 18, 2013 at 10:12 AM, li...@rhsoft.net <li...@rhsoft.net> wrote: > > Am 18.10.2013 15:00, schrieb francis picabia: >> I'm looking at the logs for an SMTP only service where iptables >> should be stopping new connections on port 25, and I'm >> seeing connects with no sasl auth. They fail to relay, but >> I'd rather we didn't talk to them at all > > why do you need iptables for that? > comment out the smtp line for Port 25 in master.cf > the one you posted is stripped > > what says "netstat --numeric-hosts --numeric-ports --programs -u -t -l" > > # smtp inet n - n - 60 smtpd
If I turn off smtp there, then smtp service can't accept LAN connections on port 25. I can't force everything through secure SMTP for practical reasons with many other systems needing it which I do not control.
