On Fri, Oct 18, 2013 at 05:25:10PM +0200, Dominik George wrote:
> >No, that also turns off SMTP for "LAN" clients.
>
> Then...... Put your LAN IP there :D.
- Typically there is no LAN IP vs WAN IP for a machine that is not
dual-homed (e.g. a router). So let's not righteously proclaim
unusable advice.
There are local SMTP clients and remote SMTP clients. To block
TCP connections from remote clients one needs network firewall
rules (since TCP connections are managed by the O/S TCP IP stack
if the SYN packets get through all intermediate devices). Such
rules live either in a separate router or firewall device, or in
host firewall rules such as iptables. Help with iptables
configuration is not a Postfix topic.
> About your firewall failing, either your firewall admin lies
> (have you tested yourself?)
- There are no Postfix issues here. The OP is looking for help
with iptables.
--
Viktor.
