The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

IPTABLES - Not allowing mail through?

Discussion in 'E-mail Discussions' started by camers, Oct 12, 2004.

  1. camers

    camers Member

    Joined:
    Oct 8, 2004
    Messages:
    18
    Likes Received:
    0
    Trophy Points:
    1
    I have a problem with incomming mail with my server, it wont receive! Anyway, i conacted the guys who colo'd my server (LayeredTech) and they fixed this issue twice in a day, it kept comming back. It has came back once again.

    The emails sent back to me where:

    -----------
    Scott,

    I have Flushed your iptables rules and your mail server is now accepting
    connections. You should look into configureing iptables so if this
    happens in the future oyu can correct the issue quicker that what it
    takes to submit a ticket.

    Thanks,
    John
    --------------
    Scott,

    It appears there was a problem with your 'iptables' ruleset and it was
    blocking the ports used by your mail server. I have installed a simple
    iptables firewall ruleset and it appears to be working now.

    Thanks

    Jeremy
    --------


    Can you guys help me to STOP this issue comming back completely, I have apf+bfd installled, maybe that has its part but who knows? OR maybe just the IPTABLES. is there a way to keep them the same... Please this issue is rather annoying. Help is ver very much welcomed!
     
  2. sawbuck

    sawbuck Well-Known Member

    Joined:
    Jan 18, 2004
    Messages:
    1,367
    Likes Received:
    5
    Trophy Points:
    38
    cPanel Access Level:
    Root Administrator
    APF is essential a front end for iptables. Sounds from your message as if you are trying to run both at the same time?
     
  3. camers

    camers Member

    Joined:
    Oct 8, 2004
    Messages:
    18
    Likes Received:
    0
    Trophy Points:
    1
    So, iptables act as firewalls? Well i need bfd...so, id need apf right? Do i need to disable iptables to stop this happening? If so guide me through it..
     
  4. SarcNBit

    SarcNBit Well-Known Member

    Joined:
    Oct 14, 2003
    Messages:
    1,010
    Likes Received:
    3
    Trophy Points:
    38
    You need APF to run BFD, but like sawbuck stated, APF is basically just a 'front-end' for iptables/netfilter. If your problem keeps coming back it may be an issue with your APF configuration.
     
  5. camers

    camers Member

    Joined:
    Oct 8, 2004
    Messages:
    18
    Likes Received:
    0
    Trophy Points:
    1
    Can you help me delete apf + bfd to check if that solves anything. And i may reinstall it with more precaution!
     
  6. SarcNBit

    SarcNBit Well-Known Member

    Joined:
    Oct 14, 2003
    Messages:
    1,010
    Likes Received:
    3
    Trophy Points:
    38
    Look in your /etc/apf/conf.apf file

    Find the line that starts IG_TCP_CPORTS=

    Make sure you have the ports you need open comma seperated in quotes following the equal sign (for example IG_TCP_CPORTS="22,25,80" <- you will need more than that on a Panel server)

    Restart APF

    /usr/local/sbin/apf -restart

    What version of APF and BFD are you running?
     
  7. camers

    camers Member

    Joined:
    Oct 8, 2004
    Messages:
    18
    Likes Received:
    0
    Trophy Points:
    1
    root@amd [~]# /etc/apf/conf.apf
    -bash: /etc/apf/conf.apf: Permission denied

    Comes up with that..

    And the versions where just installed from current files, so i dont know. But it would have been the latest version out on friday (thats when i hooked it up)
     
  8. SarcNBit

    SarcNBit Well-Known Member

    Joined:
    Oct 14, 2003
    Messages:
    1,010
    Likes Received:
    3
    Trophy Points:
    38
    conf.apf is a configuration file. You need to view or edit it with an editor. You cannot 'execute' it from the command line.

    Who installed APF/BFD for you?

    You should consider talking to them about the configuration or check the ads and offers section of this forum and hire a sysadmin to do the configuration for you. There are a few people listed that offer 'configuration packages', including this gentleman (http://forums.cpanel.net/showthread.php?t=30541).
     
Loading...
Similar Threads - IPTABLES allowing mail
  1. Dan Woller
    Replies:
    2
    Views:
    66

Share This Page