Menu
▾
▴
Re: [work] Re: [Shorewall-users] Sending Mail from the Firewall
|
From: Graham D. <g....@fa...> - 2004-07-08 06:35:27
|
Hello Tom, Wednesday, July 7, 2004, 7:06:57 PM, you wrote: TE> Graham Dodd wrote: >> Hello shorewall-users, >>=20 >> I'm trying to send my firewall log files to the mail server, but the >> firewall keeps rejecting all attempts >>=20 >> I have the mail server in the DMZ, I'm running 1.4.7-RC1 >>=20 >> The logfile entry is: >>=20 >> Jul 7 17:56:53 gw kernel: Shorewall:all2all:REJECT:IN=3D OUT=3Deth0 >> SRC=3D81.200.97.45 DST=3D10.18.7.1 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL= =3D64 ID=3D111 >> DF PROTO=3DTCP SPT=3D48016 D >> PT=3D25 WINDOW=3D5840 RES=3D0x00 SYN URGP=3D0 >>=20 >> I don't know how to put in an ACCEPT because the "IN" interface is loc= al TE> Any time that you have a question about a log message, please consult= =20 TE> FAQ #17. There you would have found: TE> If you see "IN=3D" with no interface name, the packet originated TE> on the firewall itself. TE> If the packet originated on the firewall, then the source zone is the= =20 TE> firewall zone $FW (whose value is usually 'fw'): TE> ACCEPT $FW dmz tcp 25 I've tried that, but for some reason it's trying to go out through eth0 (net) Maybe a more general question: what's the best way to get logs from the firewall mailed to me --=20 Best regards, Graham mailto:g....@fa... |