Nevermind, I figured out what my error was. I was trying to block that IP,
and allow other smtp traffic through, but I did it in the wrong order.
Now I'm seeing where these things are coming from, and this is what I'm
seeing:
Packet log: input DENY eth0 PROTO=6 211.108.38.83:3868 my.mailserver.ip:25 L=40
S=0x00 I=2716 F=0x4000 T=108 (#3)
Packet log: input DENY eth0 PROTO=6 211.108.38.83:2856
Packet log: input DENY eth0 PROTO=6 211.108.38.83:2119
Packet log: input DENY eth0 PROTO=6 211.108.38.83:4700
Packet log: input DENY eth0 PROTO=6 211.108.38.83:2226
Packet log: input DENY eth0 PROTO=6 211.108.38.83:2999
Packet log: input DENY eth0 PROTO=6 211.108.38.83:3781
Packet log: input DENY eth0 PROTO=6 211.108.38.83:1469
Packet log: input DENY eth0 PROTO=6 211.108.38.83:3781
What could be generating this? I mean, what program (on their end) is sending
stuff from all those ports, and trying to connect to my smtp port?
--
W | I haven't lost my mind; it's backed up on tape somewhere.
+--------------------------------------------------------------------
Ashley M. Kirchner <mailto:[EMAIL PROTECTED]> . 303.442.6410 x130
IT Director / SysAdmin / WebSmith . 800.441.3873 x130
Photo Craft Laboratories, Inc. . 3550 Arapahoe Ave. #6
http://www.pcraft.com ..... . . . Boulder, CO 80303, U.S.A.
--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe
https://listman.redhat.com/mailman/listinfo/redhat-list
