Re: Mailonly filters

Arnaud Girsch (girsch@marben.com)
Tue, 18 Jun 1996 23:16:19 -0700 (PDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Matthew Cable/USA.NET Inc.: "Question..."
Previous message: Michael Cunningham: "Wierd Problem"

> I have mailonly.in set as follows:
> permit tcp dst eq 25
> permit udp dst eq 53
> permit tcp dst eq 53
> permit udp src eq 53
> permit tcp src eq 53
> permit tcp dst eq 110
> permit 0.0.0.0/0 206.206.167.10/32 tcp dst eq 80
> permit icmp
>
> HTTP seems erratic - when the user connects, he gets my home page usually
> once, but can't reload it again, unless he specifies the IP address, which
> suggests that there's no DNS... Sometimes he gets all of the page except
> for a 30k graphic...? I've ptraced it and there's nothing coming in except
> 53/80/110 types. Without the filter, everything works OK. Anyone seen this
> happen? (ComOS = 3.3.1c1)
hum ... at first sight, 'doesn't look like a filter problem ...
(if DNS works once, it works everytime, same for mail, etc ...)

> Second question: when a filter rule has `log' at the end, exactly where on
> `loghost' is that entry written when the rule fires?
Using syslogd(8) on the loghost box.
It uses the facility AUTH, which is referenced as auth.* in your
/etc/syslog.conf file. It then writes everything in the file you defined for
auth.*
(all this assuming your loghost is a Unix box - more info in syslogd(8) and/or
syslog.conf(4) )

Arnaud.

-- 
Arnaud Girsch  -+- agirsch@marben.com -+- Marben Products, Inc. - San Jose, CA

Next message: Matthew Cable/USA.NET Inc.: "Question..."
Previous message: Michael Cunningham: "Wierd Problem"