[Shorewall-users] ProxyArp Implementation check
ama.kalu at cwlgroup.net
Thu Dec 4 17:20:30 PST 2003
This is not sendmail. This is Kerio Mail server 5 running on Windows XP
>From: shorewall-users-bounces at lists.shorewall.net
>bounces at lists.shorewall.net] On Behalf Of Graeme Boyle
>Sent: Thursday, December 04, 2003 3:50 PM
>To: 'Mailing List for Experienced Shorewall Users'
>Subject: RE: [Shorewall-users] ProxyArp Implementation check
>Sounds like a sendmail configuration setting on your mail server. The
>default sendmail configuration is to listen to the localhost. Check
>sendmail.cf file for this:
># SMTP daemon options
>O DaemonPortOptions=Port=smtp,Addr=127.0.0.1, Name=MTA
>And change the "Addr" to the correct IP address or remove this option
>> -----Original Message-----
>> From: shorewall-users-bounces at lists.shorewall.net
>> [mailto:shorewall-users-bounces at lists.shorewall.net] On
>> Behalf Of Ama Kalu
>> Sent: Thursday, December 04, 2003 9:29 AM
>> To: shorewall-users at lists.shorewall.net
>> Subject: [Shorewall-users] ProxyArp Implementation check
>> Dear All,
>> I have just implemented ProxyARP with my Mail server behind
>> It appears to be working OK as I can both send and receive mails, and
>> this server is available to both the NET and my LAN using the same
>> public IP.
>> The only port open to the net from shorewall is https (443)
>> I have attempted to reach both the Mailserver and the
>> firewall with nmap
>> and failed.
>> But I have been seeing this in my Mail server logs for the
>> past 24 hours
>> since I did this ProxyARP thing.
>> "Connection attempt to service SMTP from IP address 127.0.0.1
>> My question is this;
>> Is someone attempting some form of exploit via https on my
>> mail server?
>> How did this person go past shorewall? Has anyone any idea
>> what is going
>> Are there other ways of testing that ProxyARP and shorewall
>> are working
>> as designed?
>> Thanks for your assistance.
>> Shorewall-users mailing list
>> Post: Shorewall-users at lists.shorewall.net
>> Support: http://www.shorewall.net/support.htm
>> FAQ: http://www.shorewall.net/FAQ.htm
>Shorewall-users mailing list
>Post: Shorewall-users at lists.shorewall.net
More information about the Shorewall-users