Date: Sat, 25 Sep 1999 12:59:21 -0700 (PDT) From: "Rodney W. Grimes" <freebsd@gndrsh.dnsmgr.net> To: brett@lariat.org (Brett Glass) Cc: n@nectar.com (Jacques Vidrine), chat@FreeBSD.ORG Subject: Re: Filtering port 25 (was Re: On hub.freebsd.org refusing to talk to dialups) Message-ID: <199909251959.MAA08225@gndrsh.dnsmgr.net> In-Reply-To: <4.2.0.58.19990925133024.044fb290@localhost> from Brett Glass at "Sep 25, 1999 01:31:25 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
> At 09:04 AM 9/25/99 -0700, Rodney W. Grimes wrote:
>
> >Ahhhh.. so you might not mind so much if I had
> >ipfw add 10251 divert ${MYSPECIALSMPTHANDLRE} any to any 25 out via lnc1
>
> Interesting idea. What would you put into MYSPECIALSMTPHANDLER?
The port number of the process that hands your data off to the internal
smarthost by some means. On the otherside of that port would probably be
a sockpair tcp stream between the firewall and the smarthost that spoke
a wrapping protocol around smtp that would inject your smtp session into
sendmail properly. (Ie, there is the problem that you expect to be talking
to a specific destination IP, or I would just use a redirect with no wrapping).
The above ipfw rule is only the very beginning of what it would take to
make this a functional mechanism. It is however based upon reality in
the world of using web caches (which I don't see anyone objecting to)
at ISP's to increase web access speed.
Now why is it that folks are so opposed to what we are doing with port 25
traffic, yet they think it is just a super thing to do with port 80 traffic.
Go figure...
--
Rod Grimes - KD7CAX - (RWG25) rgrimes@gndrsh.dnsmgr.net
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-chat" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199909251959.MAA08225>