From owner-freebsd-questions@FreeBSD.ORG Fri Dec 17 18:20:53 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 54F3716A4CE for ; Fri, 17 Dec 2004 18:20:53 +0000 (GMT) Received: from mail3.speakeasy.net (mail3.speakeasy.net [216.254.0.203]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1DFFD43D4C for ; Fri, 17 Dec 2004 18:20:53 +0000 (GMT) (envelope-from curtis@npc-usa.com) Received: (qmail 24497 invoked from network); 17 Dec 2004 18:20:52 -0000 Received: from dsl017-040-162.sea1.dsl.speakeasy.net (HELO dmz.vostok1.com) ([69.17.40.162]) (envelope-sender ) by mail3.speakeasy.net (qmail-ldap-1.03) with SMTP for ; 17 Dec 2004 18:20:52 -0000 Received: from [192.168.1.3] (unknown [192.168.1.3]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by dmz.vostok1.com (Postfix) with ESMTP id 019A111F781 for ; Fri, 17 Dec 2004 10:23:35 -0800 (PST) Mime-Version: 1.0 (Apple Message framework v619) In-Reply-To: <89CBFC80-5050-11D9-B943-000393934006@npc-usa.com> References: <89CBFC80-5050-11D9-B943-000393934006@npc-usa.com> Content-Type: text/plain; charset=US-ASCII; format=flowed Message-Id: <621B31FB-5058-11D9-B943-000393934006@npc-usa.com> Content-Transfer-Encoding: 7bit From: Curtis Vaughan Date: Fri, 17 Dec 2004 10:20:51 -0800 To: freebsd-questions@freebsd.org X-Mailer: Apple Mail (2.619) Subject: Re: Opening ports X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 17 Dec 2004 18:20:53 -0000 On 17 Dec, 2004, at 09:24, Curtis Vaughan wrote: > I realized that apparently by default most all ports are closed on my > 5.3-Release box. The reason I say this is because besides port 22, 80 > and 10000 no other port seems to be open (based on a port scan). I > just installed postfix and courier-imap and wanted to test ports 25 > and 110, but they do not respond even though postfix is running, I > have enabled the ports in master.cf. Also they are in /etc/services. > > Looking over documents and checking my install, /etc/rc.firewall is > not enabled in /etc/defaults/rc.conf. > > I assume I could go through rc.firewall and set it up for those ports > I need opened, and enable it in rc.conf, but whereas we have a > gatewall/firewall for our company, I don't see a lot of > reason for having all the ports closed down on this server. Is there > an easy way to enable them all? > > Curtis > OK, I've got courier-imap running now and it opened port 143, but there is still no reply on 25. Which makes me think that the problem isn't the fact that ports are closed, but that nothing is listening. However, netstat shows: cod# netstat -na | grep LISTEN tcp4 0 0 *.143 *.* LISTEN tcp6 0 0 *.143 *.* LISTEN tcp4 0 0 *.80 *.* LISTEN tcp4 0 0 *.25 *.* LISTEN tcp4 0 0 *.10000 *.* LISTEN tcp4 0 0 *.22 *.* LISTEN tcp6 0 0 *.22 *.* LISTEN So, something is listening on port 25, but why no response to telnet requests? Curtis