I searched and found a tidbit of info in a post from 2005 but did not
really answer my question I have. I just set up a client with Postini
and asked the client to add the packet filter of 'network' 64.18.0.0
'mask' 255.255.240.0. Though through testing from Postini the Firewall
test failed

"Testing firewall from 64.79.158.7 to xxx.xxx.xxx.115... failed
(accepted connection)".

Our server with a router gets

"Testing firewall from 64.79.158.9... status:passed (did not accept
connection)".

They are still getting SPAM. I do not have remote access so all the
help I get will be delayed for my response. Thanks alot.


--
Jeff Tucker
Doran Consulting
Virginia Beach, VA
------------------------------------------------------------------------
pcguru1964's Profile: http://forums.novell.com/member.php?userid=9307
View this thread: http://forums.novell.com/showthread.php?t=341925

In article <pcguru1964.3eyj8n@no-mx.forums.novell.com>, Pcguru1964
wrote:
> searched and found a tidbit of info in a post from 2005 but did not
> really answer my question I have. I just set up a client with Postini
> and asked the client to add the packet filter of 'network' 64.18.0.0
> 'mask' 255.255.240.0. Though through testing from Postini the Firewall
> test failed

I've set up a lot of BMgr servers with Postini. The network address
given above sounds correct. At least it matches one I worked on this
week. (Postini addresses have changed over the years).

> "Testing firewall from 64.79.158.7 to xxx.xxx.xxx.115... failed
> (accepted connection)".
>
The way to set up these filters is to have the default filters (not
exceptions) in place, then add appropriate exceptions. Defaults can be
seen in tip #13 at the URL below.

The exceptions would allow dest. Port 25 to your mail server address,
with a source IP of the 64.18.0.0 (255.255.240.0) network. You could
have a stateful smtp exception or a pair of non-stateful exceptions.

If you are still getting mail from other sources, you must either not be
filtering at all (see tip #13), or you have some other exception
allowing that port in (and perhaps other ports).

> Our server with a router gets
>
> "Testing firewall from 64.79.158.9... status:passed (did not accept
> connection)".

I'm not sure what you mean by the above, in terms of what was tested and
where you see the message.
>


Craig Johnson
Novell Support Connection SysOp
*** For a current patch list, tips, handy files and books on
BorderManager, go to http://www.craigjconsulting.com ***

Hello Craig,

I have both of your books (though older versions :-) ). It has been
awhile since this was setup. They had a BM server that died. Their
original support abandoned them for greener pastures. So I had to get
them up and running. I am unsure whether the BM is setup right. I
suspect it is not. I can ping the public interface of the mail server.
My first clue.

I will have to get over there to check. I may be contacting you for
consulting services. I will post on the forum any changes I make for
posterity.

Thanks


--
Jeff Tucker
Doran Consulting
Virginia Beach, VA
------------------------------------------------------------------------
pcguru1964's Profile: http://forums.novell.com/member.php?userid=9307
View this thread: http://forums.novell.com/showthread.php?t=341925