Re: Spamd sending packets from 127.0.0.1 to the outside? | KernelTrap

Re: Spamd sending packets from 127.0.0.1 to the outside?

view
thread

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: Paul de Weerd <weerd@...>

To: Renaud Allard <renaud@...>

Cc: <misc@...>, Peter N. M. Hansteen <peter@...>

Subject: Re: Spamd sending packets from 127.0.0.1 to the outside?

Date: Monday, December 10, 2007 - 12:02 pm

Hi Renaud,
On Mon, Dec 10, 2007 at 04:50:36PM +0100, Paul de Weerd wrote:

| Have you actually seen these packets live on the wire ?
I re-read your original mail, and it turns out you have seen these

packets on the wire. Sorry for the too-quick-answer ;P
| I doubt it. In general (the recommended setup), pf redirects incoming

| requests to 127.0.0.1:8025, the port where spamd is listening *on

| localhost*. Replies such as ACK's etc. *MUST* originate from

| 127.0.0.1:8025 in this case. PF will take care of rewriting the packet

| to the address the client originally used to contact your mailserver

| (spamdserver).
For some reason, pf doesn't seem to take care of rewriting the return

traffic where it should. Can you confirm there is a matching pf-state

in the state table when you see this sort of traffic ?
Paul 'WEiRD' de Weerd
--

quoted text>++++++++[<++++++++++>-]<+++++++.>+++[<------>-]<.>+++[<+

+++++++++++>-]<.>++[<------------>-]<+.--------------.[-]

                 http://www.weirdnet.nl/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

Spamd sending packets from 127.0.0.1 to the outside?, Renaud Allard, (Mon Dec 10, 10:14 am)

Re: Spamd sending packets from 127.0.0.1 to the outside?, Peter N. M. Hansteen, (Mon Dec 10, 10:42 am)

Re: Spamd sending packets from 127.0.0.1 to the outside?, Renaud Allard, (Mon Dec 10, 11:24 am)

Re: Spamd sending packets from 127.0.0.1 to the outside?, Paul de Weerd, (Mon Dec 10, 11:50 am)

Re: Spamd sending packets from 127.0.0.1 to the outside?, Paul de Weerd, (Mon Dec 10, 12:02 pm)

Re: Spamd sending packets from 127.0.0.1 to the outside?, Renaud Allard, (Mon Dec 10, 12:11 pm)

Re: Spamd sending packets from 127.0.0.1 to the outside?, Peter N. M. Hansteen, (Mon Dec 10, 11:47 am)

Navigation

Popular discussions


linux-kernel:
Andrew Morton	Re: Linux 2.6.21-rc4
Andrew Morton	-mm merge plans for 2.6.23
Greg KH	[GIT PATCH] driver core patches against 2.6.24
Balbir Singh	Re: [RFC][PATCH 2/7] RSS controller core
git:

linux-netdev:
Gerrit Renker	[PATCH 15/37] dccp: Set per-connection CCIDs via socket options
David Miller	[GIT]: Networking
Andreas Henriksson	[PATCH 06/12] Remove bogus reference to tc-filters(8) from tc(8) manpage.
Jarek Poplawski	Re: [PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
openbsd-misc:

Colocation donated by:

Who's online

There are currently 0 users and 862 guests online.

Syndicate