[lug] POP3 Isn't working
John Hernandez
John.Hernandez at noaa.gov
Thu Oct 7 12:12:34 MDT 2004
Did you reload xinetd? 'service xinetd reload'
Is anything listening on TCP 110? 'lsof -i -n'
Bill Thoen wrote:
> I have a newly configured RH9 server, but I can't connect using POP3 to
> get my mail. I edited /etc/xinetd.d/ipop3 file and set disable=no, and now
> when I run chkconfig, pop3 is listed as on. I checked /etc/services and
> pop3 is listed for port 110 for both udp and tcp.
>
> However, this time I set up a firewall (automatically during the system
> install) and I suspect that the problem lies there. But I don't know how
> to read the /etc/sysconfig/iptables file. Can someone who knows more take
> a look at this and tell me if that's the problem and how to fix it? here's
> my iptables file:
>
> *filter
> :INPUT ACCEPT [0:0]
> :FORWARD ACCEPT [0:0]
> :OUTPUT ACCEPT [0:0]
> :RH-Lokkit-0-50-INPUT - [0:0]
> -A INPUT -j RH-Lokkit-0-50-INPUT
> -A FORWARD -j RH-Lokkit-0-50-INPUT
> -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 25 --syn -j ACCEPT
> -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 80 --syn -j ACCEPT
> -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 21 --syn -j ACCEPT
> -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 22 --syn -j ACCEPT
> -A RH-Lokkit-0-50-INPUT -i lo -j ACCEPT
> -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 0:1023 --syn -j REJECT
> -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 2049 --syn -j REJECT
> -A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 0:1023 -j REJECT
> -A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 2049 -j REJECT
> -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 6000:6009 --syn -j REJECT
> -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 7100 --syn -j REJECT
> COMMIT
>
> This was built by a utility called lokkit, but there's very little help
> that comes with that. My guess would be to just add lines like:
>
> -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 110 --syn -j ACCEPT
> -A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 110 --syn -j ACCEPT
>
> but I'm not sure, and I don't want to muck up my firewall. Also, a comment
> in this file says not to edit it directly. Any help would be appreciated!
>
> TIA,
> - Bill Thoen
>
>
> _______________________________________________
> Web Page: http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> Join us on IRC: lug.boulder.co.us port=6667 channel=#colug
>
--
| John Hernandez - NOAA Boulder NOC - 303-497-6392
| Mailstop R/OM62. 325 Broadway, Boulder, CO 80305
| PGP Public Key ID: 586A7E23
More information about the LUG
mailing list