[jadmin] iptables and Jabber
Maxim Britov
maxim.britov at gmail.com
Mon Mar 12 02:05:45 CDT 2007
On Mon, 12 Mar 2007 04:47:14 +0100
Markus Meyer wrote:
> Hi folks,
>
> please don't kill me at first sight of the Subject ;)
> I can't get the setup for my firewall right so that it allows
> connections to and from jabber servers. Here some information.
>
> From jabberd's error.log:
> (amessage.de): bouncing a packet to butterbluemchen at amessage.de from markus at bemeyert.de/tkabber: Server Connect Timeout
... skipped...
> My firewall is setup like below and all are stateful rules and bound to
> the network card:
> OUTPUT:
> from to
> 1024:65535 5269
>
> INPUT:
> from to
> 5269 1024:65535
Hmmm... INPUT from 1024:65535 to 5269 ?
Some xmpp servers doesn't use 5269. amessage.de in your example uses:
$ dig _xmpp-server._tcp.amessage.de srv +short
5 1 5260 s2s.amessage.eu.
5 1 5261 s2s.amessage.eu.
5 1 5262 s2s.amessage.eu.
5 1 5263 s2s.amessage.eu.
5 1 5264 s2s.amessage.eu.
5 1 5265 s2s.amessage.eu.
5 1 5266 s2s.amessage.eu.
5 1 5267 s2s.amessage.eu.
5 1 5268 s2s.amessage.eu.
--
Maxim Britov
GnuPG KeyID 0x4580A6D66F3DB1FB xmpp:maxim at modum.by icq 198171258
Fingerprint: 4059 B5C5 8985 5A47 8F5A 8623 4580 A6D6 6F3D B1FB
GnuPG-ru Team (http://lists.gnupg.org/mailman/listinfo/gnupg-ru
xmpp:gnupg-ru at conference.jabber.ru)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 835 bytes
Desc: not available
Url : http://mail.jabber.org/pipermail/jadmin/attachments/20070312/4116bbc2/signature.pgp
More information about the JAdmin
mailing list