Subj : pfsense port forwarding...
To : Alan Ianson
From : Martin Kazmaier
Date : Thu Dec 26 2024 02:07 am
AI>> I can't see any specific differences in my port forwarding rules. Some
AI> work,
AI>> some don't. Forwarding to port 940 (for my smtp port, relayed from
AI> another
AI>> server), 110 for pop3 and port 119 (nntp) don't forward. If I try to
AI> telnet
AI>> to the local IPs and ports, it works, but not using the domain. I'm
AI> behind a
AI>> VPN, so it's not hairpinning. All of the rest of my port forwarding
AI> rules
AI>> work fine (I've got about 20 of them), except for these 3 and maybe one
AI> or 2
AI>> others. I can't see anything consistently wrong with them or the rules.
AI>> Does anyone have any ideas?
AI> I don't use pfsense so I don't know if this applies to your situation..
AI> On linux ports <=1024 can only be opened by root. I use port 80 and 21 for
AI> my BBS so I use setcap to give my application (bbbsd in this case) the
AI> capability to open and use these ports, like so..
AI> sudo /sbin/setcap 'cap_net_bind_service=+ep' bbbsd
AI> The above command will need to be run whenever your application is updated
AI> or reinstalled.
AI> The Synchronet wiki talks about this and the authbind method to acheive
AI> this.
AI>
http://wiki.synchro.net/howto:linux_non-root
Ack, partially user error. I never set up a software firewall rule for my
email server... Now that that's done, port 940 and port 110 are open on my
domain. Port 119 was just weird. I removed and re-added the rule and then
it suddenly started working. Everything is groovy now. Thanks for all of
the suggestions!
--
Shurato, Sysop Shurato's Heavenly Sphere (ssh, telnet, pop3, ftp,nntp,
,wss) (Ports 22,23,110,21,119,999) (ssh login 'bbs' password 'shsbbs')
*** THE READER V4.50 [freeware]
---
* Origin: Shurato's Heavenly Sphere telnet://shsbbs.net (1:340/1101)
