APF Gurus... I need your help...

I need to add some custom rules to the APF firewall software we run on one of the servers we manage for a customer but I am a little confused as we use a different firewall then APF and it works slightly different.

In our custom firewall if we want to block ALL connections to port 25 becasue of a spam issue we just uncomment these two lines in our firewall...

Code: 
$IPTABLES -A INPUT -p tcp -j DROP --dport 25 -m state --state NEW
$IPTABLES -A OUTPUT -p tcp -j DROP --dport 25 -m state --state NEW
But when looking in the APF configs and rules files I can not find anywhere that these lines should go in.

As well we have another custom rule for the server that looks like this:

Code: 
$IPTABLES -A OUTPUT -p tcp -j ACCEPT --dport 25 -d 123.123.123.123 -m state --state NEW
$IPTABLES -A INPUT -p tcp -j LOG -m limit --limit 5/m --limit-burst 7 --dport 25 --log-prefix "iptables inbound smtp:"
$IPTABLES -A INPUT -p tcp -j DROP --dport 25
The APF firewall needs to have this in there so mail on port 25 is forced over to his other server. This pervents spam and local spam exploits from working.

Any help on where these rules go in a APF firewall would be greatly appreciated.

Thanks,

Clint

 

 

 

 

Top