Bug #2071

Dovecot is not accessibile from red interface when server is in gateway mode

Added by Giacomo Sanchietti about 8 years ago. Updated about 8 years ago.

Status:CLOSEDStart date:
Priority:NormalDue date:
Assignee:-% Done:

100%

Category:nethserver-mail-server
Target version:v6.4-beta2
Security class: Resolution:
Affected version:v6.4-beta1 NEEDINFO:No

Description

Dovecot is not accessible from the external interface, when the server has at least one red interface and acts as gateway: clients can connect to the server only if in local network.

Expected behavior: Dovecot must accept connections from internet.

Workaround:

config setprop dovecot access public
signal-event firewall-adjust

before_iptables_restart - output of iptables -nL before iptables restart (8.94 KB) Stefano Fancello, 07/24/2013 03:45 PM

after_iptables_restart - output of iptables -nL after iptables restart (1.48 KB) Stefano Fancello, 07/24/2013 03:45 PM

Associated revisions

Revision cdc27d96
Added by Giacomo Sanchietti about 8 years ago

db defaults: add access property for dovecot and postifx services. Refs #2069 #2071

History

#1 Updated by Giacomo Sanchietti about 8 years ago

  • Status changed from NEW to TRIAGED
  • % Done changed from 0 to 20

#2 Updated by Giacomo Sanchietti about 8 years ago

  • Status changed from TRIAGED to ON_DEV
  • Assignee set to Giacomo Sanchietti
  • % Done changed from 20 to 30

#3 Updated by Giacomo Sanchietti about 8 years ago

  • Status changed from ON_DEV to MODIFIED
  • % Done changed from 30 to 70

Added access property for service dovecot. Default value is public.

#4 Updated by Giacomo Sanchietti about 8 years ago

  • Status changed from MODIFIED to ON_QA
  • Assignee deleted (Giacomo Sanchietti)
  • % Done changed from 70 to 80
New package available in nethserver-testing:
  • nethserver-mail-server-1.4.4-1
On a fresh NethServer beta1 with two interfaces:
  • install nethserver-mail-server-1.4.4-1 package
  • check imap port is accessible from green interface
  • install nethserver-firewall-base
  • configure a red interface in static or dhcp mode
  • check imap port is open on red interface

#5 Updated by Stefano Fancello about 8 years ago

  • Assignee set to Stefano Fancello

#6 Updated by Stefano Fancello about 8 years ago

Bug is still present.
After configuration of red interface imap and imaps ports were closed. I've restarted iptables and now ports are open.
Attached there are two files, results of iptables -nL command before and after iptables restart

#7 Updated by Stefano Fancello about 8 years ago

Fixed installing testing packages nethserver-nethgui-1.2.1-1 and nethserver-firewall-base-1.0.3-1. Bug were consequence of #2041

#8 Updated by Stefano Fancello about 8 years ago

  • Status changed from ON_DEV to MODIFIED
  • % Done changed from 30 to 70

#9 Updated by Stefano Fancello about 8 years ago

  • Status changed from MODIFIED to VERIFIED
  • % Done changed from 70 to 100

#10 Updated by Davide Principi about 8 years ago

  • Status changed from VERIFIED to CLOSED
  • % Done changed from 90 to 100

Moved to nethserver-updates repository

Also available in: Atom PDF