Linux: Iptables # 17 Allow secure POP3S incoming request?

Posted on in Categories News last updated July 25, 2005

Secure POP3S uses the tcp port 995 by default. Following iptable rules will allow server POP3S incoming client request (open port 995) for server ip address 202.54.1.20:
iptables -A INPUT -p tcp -s 0/0 –sport 1024:65535 -d 202.54.1.20 –dport 995 -m state –state NEW,ESTABLISHED -j ACCEPT

iptables -A OUTPUT -p tcp -s 202.54.1.20 –sport 995 -d 0/0 –dport 1024:65535 -m state –state ESTABLISHED -j ACCEPT

Following rules allows POP3S outgoing client request from firewall host 202.54.1.21 (open port 995):
iptables -A OUTPUT -p tcp -s 202.54.1.21 –sport 1024:65535 -d 0/0 –dport 995 -m state –state NEW,ESTABLISHED -j ACCEPT

iptables -A INPUT -p tcp -s 0/0 –sport 995 -d 202.54.1.21 –dport 1024:65535 -m state –state ESTABLISHED -j ACCEPT

Posted by: Vivek Gite

The author is the creator of nixCraft and a seasoned sysadmin and a trainer for the Linux operating system/Unix shell scripting. He has worked with global clients and in various industries, including IT, education, defense and space research, and the nonprofit sector. Follow him on Twitter, Facebook, Google+.

Leave a Comment