There is nothing wrong with those rules. If they were all the rules in your ruleset, then smtp packets would get in. But, as phoenix said, DNS would not, as dns uses UDP, and that rule only passes TCP.
So, either:
1. You do not have another rule passing DNS, or
2. You do have a 'block quick' before that rule blocking smtp, (your workaround of adding 'quick' to this rule seems to rule this out) or
3. You do have a block rule after that rule inadvertently blocking smtp.
__________________
The only dumb question is a question not asked.
The only dumb answer is an answer not given.
Last edited by robbak; 29th October 2008 at 03:26 AM.
|