<![CDATA[Blocking a specified IP - why smtp goes through?]]>Hey!

I added a simple firewall rule: block on WAN everything from that source ip.
Tried it with my mobile phone, so i add the IP of my mobile phone to the rule and voila i couldn't reach my web servers behind the firewall.
but funny fact, i CAN reach the mailserver via IMAP/SMTP.
I moved the rule to the top but nothing changed.

Public IP from webserver and public IP from the Mailserver are different, both are set up as IF Alias.

Any Ideas?

Thanks in advanced

]]>https://forum.netgate.com/topic/80677/blocking-a-specified-ip-why-smtp-goes-throughRSS for NodeTue, 09 Jun 2026 08:58:40 GMTWed, 04 Mar 2015 07:40:23 GMT60<![CDATA[Reply to Blocking a specified IP - why smtp goes through? on Wed, 04 Mar 2015 16:53:54 GMT]]>There is no difference between a specific rule blocking and a general rule blocking except, perhaps, quieting the log.

I, personally, let my firewall do it's job and don't play whack-a-mole.

]]>https://forum.netgate.com/post/524950https://forum.netgate.com/post/524950Wed, 04 Mar 2015 16:53:54 GMT<![CDATA[Reply to Blocking a specified IP - why smtp goes through? on Wed, 04 Mar 2015 12:54:12 GMT]]>Sure, i have a lot of rules.
I just saw in log files that someone tries to probe few servers. So i blocked his IP.
All other services working like a charm.

]]>https://forum.netgate.com/post/524876https://forum.netgate.com/post/524876Wed, 04 Mar 2015 12:54:12 GMT<![CDATA[Reply to Blocking a specified IP - why smtp goes through? on Wed, 04 Mar 2015 12:38:32 GMT]]>what are you trying to do with that block rule on your wan?  You do understand that ALL inbound traffic is blocked on your wan, unless you have a port forward or firewall rule that allows it.  So what exactly did you think a rule that says hey block these source IPs is going to do other than the default rule that says hey block EVERTHING anyway??

Do you have rules that would allow traffic to 25 that your not showing?

]]>https://forum.netgate.com/post/524869https://forum.netgate.com/post/524869Wed, 04 Mar 2015 12:38:32 GMT<![CDATA[Reply to Blocking a specified IP - why smtp goes through? on Wed, 04 Mar 2015 09:28:00 GMT]]>Thanks for your reply.
Well IMAP was blocked but SMTP still pass.
So i investigated logs and found out that my gsm provider route the smtp traffic somehow over a different IP, which is of course not blocked.

So everything is fine Thanks!  8)

]]>https://forum.netgate.com/post/524835https://forum.netgate.com/post/524835Wed, 04 Mar 2015 09:28:00 GMT<![CDATA[Reply to Blocking a specified IP - why smtp goes through? on Wed, 04 Mar 2015 09:11:20 GMT]]>Probably existing states after firewall changes.  Clear states if you want immediate satisfaction.

]]>https://forum.netgate.com/post/524830https://forum.netgate.com/post/524830Wed, 04 Mar 2015 09:11:20 GMT<![CDATA[Reply to Blocking a specified IP - why smtp goes through? on Wed, 04 Mar 2015 09:07:11 GMT]]>Here

![Screen Shot 2015-03-04 at 10.02.08.png](/public/imported_attachments/1/Screen Shot 2015-03-04 at 10.02.08.png)
![Screen Shot 2015-03-04 at 10.02.08.png_thumb](/public/imported_attachments/1/Screen Shot 2015-03-04 at 10.02.08.png_thumb)
![Screen Shot 2015-03-04 at 10.02.28.png](/public/imported_attachments/1/Screen Shot 2015-03-04 at 10.02.28.png)
![Screen Shot 2015-03-04 at 10.02.28.png_thumb](/public/imported_attachments/1/Screen Shot 2015-03-04 at 10.02.28.png_thumb)

]]>https://forum.netgate.com/post/524828https://forum.netgate.com/post/524828Wed, 04 Mar 2015 09:07:11 GMT<![CDATA[Reply to Blocking a specified IP - why smtp goes through? on Wed, 04 Mar 2015 07:59:37 GMT]]>Post your rules.  You're screwing something up somewhere.

]]>https://forum.netgate.com/post/524812https://forum.netgate.com/post/524812Wed, 04 Mar 2015 07:59:37 GMT