tickets #156502: mx1 attempts connections to {discourse01,obsreview}.i.o.o on port 25 over IPv4 - openSUSE admin - openSUSE Project Management Tool

tickets #156502

The following is repeatedly observed: 

 ``` 
 Mar 03 17:20:20 asgard1 kernel: [asgard] Forward Dropped: IN=os-mail OUT=nat64 MACSRC=52:54:00:02:76:42 MACDST=d2:e1:4b:98:46:1f MACPROTO=0800 SRC=172.16.131.11 DST=172.16.164.160 LEN=60 TOS=0x00 PREC=0x00 TTL=63 ID=10313 DF PROTO=TCP SPT=39428 DPT=25 SEQ=3606642437 ACK=0 WINDOW=64240 RES=0x00 SYN URGP=0 OPT 

 Mar 03 17:22:19 asgard1 kernel: [asgard] Forward Dropped: IN=os-mail OUT=nat64 MACSRC=52:54:00:02:76:42 MACDST=d2:e1:4b:98:46:1f MACPROTO=0800 SRC=172.16.131.11 DST=172.16.164.163 LEN=60 TOS=0x00 PREC=0x00 TTL=63 ID=33073 DF PROTO=TCP SPT=51932 DPT=25 SEQ=2072061109 ACK=0 WINDOW=64240 RES=0x00 CWR ECE SYN URGP=0 OPT 
 ``` 

 172.16.131.11 -> mx1.i.o.o (native) 
 172.16.164.160 -> discourse01.i.o.o (NAT64) 
 172.16.164.163 -> obsreview.i.o.o (NAT64) 
 TCP/25 25 -> SMTP (probably) 

 1. SMTP connectivity from mx* to discourse01 is expected, we permitted it in the past - however, it may not happen over IPv4. It needs to use IPv6 connectivity. 

 2. SMTP connectivity from mx* to obsreview is not expected, it should preferably be stopped on the source instead of having it run into firewall denials.

Back

Project

General

Profile

openSUSE admin

tickets #156502