THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
...
allow udp remote 6277 to local gt 1023
IPTables Setup:
Assuming you allow all outbound packets out of your machine, you only need to add an INPUT rule to your /etc/sysconfig/iptables file. Add the following line in your INPUT chain, above any REJECT rules:
-A <chain-name> -p udp -m udp --sport 6277 -j ACCEPT
Also, if you're running a large site, processing upwards of tens of thousands of messages a day, the DCC maintainers have requested that you consider setting up your own DCC server as described in dccd(8), and arrange to peer with the rest of the public servers.
...
The Razor2 system requires outbound access to servers on tcp port 2703 in general (the servers are, at the moment, on the class C 66.151.150.0/24, but allowing only access to those machines would be too restrictive).
It also requires outbound access to those servers on tcp port 7.
It does not require that the razor servers connect to any open ports on your machine. All the connections are typical TCP client connections (ie: from a local port >1023) to port 7 or port 2703 on the razor server.
It does not use UDP or ICMP, with the exception of performing DNS lookups for server discovery.
If you are still using razor1, upgrade, as Spamassassin does not support this now. Razor1 made outbound connections to servers on tcp port 2702.
Pyzor
I believe pyzor Pyzor uses both udp and tcp port 24441. Anyone know?It looks as though the client communicates with the server via udp but the server answers back with a tcp connection.