Since most Service providers block Port 25, is there any real reason to open Port 25 anymore on your firewall or router for Synchronet.

SMTP 25 - Necessary for receiving Internet e-mail and inter-BBS instant messages

The reason I am asking, is that I'm trying to open a few ports on my router to add another service, and I need to know if this, or any other port listed on the "ports to open chart" are obsolete or not used anymore. I'm also trying to get instant messages to work, but don't want to open ports no longer supported by synchronet. Thanks In Advance as always.

Telnet 23 - For Telnet logins (highly recommended)
SSH 22 - For SecureShell logins (recommended)
RLogin 513 - Optional for quick-login from RLogin clients (e.g. SyncTERM)
SMTP 25 - Necessary for receiving Internet e-mail and inter-BBS instant messages
POP3 110 - Allows BBS users to check their e-mail using standard Internet mail clients (e.g. Outlook Express)
FTP21 - Allows access to the BBS file/download areas using a standard FTP client or web browser
HTTP 80 - Required for access to the BBS's web server
NNTP119 - Allows BBS users to read and post messages using standard news readers/clients
Gopher 70 - Archaic protocol allows reading of messages and other BBS info IRC6667 - Allows Internet Relay Chat (IRC) clients to connect to your BBS Finger 79 79 Allows remote querying of BBS user info, who's online, and other BBS info
SYSTAT 11 11 Allows remote querying of who's online (aka Active Users)
QOTD 17 17 Allows remote querying of the current auto-message (aka Quote Of The Day)
MSP 18 18 Allows incoming inter-BBS instant messages without SMTP connectivity

SysOp: C.G. Learn, AKA: DesotoFireflite
Valhalla Home Services! - (Synchronet) - bbs.valhallabbs.com
Valhalla II! - (GAP) - bbs.valhallabbs.com:24
A Gamers Paradise - Over 150 Registered Online Game Doors!

--- Don't eat the yellow snow!
þ Synchronet þ Valhalla Home Services þ USA þ http://valhalla.synchro.net

Re: Port 25 Question
By: DesotoFireflite to All on Wed Dec 14 2016 10:59:28

Since most Service providers block Port 25, is there any real reason to open Port 25 anymore on your firewall or router for Synchronet.

The only reasons to open that port would be:

a) You're running a service that's listening on port 25
b) You want people to be able to connect to that service
c) Your ISP doesn't make it impossible for people to connect on that port

If any of the above are false, then there's no reason to open the port.

port listed on the "ports to open chart" are obsolete or not used anymore. I'm also trying to get instant messages to work, but don't want to open ports no longer supported by synchronet. Thanks In Advance as always.

AFAIK all of the services listed in that table are still supported / still work. However you don't *have* to run all of them if you don't want to, and some may not be enabled by default. Most are configured in ctrl/services.ini; if you don't want to run one of these services, you can just comment it out there and then close the port in your firewall.

Additionally those are default ports. If your ISP is blocking some of them, you can configure those services to listen on different ports, and then open ports in your firewall accordingly. (However in the case of SMTP using an arbitrary port isn't usually useful; most other mail servers will only try to connect to yours on a short list of pre-defined ports.) The annoying part of this is having to advertise alternate ports to users.

---
echicken
electronic chicken bbs - bbs.electronicchicken.com - 416-273-7230
þ Synchronet þ electronic chicken bbs - bbs.electronicchicken.com

Re: Port 25 Question
By: echicken to DesotoFireflite on Wed Dec 14 2016 11:45 am

a) You're running a service that's listening on port 25
b) You want people to be able to connect to that service
c) Your ISP doesn't make it impossible for people to connect on that port

If any of the above are false, then there's no reason to open the port.

Ok, I guess I'll still leave it open then for instant messaging. As far as the other ports go, I understand that clearly, I was just wondering if any went opsolete. I was trying to free up a few ports for your ecweb4, ports 1123 and 1513, that was my only reason for asking, but I have consolidated a few ports, and made the room I needed, so all is good now. Thanks for the reply ec. Doing some much needed overhauls to the system that I've put on the back burner way to long... lol

SysOp: C.G. Learn, AKA: DesotoFireflite
Valhalla Home Services! - (Synchronet) - bbs.valhallabbs.com
Valhalla II! - (GAP) - bbs.valhallabbs.com:24
A Gamers Paradise - Over 150 Registered Online Game Doors!

--- Don't You Know, Can't You See, Don't You Understand!
þ Synchronet þ Valhalla Home Services þ USA þ http://valhalla.synchro.net

Re: Port 25 Question
By: DesotoFireflite to echicken on Wed Dec 14 2016 12:08:16

went opsolete. I was trying to free up a few ports for your ecweb4, ports 1123 and 1513, that was my only reason for asking, but I have consolidated

Sounds like you may need a better router. I'm guessing you have a limited number of 'slots' you can use when configuring port forwarding?

Ok, I guess I'll still leave it open then for instant messaging. As far as

Is your ISP blocking port 25? Wasn't sure if you meant that in a general sense or if this was true in your case.

Re: obsolescence, a few of those services probably qualify as obsolete (by popular opinion anyway). They still work, though - just depends if you want to be bothered with hosting them. (After all, we're all hosting some arguably obsolete services one way or the other, for our own amusement.)

---
echicken
electronic chicken bbs - bbs.electronicchicken.com - 416-273-7230
þ Synchronet þ electronic chicken bbs - bb

DesotoFireflite wrote to All <=-

@MSGID: <585170C2.2218.fido-synchron@freeway.apana.org.au>
@TZ: 412c
Since most Service providers block Port 25, is there any real reason to open Port 25 anymore on your firewall or router for Synchronet.

It depends on your provider. Both my ISP and the IPv4 tunnel provider I use allow traffic on port 25. In fact, my ISP lets me turn the filter for port 25 (and several other ports commonly abused on user machines) on or off.

Telnet 23 - For Telnet logins (highly recommended)

Needed, either 23 or whatever port you're actually using. :)

SSH 22 - For SecureShell logins (recommended)

Very highly recommended.

RLogin 513 - Optional for quick-login from RLogin clients (e.g.

Recommended, unless you're not offering rlogin.

SyncTERM) SMTP 25 - Necessary for receiving Internet e-mail and
inter-BBS instant messages

Necessary if hosting email, but pointless if ISP blocks port 25 (in which case, you will need to use a workaround to send/receive email).

POP3 110 - Allows BBS users to check their e-mail using standard
Internet mail clients (e.g. Outlook Express)

Recommended, some users may choose to access their email this way.

FTP21 - Allows access to the BBS file/download areas using a standard
FTP client or web browser

Highly recommended

HTTP 80 - Required for access to the BBS's web server

Highly recommended.

NNTP119 - Allows BBS users to read and post messages using standard
news readers/clients

Highly recommended.

Gopher 70 - Archaic protocol allows reading of messages and other BBS

Could get away without this one, unless you know you have users using Gopher (not likely).

info IRC6667 - Allows Internet Relay Chat (IRC) clients to connect to

Depends on your user base and server interconnects. I would forward this port, unless you have reason not to.

your BBS Finger 79 79 Allows remote querying of BBS user info, who's online, and other BBS info

Not really necessary. Finger has fallen into disuse in the UNIX world due to security concerns. Also, less interesting there, given many systems have very few users these days (as opposed to years ago, when Linux was rare/nonexistent, and UNIX systems had lots of shell users).

SYSTAT 11 11 Allows remote querying of who's online (aka Active Users)

Useful, but again, rarely used these days.

QOTD 17 17 Allows remote querying of the current auto-message (aka
Quote Of The Day)

Same again. :)

MSP 18 18 Allows incoming inter-BBS instant messages without SMTP connectivity

I'd forward this one. :)
... Spam will keep in it's can until the end of time.
--- MultiMail/Win32 v0

echicken wrote to DesotoFireflite <=-

The only reasons to open that port would be:

a) You're running a service that's listening on port 25
b) You want people to be able to connect to that service

Or machines - much SMTP activity is automated, the only exception being local users sending email using a client like Thunderbird, Outlook, etc.


... My modem isn't slow- it's "baudily challenged!"
--- MultiMail/Win32 v0.49
* Origin: Freeway BBS - freeway.apana.org.au (3:633

echicken wrote to DesotoFireflite <=-

Re: obsolescence, a few of those services probably qualify as obsolete
(by popular opinion anyway). They still work, though - just depends if you want to be bothered with hosting them. (After all, we're all
hosting some arguably obsolete services one way or the other, for our
own amusement.)

I look at probability of use. Telnet is technically considered obsolete these days, same for rlogin, as SSH is the recommended method of remote terminal sessions these days. But in the BBS world, all 3 protocols are well used.

OTOH, the odds of someone using Gopher or finger these days is very low.


... :wq!
--- MultiMail/Win32 v0.49
* Origin: Freeway BBS - freeway.apana.org.au

14 Dec 16 12:08, you wrote to echicken:

a) You're running a service that's listening on port 25
b) You want people to be able to connect to that service
c) Your ISP doesn't make it impossible for people to connect on that
port

If any of the above are false, then there's no reason to open the
port.

Ok, I guess I'll still leave it open then for instant messaging.

do you actually get instant messages from other BBSes? if not, then it is not needed... port 18 is also available for such IF you want to allow for this activity...

remember, the fewer ports you have open the smaller your attach surface is... all IPs on the net are probed for vulnerabilities all the time... keeping your attack surface as small as possible is better for security than having a whole bunch of ports open and presenting a large attack surface that may be breached by using multiple ports for the attacks...

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... Canadians: say "you guys" not "y'all" even if they're women.
---
* Origin: (1:3634/12.73)
þ Synchronet þ Vertrauen þ Home of Synchronet þ telnet://vert.synchro.net

Re: Re: Port 25 Question
By: Tony Langdon to echicken on Thu Dec 15 2016 08:31:00

b) You want people to be able to connect to that service

Or machines - much SMTP activity is automated, the only exception being local users sending email using a client like Thunderbird, Outlook, etc.

Yes, that's "people" in a very general sense, extending to systems those people have put in place.

---
echicken
electronic chicken bbs - bbs.electronicchicken.com - 416-273-7230
þ Synchro

15 Dec 16 08:34, you wrote to echicken:

Re: obsolescence, a few of those services probably qualify as
obsolete (by popular opinion anyway). They still work, though - just
depends if you want to be bothered with hosting them. (After all,
we're all hosting some arguably obsolete services one way or the
other, for our own amusement.)

I look at probability of use. Telnet is technically considered
obsolete these days,

people keep saying that but one only need look around to see that it is not true... especially considering that i've just watched my system swat down the 500th telnet connect today attempting MIRAI or variant infestation... yes, that
counts the feeler probes that don't do anything but to report the address back to the bot herder for a future infestation takeover attempt...

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... The ghost in my machine is responsible for the typos.
---
* Origin: (1:3634/12.73)
þ Synchronet þ Vertrauen þ Home of Synchronet þ telnet://vert.synchro.net

echicken wrote to Tony Langdon <=-

Yes, that's "people" in a very general sense, extending to systems
those people have put in place.

:-)


... Some people are just for looks.
--- MultiMail/Win32 v0.49
* Origin: Freeway BBS - f

mark lewis wrote to Tony Langdon <=-

people keep saying that but one only need look around to see that it is not true... especially considering that i've just watched my system
swat down the 500th telnet connect today attempting MIRAI or variant infestation... yes, that counts the feeler probes that don't do
anything but to report the address back to the bot herder for a future infestation takeover attempt...

Good point. :)


... File not found, I'll load something *I* think is interesting.
--- MultiMail/Win32 v0.49
þ Synchronet þ Freeway BBS in Bendigo, Australia.

Re: Port 25 Question
By: echicken to DesotoFireflite on Wed Dec 14 2016 01:56 pm

Sounds like you may need a better router. I'm guessing you have a limited number of 'slots' you can use when configuring port forwarding?

Yeah, I only have 20 avail ports I can forward, and running 2 bbs's, I'm at my limit. Moving both to one machine helped, and consolidating took care of the rest. I could go DMZ, but I don't like doing that.

Re: obsolescence, a few of those services probably qualify as obsolete (by popular opinion anyway). They still work, though - just depends if you want to be bothered with hosting them. (After all, we're all hosting some arguably obsolete services one way or the other, for our own amusement.)

LOL, yes, agreed. I'm running most everything I can, but I always want more. If it's available, I want it... LOL I never have been able to get instant messageing working. I see most who are successful are using linux, by looking at the available systems list. I would like to fix it, but never can figure it out. I've got every port open on the list. Oh well, maybe one day. The IM for COA works well, but not the one built into to sync.

SysOp: C.G. Learn, AKA: DesotoFireflite
Valhalla Home Services! - (Synchronet) - bbs.valhallabbs.com
Valhalla II! - (GAP) - bbs.valhallabbs.com:24
A Gamers Paradise - Over 150 Registered Online Game Doors!

--- Don't eat the yellow snow!
þ Synchronet þ Valhalla Home Services þ USA þ http://valhalla.synchro.n

Re: Re: Port 25 Question
By: Tony Langdon to DesotoFireflite on Thu Dec 15 2016 08:29 am

Since most Service providers block Port 25, is there any real reason
to open Port 25 anymore on your firewall or router for Synchronet.

It depends on your provider. Both my ISP and the IPv4 tunnel provider I use allow traffic on port 25. In fact, my ISP lets me turn the filter for port 25 (and several other ports commonly abused on user machines) on or off.

Telnet 23 - For Telnet logins (highly recommended)

Needed, either 23 or whatever port you're actually using. :)

SSH 22 - For SecureShell logins (recommended)

Very highly recommended.

RLogin 513 - Optional for quick-login from RLogin clients (e.g.

Recommended, unless you're not offering rlogin.

SyncTERM) SMTP 25 - Necessary for receiving Internet e-mail and
inter-BBS instant messages

Necessary if hosting email, but pointless if ISP blocks port 25 (in which case, you will need to use a workaround to send/receive email).

POP3 110 - Allows BBS users to check their e-mail using standard
Internet mail clients (e.g. Outlook Express)

Recommended, some users may choose to access their email this way.

FTP21 - Allows access to the BBS file/download areas using a
standard FTP client or web browser

Highly recommended

HTTP 80 - Required for access to the BBS's web server

Highly recommended.

NNTP119 - Allows BBS users to read and post messages using standard
news readers/clients

Highly recommended.

Gopher 70 - Archaic protocol allows reading of messages and other
BBS

Could get away without this one, unless you know you have users using Gopher (not likely).

info IRC6667 - Allows Internet Relay Chat (IRC) clients to connect
to

Depends on your user base and server interconnects. I would forward this port, unless you have reason not to.

your BBS Finger 79 79 Allows remote querying of BBS user info, who's
online, and other BBS info

Not really necessary. Finger has fallen into disuse in the UNIX world due to security concerns. Also, less interesting there, given many systems have very few users these days (as opposed to years ago, when Linux was rare/nonexistent, and UNIX systems had lots of shell users).

SYSTAT 11 11 Allows remote querying of who's online (aka Active
Users)

Useful, but again, rarely used these days.

QOTD 17 17 Allows remote querying of the current auto-message (aka
Quote Of The Day)

Same again. :)

MSP 18 18 Allows incoming inter-BBS instant messages without SMTP
connectivity

I'd forward this one. :)
... Spam will keep in it's can until the end of time.

Thanks, I've got them all forwarded. just doing some cleaning up of the systems, and wanted everything to be right, thats why I asked. Thanks

SysOp: C.G. Learn, AKA: DesotoFireflite
Valhalla Home Services! - (Synchronet) - bbs.valhallabbs.com
Valhalla II! - (GAP) - bbs.valhallabbs.com:24
A Gamers Paradise - Over 150 Registered Online Game Doors!

--- Don't eat the yellow sno

Re: Port 25 Question
By: mark lewis to DesotoFireflite on Wed Dec 14 2016 05:25 pm

do you actually get instant messages from other BBSes? if not, then it is not needed... port 18 is also available for such IF you want to allow for this activity...

Not really, but since this option is available, I would like it to be working. Maybe one day it will catch on over here.

remember, the fewer ports you have open the smaller your attach surface is... all IPs on the net are probed for vulnerabilities all the time... keeping your attack surface as small as possible is better for security than having a whole bunch of ports open and presenting a large attack surface that may be breached by using multiple ports for the attacks...

Understood. Never looked at it that way. Thanks

SysOp: C.G. Learn, AKA: DesotoFireflite
Valhalla Home Services! - (Synchronet) - bbs.valhallabbs.com
Valhalla II! - (GAP) - bbs.valhallabbs.com:24
A Gamers Paradise - Over 150 Registered Online Game Doors!

--- SENILE.COM found...Out of Memory...
þ Synchronet þ Valhalla Home Services þ USA þ http://valhalla.synchro.net