Add Mail Client Rules.

ipt-firewall-server

@@ -1009,10 +1009,10 @@ echo_done
 
 
 # ---
-# - Mail (SMTP Server)
+# - Mail SMTP Server (Port 25) including Spam Control
 # ---
 
-echononl "\t\tMail (SMTP Server including Spam Control)"
+echononl "\t\tMail SMTP Server (Port 25) including Spam Control"
 
 if [[ ${#smtpd_ips_arr[@]} -gt 0 ]] || [[ ${#forward_smtpd_ip_arr[@]} -gt 0 ]] ; then
    if [[ ${#smtpd_ips_arr[@]} > 0 ]] ; then
@@ -1065,10 +1065,10 @@ fi
 
 
 # ---
-# - Mail (POP/IMAP Server)
+# - Mailservice (Submission/SMTPS/POP/IMAP Server)
 # ---
 
-echononl "\t\tMail (POP/IMAP Server)"
+echononl "\t\tMailservice (Submission/SMTPS/POP/IMAP Server)"
 
 if [[ ${#mail_server_ips_arr[@]} -gt 0 ]] || [[ ${#forward_mail_server_ip_arr[@]} -gt 0 ]] ; then
 
@@ -1094,6 +1094,36 @@ else
 fi
 
 
+# ---
+# - Mail Client (Submission/SMTPS/POPS/IMAPS) out only
+# ---
+
+echononl "\t\tMail Client (Submission/SMTPS/POPS/IMAPS) out only"
+
+if [[ ${#mail_client_ips_arr[@]} -gt 0 ]] || [[ ${#forward_mail_client_ip_arr[@]} -gt 0 ]] ; then
+
+   if [[ ${#mail_client_ips_arr[@]} -gt 0 ]] ; then
+      for _ip in ${mail_client_ips_arr[@]} ; do
+         # mail ports 
+         #
+         $ipt -A OUTPUT -p tcp -s $_ip -m multiport --dports $mail_user_ports -m state --state NEW -j ACCEPT
+      done
+   fi # if [[ ${#mail_client_ips_arr[@]} -gt 0 ]]
+
+   if [[ ${#forward_mail_client_ip_arr[@]} -gt 0 ]] && $kernel_activate_forwarding ; then
+      for _ip in ${forward_mail_client_ip_arr[@]} ; do
+         # mail ports 
+         #
+         $ipt -A FORWARD -p tcp -s $_ip -m multiport --dports $mail_user_ports -m state --state NEW -j ACCEPT
+      done
+   fi # if [[ ${#forward_mail_client_ip_arr[@]} -gt 0 ]] ; then
+
+   echo_done
+else
+   echo_skipped
+fi
+
+
 # ---
 # - HTTP(S) OUT
 # ---