From bd1363349cce9241b3be0f6bdb5a178714b3fe02 Mon Sep 17 00:00:00 2001
From: Muhamad Awad <muhamad@incubaid.com>
Date: Fri, 30 Jun 2023 12:35:03 +0200
Subject: [PATCH] Also stop port 587, 465 (#1992)

---
 cmds/modules/networkd/nft.go | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/cmds/modules/networkd/nft.go b/cmds/modules/networkd/nft.go
index 06cda034a..db05f9b72 100644
--- a/cmds/modules/networkd/nft.go
+++ b/cmds/modules/networkd/nft.go
@@ -50,8 +50,7 @@ nft 'flush chain inet filter forward'
 nft 'flush chain inet filter prerouting'
 
 # drop smtp traffic for hidden nodes
-nft 'add rule inet filter prerouting iifname "b-*" tcp dport 25 reject with icmp type admin-prohibited'
-
+nft 'add rule inet filter prerouting iifname "b-*" tcp dport {25, 587, 465} reject with icmp type admin-prohibited'
 `)
 
 	if err := cmd.Run(); err != nil {