i have a zimbra server in my dmz exposed to the public internet via a real address. right now i have the whole port range exposed to the box and it works fine.
but i want to limit this to the ports i really need for zimbra.
when i do this the messages get stock in the queue and i get a timeout connection error in the /var/log/zimbra.log
these are the ports which i left open:
SSH TCP/22 UDP/22
DNS TCP/53 UDP/53
am i missing one?