--On 21 June 2005 20:02 -0600, Steve Williams wrote:
What is the best way to add entries from greylisting.org to my
spamd-white table?
Personally I've been keeping them separate, e.g.
table <spamd> persist
table <spamd-white> persist
table <spamd-nogrey> persist file "/etc/spamd-nogrey"
rdr proto tcp from <spamd> to (self) port smtp -> 127.0.0.1 port
spamd rdr proto tcp from !<spamd-white> to (self) port smtp ->
127.0.0.1 port spamd
no rdr proto tcp from <spamd-nogrey> to (self) port smtp
This way, spamd-white is locally-generated data, and spamd-nogrey is
from greylisting.org and sources noted from examining spamdb output
every so often.
Note PF needs host-addresses, CIDR, or resolvable names, and not the
'missing octet' form used on greylisting.org (i.e. use 1.2.3.0/24 not
1.2.3).
Thank you VERY much for the information. That is too cool. This
poses another question... and I am sorry to bother you!
When the /etc/spamd-nogrey file is updated, is running:
pfctl -t spamd-nogrey -T replace -f /etc/spamd-nogrey
the best way to get the updated file loaded into the rules?
That's a good way - if you're watching the output, you might want to
add -v to the line, which will display what changes have been made; if
there are certain problems with the file format, this might alert you
to them.
The other option is to reload the PF rules i.e. 'pfctl -f /etc/pf.conf'
or just the tables 'pfctl -Tl -f /etc/pf.conf', which will also update
the table from the file.
THANK YOU THANK YOU THANK YOU for the pointer about the format of the
file on greylist.org. I would have NEVER found that one without many
bruises on my forehead and a huge bald spot on my head!
No problem (-:
