stopping an address from connecting to us

Thu, 24 Jul 2008 05:19:24 -0700

My server's been getting slammed all night with requests from adsl-99-162-37-137.dsl.ipltin.sbcglobal.net[99.162.37.137] and I've been trying to figure out to stop it.
I've put the IP address in mx_access with REJECT and ran /usr/local/etc/rc.d/postfix reload and it's still getting slammed. Does anyone have any idea's? I've got a botnet that's been going crazy on the server also, we're not running any open proxy's and it's locked down nice and tight. 


Here's the output of my postconf -n

alias_database = hash:/usr/local/etc/postfix/aliases

alias_maps = hash:/usr/local/etc/postfix/aliases, 
hash:/usr/local/mailman/data/aliases

command_directory = /usr/local/sbin
config_directory = /usr/local/etc/postfix
daemon_directory = /usr/local/libexec/postfix
debug_peer_level = 2
disable_vrfy_command = yes
html_directory = no
in_flow_delay = 3s
inet_interfaces = all
local_destination_concurrency_limit = 1
mail_owner = postfix
mailbox_command = /usr/local/bin/procmail -Y -a $DOMAIN
mailq_path = /usr/local/bin/mailq
manpage_directory = /usr/local/man
message_size_limit = 22528000
mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain,
mydomain = dontowrryaboutit.org
myhostname = flatlined.dontowrryaboutit.org
mynetworks = 127.0.0.0/8, 10.2.1.0/24
mynetworks_style = host
myorigin = $mydomain
newaliases_path = /usr/local/bin/newaliases
owner_request_special = no
queue_directory = /var/spool/postfix
readme_directory = no
recipient_delimiter = +
sample_directory = /usr/local/etc/postfix
sendmail_path = /usr/local/sbin/sendmail
setgid_group = maildrop
smtpd_banner = $myhostname ESMTP $mail_name

smtpd_client_restrictions = permit_mynetworks, check_client_access 
hash:/usr/local/etc/postfix/junk, reject_rbl_client zen.spamhaus.org, 
reject_rbl_client virbl.dnsbl.bit.nl, reject_multi_recipient_bounce, 
reject_unauth_pipelining, reject_unknown_reverse_client_hostname 
check_client_access regexp:/usr/local/etc/postfix/spam_ip_regex

smtpd_data_restrictions = reject_unauth_pipelining, permit
smtpd_helo_required = yes

smtpd_helo_restrictions = permit_mynetworks, reject_unauth_pipelining, 
permit
smtpd_sender_restrictions = check_sender_mx_access 
cidr:/usr/local/etc/postfix/mx_access

strict_rfc821_envelopes = yes
transport_maps = hash:/usr/local/etc/postfix/transport
unknown_local_recipient_reject_code = 550
virtual_alias_maps = hash:/usr/local/etc/postfix/virtual
virtual_mailbox_base = /var/mail
virtual_mailbox_domains = /usr/local/etc/postfix/virtual_domains
























					Reply via email to