Jie Wang wrote: > Hello, everyone, > > I have a box running 2.2.3 and encounter the following problem. > > The box is behind a firewall (ISA), and is under attack frequently ( a > lots of SMTP connections). When there are a lot of SMTP connection > requests arriving at the box, Postfix does not reject them, instead it > put these requests on hold. But to the firewall, it seems these > connections are being set up, therefore they occupy some resources, when > there are too many of these requests, the firewall freezes. > > I am looking for ways to get Postfix reject SMTP connections > explicitly when Maxproc is reached, and send a server busy message along > with the rejection message. How can I do this? > > Thanks a lot. > > Jie Wang
That's the kernel's job, postfix can't do it. Either configure your external firewall to limit the maximum number of connections, or use iptables (linux) or pf (*BSD) on the postfix box to limit the maximum number of connections allowed. -- Noel Jones
