Ondrej Holecek:
> hello,
>
> is there a possibility to limit connection count for whole subnet?
>
> when I have:
> smtpd_client_connection_count_limit = 2
>
> it limits each IP to max 2 connections, but when attacker has /24
> subnet, he can easily create 508
> connections
If the attacker has a botnet, then every connection comes from a
different subnet.
> how do you anticipate this kind of attacks?
Use a traffic shaping tool. Postfix is a mail server, it does
not have to solve every problem.
Wietse
