Wietse Venema: > Maciej Uhlig: > > We run fail2ban to update postscreen blacklist which is cidr file. To > > make postscreen see the changes we have to reload postfix. Yesterday we > > found postfix was reloaded more than 3000 times. Sure it is not acceptable. > > Surely you don't have to reload it EVERY 30 SECONDS. What about > using a 5-minute time window.
Or using RBLDNSD, and adjusting postscreen_dnsbl_ttl suitably.
Wietse
