On 22 Aug 2013, at 21:28 , Stan Hoeppner <s...@hardwarefreak.com> wrote:
> ~$ wget http://ipdeny.com/ipblocks/data/countries/us.zone > ~$ sed 's/$/ OK/g' us.zone > us.cidr > ~$ cp us.cidr /etc/postfix > ~$ postfix reload > > and you're off to the races. Interesting idea. I'm in much the same boat. Although I do have international users, they all use webmail to access mail, so I'm interested in trying this. A couple of questions: 1) I wouldn't think that CIDR list changes very often, but how often should it be refreshed? 2) If I did this I also would like to log these rejections to a separate file, possible? Under 2.10, would it make sense to put those restriction in the smtpd_relay_restrictions if port 25 is open for connections? -- "Rosa sat, so Martin could walk. Martin walked, so Obama could run. Obama ran, so our children can fly." (paraphrased from NPR)
