Re: access

Wed, 11 Dec 2013 15:09:17 -0800 

If its a small number of ip addresses trying to connect you might also
want to just block them with iptables too:

iptables -I INPUT -s 209.85.216.175 -j DROP
iptables -I INPUT -s 209.85.216.176 -j DROP

That line for each ip, then restart iptables



On Wed, Dec 11, 2013 at 5:52 PM, don magnify <magnuscelzi...@gmail.com> wrote:
>
>
> hi all....
>
> i have a machine heavily hit with a bunch of from=<> messages...
>
> i read around and implemented the access solution as in:
>
> /etc/postfix/main.cf:
>            smtpd_client_restrictions =
>                check_client_access hash:/etc/postfix/access
>
>        /etc/postfix/access:
>            1.2.3   REJECT
>            1.2.3.4 OK
>
>
> my /etc/postfix/access looks like:
>
>
> .eigbox.net                     DISCARD
> .yourhostingaccount.com         DISCARD
>
> and did the postmap command
>
>
> how do i know it's working? i still get lots of these in my maillog:
>
>
> Dec 11 17:52:11 ip-10-114-59-124 postfix/smtpd[23960]: 0495F4352D:
> client=mail-yh0-f43.google.com[209.85.213.43]
> Dec 11 17:52:11 ip-10-114-59-124 postfix/smtpd[7889]: connect from
> mail-qc0-f175.google.com[209.85.216.175]
> Dec 11 17:52:11 ip-10-114-59-124 postfix/cleanup[14901]: 0495F4352D:
> message-id=<e1vqr1u-0000kr...@mailscan22.yourhostingaccount.com>
> Dec 11 17:52:11 ip-10-114-59-124 postfix/qmgr[12941]: 0495F4352D: from=<>,
> size=3277, nrcpt=1 (queue active)
> Dec 11 17:52:11 ip-10-114-59-124 postfix/smtpd[23960]: disconnect from
> mail-yh0-f43.google.com[209.85.213.43]
> Dec 11 17:52:11 ip-10-114-59-124 postfix/smtpd[7889]: 1A8B34355B:
> client=mail-qc0-f175.google.com[209.85.216.175]
> Dec 11 17:52:11 ip-10-114-59-124 postfix/cleanup[9395]: 1A8B34355B:
> message-id=<e1vqlgm-0005pe...@mailscan20.yourhostingaccount.com>
> Dec 11 17:52:11 ip-10-114-59-124 postfix/qmgr[12941]: 1A8B34355B: from=<>,
> size=3280, nrcpt=1 (queue active)
> Dec 11 17:52:11 ip-10-114-59-124 postfix/smtpd[7889]: disconnect from
> mail-qc0-f175.google.com[209.85.216.175]
> Dec 11 17:52:11 ip-10-114-59-124 postfix/smtpd[1060]: connect from
> mail-qc0-f176.google.com[209.85.216.176]
>
>
>
> my queue is growing very big and can't really figure out  how do i drop this
> connections and do not reply to them at all...
>
> thanks...
>

Reply via email to