Re: access

Wed, 11 Dec 2013 16:37:48 -0800 

Re: blocking with iptables try this script it works a treat - see my notes at 
the bottom of the page for minor fixes:

http://blog.exeko.com/2008/06/stop-spam-flood-postfix-iptables/



> On 12/12/2013, at 11:52 am, don magnify <magnuscelzi...@gmail.com> wrote:
> 
> 
> 
> hi all....
> 
> i have a machine heavily hit with a bunch of from=<> messages...
> 
> i read around and implemented the access solution as in:
> 
> /etc/postfix/main.cf:
>            smtpd_client_restrictions =
>                check_client_access hash:/etc/postfix/access
> 
>        /etc/postfix/access:
>            1.2.3   REJECT
>            1.2.3.4 OK
> 
> my /etc/postfix/access looks like:
> 
> .eigbox.net                     DISCARD
> .yourhostingaccount.com         DISCARD
> 
> and did the postmap command
> 
> how do i know it's working? i still get lots of these in my maillog:
> 
> Dec 11 17:52:11 ip-10-114-59-124 postfix/smtpd[23960]: 0495F4352D: 
> client=mail-yh0-f43.google.com[209.85.213.43]
> Dec 11 17:52:11 ip-10-114-59-124 postfix/smtpd[7889]: connect from 
> mail-qc0-f175.google.com[209.85.216.175]
> Dec 11 17:52:11 ip-10-114-59-124 postfix/cleanup[14901]: 0495F4352D: 
> message-id=<e1vqr1u-0000kr...@mailscan22.yourhostingaccount.com>
> Dec 11 17:52:11 ip-10-114-59-124 postfix/qmgr[12941]: 0495F4352D: from=<>, 
> size=3277, nrcpt=1 (queue active)
> Dec 11 17:52:11 ip-10-114-59-124 postfix/smtpd[23960]: disconnect from 
> mail-yh0-f43.google.com[209.85.213.43]
> Dec 11 17:52:11 ip-10-114-59-124 postfix/smtpd[7889]: 1A8B34355B: 
> client=mail-qc0-f175.google.com[209.85.216.175]
> Dec 11 17:52:11 ip-10-114-59-124 postfix/cleanup[9395]: 1A8B34355B: 
> message-id=<e1vqlgm-0005pe...@mailscan20.yourhostingaccount.com>
> Dec 11 17:52:11 ip-10-114-59-124 postfix/qmgr[12941]: 1A8B34355B: from=<>, 
> size=3280, nrcpt=1 (queue active)
> Dec 11 17:52:11 ip-10-114-59-124 postfix/smtpd[7889]: disconnect from 
> mail-qc0-f175.google.com[209.85.216.175]
> Dec 11 17:52:11 ip-10-114-59-124 postfix/smtpd[1060]: connect from 
> mail-qc0-f176.google.com[209.85.216.176]
> 
> 
> my queue is growing very big and can't really figure out  how do i drop this 
> connections and do not reply to them at all...
> 
> thanks...
>

Reply via email to