felderm: > Hi All > > We operate multiple Postfix instances behind HA-Proxies. The haproxy > upstream protocol is enabled: > > smtpd_upstream_proxy_protocol=haproxy > (the IPs of the HA-proxies are in mynetworks)
You should never have to list the HA-proxies in mynetworks.
If the remote connections appear to have the HA-proxies as the
client IP address, then you have a serious mis-configuration.
You need to fix that before you can even start to think about
rate limiting.
Wietse
