Greetings, Wietse Venema! > Wietse: >> > I don't think that there is a 'standard' policy that 'works' for >> > delivery from every site to every site. >> > >> > Nowadays you get a policy exception from 'big' receivers, and you >> > come up with transport_maps with different 'classes' of delivery >> > agents that are configured with different rate_delay (no concurrency), >> > with limited concurrency, and/or with different source IP address, >> > then pick the agent depending on destination. >> > >> > Or you just pay a mail sending company for doing the job.
> Stefan Bauer: >> Thank you Wietse, >> >> wouldn't default_transport_rate_delay = 15s >> >> be a safe setting to relax the whole transport a bit? > It is a big sledgehammer that allows 4 delivers per minute per > destination (or per transport). If that works for you, great. > Just keep in mind that 'postfix reload' will reset the rate > delay timers. Assuming his use case (hundreds of mails could be generated per minute to the same destination), this seems appropriate. I'm considering doing the same on my relay systems, to limit the rate at which they talk to the smarthost. My use case is not "hundreds", but I'd rather have this level of throttling, than leaving a wide open gap for brute force attacks. (As I'm not a huge fan of fail2ban. I prefer more direct approaches.) -- With best regards, Andrey Repin Thursday, December 6, 2018 21:16:00 Sorry for my terrible english...
