Greetings, Mayhem! > The reason why I even suggested this is that I don't see a lot different IP > addresses. I figured the Postfix system wouldn't need to cache that many > "bad" IP addresses. You guys obviously see differently.
> My mail logs rotate at 12AM every night, this is just one IP address in 8.5 > hours : > $ more /var/log/maillog | grep -c 'CONNECT from \[103\.129\.47\.19\]' > 1004 > That's just *one* IP address attempting to deliver spam 1000+ times. Isn't > it a waste of the DNSBL resources telling me 1000 times in 8 hours that this > IP address is up to no good? And you don't have local caching DNS proxy? > That's why it would be nice to blacklist the offending IP address for 24-48 > hours and keep resources free for legitimate connections. Are you receiving more than 10k connections per second? -- With best regards, Andrey Repin Tuesday, March 5, 2019 20:54:45 Sorry for my terrible english...
