http://www.ipdeny.com publish IP address-lists sorted by country zones; a script can quite easily derive a .cidr access-list (or perhaps a DNS zone file).
Alternatively, there is an RBL, zz.countries.nerd.dk, which will return a code based on country of origin - or if you substitute a country code (eg uk.countries.nerd.dk) it will return a yes/no response, to blacklist (or whitelist) an individual country. I don't know how robust these people are, but they are certainly sufficient for a domestic server. I have tried both methods to postscreen, with some success. Hope this helps Allen C On 14/05/2019 18:41, @lbutlr wrote: > Has anyone implemented geo based restrictions for postfix login connections, > or is this something that needs to be done in dovecot? > > I was thinking someway to add most of Asia and Eastern Europe to postscreen > checks would be useful? >
