Maurizio Caloro skrev den 2023-02-14 11:40:
blocklist de, with the listed IP Addresses, after i postmap with «
Postfix lookup table management »
On 14.02.23 14:03, Benny Pedersen wrote:
use cidr maptype, not hash
postmap is not that good on ip'addrses
for single IP addresses, neither is a win.
hash has simply some overhead.
blocklist.de have rsync, where the rsynced data is for rbldnsd, so you
could bind rbldnsd to 127.0.0.2:53 with is then used in postfix
reject_rbl_client bl.blocklist.de=127.0.0.2
to make this work one need either bind9 forward only zone, or
pdns-recursor with have forwards aswell to use rbldnsd data on
127.0.0.2
note dns is imho blocked if you dont provide data to blocklist.de in
fail2ban, atleast this was what i found
This is very good idea.
If you can set up local rbldnsd, do that.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Fighting for peace is like fucking for virginity...
