Steffen Nurpmeso wrote in
<20230324175540.o_vn-%stef...@sdaoden.eu>:
|Bernardo Reino wrote in
| <79552717-5p3o-8q26-r963-124or6r66...@oozx.bet>:
||On Thu, 23 Mar 2023, Steffen Nurpmeso via Postfix-users wrote:
| ...
||> (That is pretty off-topic for postfix; except maybe for fun
||> posting my SMTP related firewall
| ...
||> add_rule -p tcp --src ${addr}${mask} \
||> --dport ${p_smtp} -m limit --limit 60/m -j f_m0_2
| ...
||Could it be that $mask is set to something like /24 (or worse), and that
||somebody in the (ip) neighborhood of Jaroslaw is triggering your script?
Btw i occasionally block myself, so there is a port-knock thing
running that whitelists the caller for 30 seconds. Before i used
my datagram-based WireGuard VPN, with only SSH (TCP) and SOCKS5
proxying over that (ControlMaster), i had to use that often due to
my weak wireless access (via D-Netz, by then) that caused
connection breaks. But with WireGuard that then bypasses the
"filter" ruleset but for first connection setups (for good), this
allows for very tough firewall plus long-living TCP through it.
It is really a great thing to use. (And much more lean than
OpenVPN or so.) So that now really off-topic.
--steffen
|
|Der Kragenbaer, The moon bear,
|der holt sich munter he cheerfully and one by one
|einen nach dem anderen runter wa.ks himself off
|(By Robert Gernhardt)
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
