I know that several firewall vendors use various flavors of Linux as
the basis for their devices. Are there any that use OpenBSD
similarly? If so, which? Any comments on the devices? Links would
be appreciated.
-James
--
What would Bilano do?
$ext_if1 port smtp keep state
pass in on $ext_if2 reply-to ($ext_if2 $ext_gw2) proto tcp from any to \
$ext_if2 port smtp keep state
**pass in on $ext_if1 reply-to ($ext_if1 $ext_gw1) proto tcp from any to \
** $exch_svr port $exch_svc keep state
**pass in on $ext_if1 reply-to ($ext_if1 $ext_gw1) proto tcp from any to \
** any port 407 keep state
Thanks!
James Harless
--
What would Bilano do?
I'm not sure I understand the suggestion. Feel free to enlighten
me... I'm completely open to ideas.
James
On 7/15/05, Will H. Backman <[EMAIL PROTECTED]> wrote:
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
>
y to \
** any port 407 keep state
On 7/18/05, Will H. Backman <[EMAIL PROTECTED]> wrote:
>
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
> Of
> > James Harless
> > Sent: Saturday, July 16, 2005 4:27 AM
>
One thing to check, make sure the timeout you have specified for the milter
is long enough for it to actually scan the attachment. What this magic
number is depends a lot on your hardware configuration but, I'd try setting
it unreasonably large at first to make sure that isn't the problem.
--James
I would like some advice on extending spamd functionality. I'm not
sure the best approach to this problem.
Problem:
I administer several independent mail gateway / firewall devices that
greylist for their networks. I've done a fair job of educating users
about how greylisting will affect their
at typical
scenario, the user has contacted me and said "I don't want mail from
[EMAIL PROTECTED] to be delayed... whitelist them, please."
--James
On 10/25/05, Bob Beck <[EMAIL PROTECTED]> wrote:
>
>
> spamdb -a `spamdb | grep '<[EMAIL PROTECTED]>|<[EMAIL PRO
s back to knowing the connecting servers IP address.
>
> You could disable spamd protection and see how long it takes for your
> users to complain about the amount of spam they are getting. :)
>
>
> -Chad
>
>
> On Oct 25, 2005, at 9:57 PM, James Harless wrote:
>
> &g
On 10/26/05, Frank Bax <[EMAIL PROTECTED]> wrote:
>
> At 09:57 PM 10/25/05, James Harless wrote:
>
> >I appreciate the suggestions, but, not quite what I'm looking for yet.
> >Either of these would allow me to whitelist someone AFTER they had been
> >greylis
> How would you find an unknown ip of an unknown machine? About the
> only *chance* you have is doing MX lookup's and hoping that email
> comes from that same server. If their organization uses various
> relays and proxies to send, you are out of luck. There's no way to
> get that information wi
You don't set a state-policy so, by default it's floating. You're setting up
a state with your 'pass in quick on $int_if' rule. So, with those 2 things,
you've created a pass out quick rule implicitly on your $ext_if.
Read the section of the PF FAQ about 'state-policy'. It will make it far
more cl
11 matches
Mail list logo
