Joey wrote:
Dave,
What paramters are you using for logging with the caching name server?
I currently use this:
logging {
category lame-servers { null; };
};
Thanks,
Joey
I was speaking of dnscache, the program, not dnscache as in "a cacheing
DNS server". See http://cr.yp.to/djbdns.html. It can log in a very
verbose way, generating gigabytes of log files a day.
What you have above for Bind.
DAve
-----Original Message-----
From: DAve [mailto:[EMAIL PROTECTED]
Sent: Friday, February 10, 2006 12:28 PM
To: users@spamassassin.apache.org
Subject: Re: General assistance
Ed Russell wrote:
If everyone would indulge me I would like to put forth the setup I am
utilizing and get some feedback. I have a box that I have been using for
some time which acts as a pass-through filter for many domains
(currently about 100) for spam, this is a fairly high traffic server
processing about 150,000 to 200,000 messages per day. I use the following
method.
Based upon a redhat 6.2 box running kernel 2.2.26, PIV with 2 Gigs of RAM.
Qmail runs which accepts the email from the world (with a
concurrencyincoming of 100) and passes it through qmail-scanner (which
calls
spamd) and spamassassin which checks the email and writes spam status
to the header. Each message gets then passed through a procmail
filter which will delete it if it is spam. The procmail filter is:
:0
* ^X-Spam-Level: \*\*\*\*\*\*\*\*\*\*\*\*\*\*\* {
EXITCODE=99
:0
/dev/null
}
:0
* ^X-Spam-Status: Yes
{
EXITCODE=99
:0
/dev/null
}
:0
* ^^rom[ ]
{
LOG="*** Dropped F off From_ header! Fixing up. "
:0 fhw
| sed -e '1s/^/F/'
}
:0
/dev/null
Mail that is clean gets passed off to a second qmail install which
then delivers the mail to our servers using smtproutes.
This has been working fine for a few years now, but recently we have
experienced major delays in the processing of email. Due to the very
high volume pretty much all the time the system is handling 100
concurrent incoming pieces of email. Of course with everything else
going on it is not uncommon for this system to have up to 400
processes running. Sometimes mail can take hours to get through to
its destination. What I have discovered is that if I disable RBL
checks and razor, pyzor and dcc the delay goes away. However, the
effectiveness of the filter reduces.
Am I completely off base in the way I have this all setup? I have
went with a higher speed HD to increase the threshold on file I/O.
Can I tune the performance of razor etc while maintaining delivery
time? Is there anything else I should be considering? If I have not
explained things well or more information is needed I will certainly
provide anything.
Thanks
Since you are running qmail, consider doing your rbl checks in qmail-smtpd.
No sense scanning a message if you can drop it at the door first.
Also, are your running dnscache? I run dnscache on all my servers, web,
webmail, toasters, etc. It can speed things up considerably as it will cache
your RBL lookups, SURBL lookups, etc. It's a nice thing to do for the URIBL
and SURBL folks too.
If you do run dnscache, consider turning logging off once you are configured
and satisfied it works as intended. dnscache can keep a disk pretty busy
with it's potential to log a lot of data.
DAve
