Kenneth Porter wrote: > > Does it really have to be funneled through their SMTP servers? Would it > not > be sufficient simply to add a connection-level SYN throttle on that port > at > the routers? Perhaps someone here could propose a set of iptables rules > that would implement this. Or the equivalent rule for a Cisco. > I understand 'funneling' as routing, but what I mean is the customer has to configure smtp.provider.com as outgoing mailserver. On my Cisco PIX firewalls I have configured embryonic limits on every static, Cisco FW-IOS has (I think) about the same commands, in plain IOS I wouldn't know the command. Anyway, IMHO with SYN throttle you would only be rate-limiting the zombies, I would rather they stopped sending spam completely..
Regards Menno -- View this message in context: http://www.nabble.com/What-changes-would-you-make-to-stop-spam----United-Nations-Paper-tf2035870.html#a5620144 Sent from the SpamAssassin - Users forum at Nabble.com.
