[olug] iptables question
Noel Leistad
noel at metc.net
Wed Jun 13 16:53:58 UTC 2007
offering up for anyone to take a shot....disclaimer -- I'm not very good
w/ iptables
Subscribe to mailfiltering service that filters all smtp incoming traffic.
Spammers obviously ignore DNS MX records and try to directly connect.
Configured iptables to accept from "my_networks" which includes the
sending address range for mailfiltering service.
Good news ... process load on mailserver dropped from 500-600 processes
to under 150.
Bad news ... all smtp-auth requests blocked as "out of network".
Anyone know how to create a iptables chain that recognizes smtp-auth
that would allow auth attempt w/ jump to ACCEPT if validated before my
DROP statement.....
Thanks for the feedback.
Referrals to Solution Providers NOT rejected....mine didn't offer any
experience on precisely what I was looking for...
--
#######################################################
# Noel Leistad #
# noel at metc.net #
# #
#######################################################
"Never give in. Never give in. Never. Never. Never."
-- Winston Churchill
More information about the OLUG
mailing list