Justin Kim wrote:
> Hello,
> I would like to show my main.cf and master.cf first.
>
> master.cf
...
>
> So I setup postfix with amavisd-new to scan spam only.
> And I wanted to enable in main.cf
> smtpd_recipient_restrictions =
> permit_mynetworks
> permit_sasl_authenticated
> reject_unauth_destination
> reject_unknown_sender_domain
> reject_rbl_client zen.spamhaus.org
>
> I have 150 smtp process and 12 amavis process working okay.
> But when I try to put rbl check, my smtp process cannot handle the load and
> times out.
> Am I missing something? If I enable that reject_rbl on master.cf what is
> going to happen?
> Our server is really busy handling 500,000 messages per day and a lot of
> them are spams. :(
> I just wanted to cut more spammers from connecting and trying to send.
> How can I do it?
> Please help.
>
> Thank you,
>
> Justin
I find that > 45% of the connections :
Reject HELO/EHLO 34.84%
Reject unknown user 12.27%
can be rejected with cheap checks:
reject_unlisted_recipient
check_helo_access pcre:/etc/postfix/helo_checks.pcre
before rbl checks. That would be a significant hit reduction of RBL
checks and and messages passed to your content filter.
MrC
-------------------------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc.
Still grepping through log files to find problems? Stop.
Now Search log events and configuration files using AJAX and a browser.
Download your FREE copy of Splunk now >> http://get.splunk.com/
_______________________________________________
AMaViS-user mailing list
AMaViS-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/amavis-user
AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3
AMaViS-HowTos:http://www.amavis.org/howto/
