Hello Charles, Am 2008-01-09 10:36:44, schrieb Charles Steinkuehler: > You probably don't want to load your router/firewall with reverse DNS > lookups on every packet. You can configure most modern mail clients to
Yes I know, but it is a AsusTek A7V600-X with a Sempron 2200+ and 256 MB
of memory (Multiport eth-Cards went more expensive as using this MB with
all its PCI-Slots :-) )
> reject mail from senders with invalid reverse DNS, or failing that run a
> proxy front-end that will perform these checks.
Maybe I can catch (on the LEAF-Router) the incoming connections to Port
25 and redirect them to a SMTP-Proxy which do dedicated RBL-Checks and
then forward the message to my courier-mta.
Problem: I do not know HOW to setup the redirection of the incoming
SMTP-connection ant the setup of a SMTP-Proxy.
Can you help me with this? (I have not found a documentation which
describe this)
> I find a combination of various RBL lists and some standard non-spammer
> tweaks (ie: drop early talkers, virus filtering, etc) keeps the inbound
> mail load under control enough I can run everything through the fairly
> CPU intensive spamassassin. We only get about 8-10K legit e-mails/day,
> however (many times that in spam), so YMMV.
Since it is not only an incoming SMTP-Server but courier-imap too and
then private filtering rules I realy like to put the whole spamfiltering
on a dedicated machine... I have a bunch of P2 with 366 to 550 MHz and
384/512 MB of memory laying arround in mass (my very old Servers) maybe
they can do the stuff as dedicated machines...
> If you do have a list of IP addresses you want to blackhole, you might
> want to checkout packages like fail2ban:
>
> ~ http://www.fail2ban.org/wiki/index.php/Main_Page
I use fail2ban already since several yers.
> ...this is setup to scan your logs for failed login attempts and block
> the IPs at the firewall, but the concept could easily be expanded to
> trigger on anything you'd like. There may be something already more
> specifically targeted towards e-mail, but I'm not familiar with it.
Thanks, Greetings and nice Day
Michelle Konzack
Tamay Dogan Network
--
Linux-User #280138 with the Linux Counter, http://counter.li.org/
##################### Debian GNU/Linux Consultant #####################
Michelle Konzack Apt. 917 ICQ #328449886
50, rue de Soultz MSN LinuxMichi
0033/6/61925193 67100 Strasbourg/France IRC #Debian (irc.icq.com)
signature.pgp
Description: Digital signature
------------------------------------------------------------------------- Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://ad.doubleclick.net/clk;164216239;13503038;w?http://sf.net/marketplace
------------------------------------------------------------------------ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
