On 11.11.21 12:06, Togan Muftuoglu wrote:
>How can I reject connections from generic Forward Confirmed Reverse DNS
(FCrDNS) like “123-45-67-8.your.isp.com”.
For the most cases spamhaus is able to block it but with the cloud providers
with FCrDNS as follows not all of them are not blocked.
123-45-67-89.ip.linodeusercontent.com
ec2-12-34-56-789.us-west-2.compute.amazonaws.com
How can I reject these connections
you can check hostnames by using pcre map in
check_reverse_client_hostname_access. e.g. refuse regex
/(\d+)[.-](\d+)[.-](\d+)[.-](\d+)./ REJECT "generic DNS refused"
(trailing . should avoid matching IP Addresses)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Nothing is fool-proof to a talented fool.
