subject:"\[Mdaemon\-L\] IP BCA di block via SMTP Screening \(dynamic screening\)"

[Mdaemon-L] IP BCA di block via SMTP Screening (dynamic screening)

2024-03-03 Terurut Topik Hengga KMN



> 
> Block IPs that connect more than 100 times in 1 minutes
> 
Baik.
Saya coba naikkan dulu ke angka 50, semoga tidak kena batas atas screening ini.
Aneh saja perilaku SMTP BCA ini.

Salam,
Hengga

--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.com
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 23.5.2, SecurityGateway 9.5.3

[Mdaemon-L] IP BCA di block via SMTP Screening (dynamic screening)

2024-03-03 Terurut Topik Syafril Hermansyah via Mdaemon-L


On 3/4/24 11:48, Hengga KMN wrote:

Kenapa Dynamic Screening selalu menambahkan IP dari BCA ini ya
(202.6.210.38) ke dalam Blacklist?


Blocked via SMTP Screen: 202.6.210.38 ( 
Asia, Indonesia

): connected 16 times within 1 minutes
 
This IP Address range was added to the Dynamic Screening Blacklist via SMTP

Screen.


Ini smtp screening yang melakukan block.

http://mdaemon.dutaint.co.id/mdaemon/23.5/security--smtp_screen.html

Block IPs that connect more than [X] times in [X] minutes


Perlu saya tambahkan ke dalam Whitelist kah?



Boleh saja kalau hanya terjadi untuk kasus bca.co.id.
Lebih baik jika dinaikkan nilainya atau disable smtp screening.

Block IPs that connect more than 100 times in 1 minutes


--
syafril

Syafril Hermansyah
MDaemon-L Moderators, running MDaemon 23.5.3 Beta A
Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon.

The only thing that stands between you and your dream is the will to try 
and the belief that it is actually possible.

---  Joel Brown


--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.com
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 23.5.2, SecurityGateway 9.5.3

[Mdaemon-L] IP BCA di block via SMTP Screening (dynamic screening)

2024-03-03 Terurut Topik Hengga KMN

Selamat siang Pak Syafril,

Kenapa Dynamic Screening selalu menambahkan IP dari BCA ini ya
(202.6.210.38) ke dalam Blacklist?
Apakah ini false alert atau memang ada salah setup dari IP tersebut?
Perlu saya tambahkan ke dalam Whitelist kah?

Blocked via SMTP Screen: 202.6.210.38 ( 
Asia, Indonesia
): connected 16 times within 1 minutes
 
This IP Address range was added to the Dynamic Screening Blacklist via SMTP
Screen.

The blocking of this address range will expire at 10:34 AM on Tuesday, March
12, 2024 SE Asia Standard Time. (3:34 AM on Tuesday, March 12, 2024 GMT )
 
You may remove the address range from the Blacklist prior to the expiration
date/time by replying to this message.
 
Dynamic Screening (64bit) for MDaemon Messaging Server  21.5.3.2 / 21.5.3

Jika saya cek IP tersebut dari whois, informasi bahwa IP tersebut miliknya
BCA:
https://whois.domaintools.com/202.6.210.38

inetnum:202.6.208.0 - 202.6.223.255
netname:IDNIC-BCA-ID
descr:  PT Bank Central Asia, Tbk
descr:  Corporate / Direct Member IDNIC
descr:  Menara BCA, Jl. M.H. Thamrin No.1
descr:  Jakarta 10310
country:ID
admin-c:BH517-AP
tech-c: BH517-AP
status: ASSIGNED PORTABLE
mnt-by: MNT-APJII-ID
mnt-lower:  MAINT-ID-BCA
mnt-irt:IRT-BCA-ID
last-modified:  2023-11-13T16:21:23Z
source: APNIC

irt:IRT-BCA-ID
address:PT Bank Central Asia, Tbk
address:Menara BCA, Jl. M.H. Thamrin No.1
address:Jakarta 10310
e-mail: 
abuse-mailbox:  
admin-c:BH517-AP
tech-c: BH517-AP
auth:   # Filtered
mnt-by: MAINT-ID-BCA
last-modified:  2018-05-31T22:29:45Z
source: APNIC

person: BCA Hostmaster
address:Menara BCA, Jl. M.H. Thamrin No.1
address:Jakarta 10310
country:ID
phone:  +62-21-23588000
fax-no: +62-21-23588314
e-mail: 
nic-hdl:BH517-AP
mnt-by: MAINT-ID-BCA
last-modified:  2011-12-27T02:42:46Z
source: APNIC

route:  202.6.210.0/24
descr:  Route object of PT Angkasa Komunikasi Global Utama
descr:  Komunikasi-Global
descr:  PT. Angkasa Komunikasi Global Utama
descr:  Internet Service Provider
descr:  Jl. Aipda KS Tubun 2c no.8, Slipi, Palmerah
descr:  Jakarta Barat
descr:  Jakarta - 11410
country:ID
origin: AS17450
mnt-by: MAINT-ID-KOMUNIKASI-GLOBAL
last-modified:  2017-11-21T03:31:38Z
source: APNIC

Terima kasih.

Salam,
Hengga

-- 
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.com
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 23.5.2, SecurityGateway 9.5.3

[Mdaemon-L] IP BCA di block via SMTP Screening (dynamic screening)

[Mdaemon-L] IP BCA di block via SMTP Screening (dynamic screening)

[Mdaemon-L] IP BCA di block via SMTP Screening (dynamic screening)

3 matches

Site Navigation

Mail list logo

Footer information