On Tuesday 08 February 2005 2:14 pm, Kenneth Porter wrote:
> --On Tuesday, February 08, 2005 11:14 AM -0700 Brian Godette
>
> <[EMAIL PROTECTED]> wrote:
> > care must be taken to have the expiry times
> > reasonable or the iptables rule lists becomes much too large and
> > eventually chews up all
--On Tuesday, February 08, 2005 1:14 PM -0800 Kenneth Porter
<[EMAIL PROTECTED]> wrote:
Have you seen the "ipset" stuff on the netfilter-devel list? This is a
new set of modules that works with sets of addresses. It should allow you
to have a much larger rejection list.
Just checked, this project
--On Tuesday, February 08, 2005 11:14 AM -0700 Brian Godette
<[EMAIL PROTECTED]> wrote:
care must be taken to have the expiry times
reasonable or the iptables rule lists becomes much too large and
eventually chews up all available CPU.
Have you seen the "ipset" stuff on the netfilter-devel list?
On Thursday 03 February 2005 4:22 pm, Matt Kettler wrote:
> At 06:13 PM 2/3/2005, Brian Godette wrote:
> >Those sorts of mail servers end up in my firewall rules till some point in
> >the
> >future.
>
> I started off using a shun on them as a short-term fix, but then went to a
> 500 error message f
Don't know if it's related, but I'm seeing a SIGNIFICANT increase in
SMTP REJECTs, something to the tune of a 10- to 15-fold increase. I
started seeing it simultaneously on both my primary and secondary boxes,
starting around 7:AM EST yesterday (Thursday). I log RBL rejects as
'spam' so this is som
At 06:13 PM 2/3/2005, Brian Godette wrote:
Those sorts of mail servers end up in my firewall rules till some point in
the
future.
I started off using a shun on them as a short-term fix, but then went to a
500 error message for all mail from the server in /etc/mail/access.
They seem to behave pro
On Thursday 03 February 2005 3:32 pm, Matt Kettler wrote:
> I encountered one ISP who's legitimate mail gateway is freaking out under
> the load of all the proxy spam.
>
> It's now retrying temp-fail messages immediately without any delay... 24+
> times per second.
>
> Since I have Sendmail set up
I encountered one ISP who's legitimate mail gateway is freaking out under
the load of all the proxy spam.
It's now retrying temp-fail messages immediately without any delay... 24+
times per second.
Since I have Sendmail set up to verify sender domains exist, a lot of spam
gets a 451 error.. Un