|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: A Question About "check_client_access"
From: mouss (usebsd
free.fr)
Date: Wed Oct 12 2005 - 09:01:28 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Rich Shepard a écrit :
> I have a restriction map of IP addresses I want rejected. They are
> invoked
> within /etc/postfix/main.cf with 'check_client_access
> hash:/etc/postfix/badip'. Over the past couple of days, spam has made
> it into
> my inbox despite having an IP address in a block listed in that file. The
> address is always the one from which my MTA received it, not earlier
> in the
> transmission sequence.
>
> Not all checks on this file fail, only some do. I'd like to
> understand why
> some messages are not rejected when the address falls within a block
> that's
> an entry in the file.
>
> All ideas appreciated.
In general, if a client is not blocked, this is because no reject rule
was applied to it, and in particular, it didn't match a client_access
rule that rejects it.
if you want more precise ideas, provide more precise informations.
- where is postconf -n?
- do all entries in badip have "REJECT" as the right hand side (the
result field) or do you use different results?
- what is the format of the IPs that don't get caught?
post a full line of this (replace digits by 'd' if you want, but keep
dots and other chars).
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]