|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: private IP address on the internet
From: /dev/rob0 (rob0
gmx.co.uk)
Date: Fri Oct 27 2006 - 10:23:59 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Friday 27 October 2006 10:19, Josh Paetzel wrote:
> > > Why even allow such things to get to your MTA at all? Configure
> > > your firewall to drop packets that claim to come from unroutable
> > > source addresses.
> >
> > You misunderstand - the packets are not coming from unroutable
> > source addresses - the MX records are in that space.
>
> Yes, I did misunderstand.....but I still deal with this at the
> firewall level. I don't allow packets destined for RFC1918 address
> out my external interfaces either.
You're still not getting it. :) The point is to REJECT spam where the
sender or HELO domain has bogon MX or NS records. Why accept something
which is known (at SMTP time) to be unreplyable?
--
Offlist mail to this address is discarded unless
"/dev/rob0" or "not-spam" is in Subject: header
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]