NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Postfix Discussion> 2006-12

Re: Creating own RBL list

From: Adam Jacob Muller (lists-postfixadam.gs)
Date: Wed Dec 06 2006 - 04:01:12 CST

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

DNS-based RBL would also be my choice, especially if you are serving
multiple machines, most especially if your using different mail servers.

I'm also wondering about how well postfix works if your storing some
range or CIDR representation in the database.

I can definitely see performance being an issue with MySQL-based
lookup tables.

storing IP ranges as integers and using inet_ntoa as part of the query?

select CONCAT('REJECT ',reason) from blocklist where ip_start <=
inet_ntoa("%s") and ip_stop >= inet_ntoa("%s");
?
(untested!)
I guess you *could*.....

rbldns is very nice, less mucky.

-Adam

On Dec 6, 2006, at 3:03 AM, Arya, Manish Kumar wrote:

> Thanks mouss ,
>
> I will prefer a DNS based RBL, for two reasons
>
> 1) we have different mail servers, postfix qmail exim
> 2) and all mail servers form a cluster.
>
> so I will like to build a centralized RBL and point
> all mail servers to this RBL list
>
> regards,
> -manish
>
> --- mouss <usebsdfree.fr> wrote:
>
>> Arya, Manish Kumar wrote:
>>> Hi,
>>>
>>> can anyone give me some links/docs to create
>> own RBL database of IPs and networks I want to
>> block. and how to use this database.
>>>
>>
>> put the IPs you want to block to a hash file, to an
>> *sql db, ... etc,
>> then use check_client_access to reject them. the
>> hard part is how to
>> take the decision to block an IP. you can do this by
>> inspecting the
>> logs, spam, ... part of this inspection may be
>> automated, but this is
>> probably site specific.
>>
>> if you want a dns based BL, take a look at
>> rbldns[d]. but if you will
>> only use the list in postfix, there is no point in
>> using DNS.
>>
>
>
>
>
> ______________________________________________________________________
> ______________
> Cheap talk?
> Check out Yahoo! Messenger's low PC-to-Phone call rates.
> http://voice.yahoo.com

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]