[asterisk-users] OT: fail2ban, spam and mail servers
Randy R
randulo2008 at gmail.com
Tue Jul 13 08:23:48 CDT 2010
On Tue, Jul 13, 2010 at 2:45 PM, Gordon Henderson
<gordon+asterisk at drogon.net> wrote:
> Good luck!
A few have written me off list (thanks) so I thought I'd close out my
own "thoughts" on this. It's been about two hours and it does look
like things are working great. I removed the huge number of
CONNECT...REJECT statements in sendmail (not needed since the port
isn't there any more). I put the authorized IP list in a pf table and
all that is working just fine.
Yes, many people over the past few years have complained they weren't
able to send mail and were told to change the port to 587, which we
opened last year. Our situation is unusual as the people out on the
road vary a lot, and some of them use a VPN to access the customer
EXCHANGE directly. That can connect directly to our box, so it causes
no problems for them.
So unless we hear from stragglers on port 25, this is looking very
good. I don't know how many IP can be put in a pf table but it was
obvious that there would be tens of thousands in a very small number
of days.
/r
More information about the asterisk-users
mailing list