Topic: greylisting comments

[meanlocha]

@piran

firewall custom templates is not a good way to manage the multiple
NLMTA (non-legitimate Mail transfer agents) connections in most scenarios.
The masq restart requires shutting down the network momentarily
to restart it. I have an asterisk PBX behind the SME box, restarting the firewall
makes for a noticeable glitch in phone calls.

I would prefer a simple local cache, as is already done in the denysoft_greylist plugin.
The latter plugin could be easily adapted to address this issue.

Anthony

[CharlieBrady]

firewall custom templates is not a good way to manage the multiple
NLMTA (non-legitimate Mail transfer agents) connections in most scenarios.
The masq restart requires shutting down the network momentarily
to restart it.

If the masq custom templates are designed correctly, then the rules can be activated via 'masq reload', and there will be no loss of network connectivity.

[piran]

I would prefer a simple local cache, as is already done in the denysoft_greylist plugin.
The latter plugin could be easily adapted to address this issue.

This is a contrib that I have found works well enough...
http://wiki.contribs.org/Email_Whitelist-Blacklist_Control
...and, who knows, all that B&W stuff might make Grey;~)
Another possibility...
http://wiki.contribs.org/Denyhosts
...thouigh I have never used it.