Koozali.org: home of the SME Server

Legacy Forums => General Discussion (Legacy) => Topic started by: Tim on July 24, 2002, 02:32:35 AM

Title: IP ADDRESS BLOCKING
Post by: Tim on July 24, 2002, 02:32:35 AM

Hi all,

I posted this question a while back with no response.

Is there an RPM out that allows us to block specific IP Addresses and blocks of IP addresses?  

I have moved away from SLMail on a different server to the 5.5 Mitel/E-Smith.  I would like to use my old email blocking abilities with the E-smith mail server.  I was able to block known SPAMMERS in this method.

Any ideas or thoughts would be great.

Thanks!

Title: Re: IP ADDRESS BLOCKING
Post by: chris meredith on July 24, 2002, 08:16:55 AM

You could just script an ipchains rule to drop incomming packets from all the IPs in a text file.  I block pretty much the entire Asia IP block, plus some other IPs, but I did a pretty hacked together job of it.  My scripting skillz are weak, but I don't think it would be that hard.  You could just block from port 25 or every port.

Title: Re: IP ADDRESS BLOCKING
Post by: Peter Kilsgaard on July 24, 2002, 03:30:52 PM

Hi

Try installing DansGuardian www.dansguardian.org and
webmin www.webmin.org.

Use the redhat rpm packet's

Now you can block unwanted ip and sites.

Title: Re: IP ADDRESS BLOCKING
Post by: Philip on July 25, 2002, 09:26:28 AM

If you have a serious spam problem (my limit was 50 or so a day) I can recommend a very effective two stage defense (I did this at work):

1.) Install rblsmtp - This installs in front of qmail and declines any connections from open relay mailers

2.) Install Spambouncer package - This takes care of 97% of what's left.

These installs require some work but the end result has been spectacular. We've been refusing something like 100 Open Relay connection requests per hour and got rid of 97% of the remaining spam.

Title: Re: IP ADDRESS BLOCKING
Post by: Jim Darrough on July 27, 2002, 10:33:17 AM

Are the two programs you recommended something a novice can figure out how to install? Any chance you could send links?

Thanks!

Philip wrote:
>
> If you have a serious spam problem (my limit was 50 or so a
> day) I can recommend a very effective two stage defense (I
> did this at work):
>
> 1.) Install rblsmtp - This installs in front of qmail and
> declines any connections from open relay mailers
>
> 2.) Install Spambouncer package - This takes care of 97% of
> what's left.
>
> These installs require some work but the end result has been
> spectacular. We've been refusing something like 100 Open
> Relay connection requests per hour and got rid of 97% of the
> remaining spam.