Re: Isolating SMTP to a single band of 8 IP's

From: Noel Jones <njones_at_nospam>
Date: Wed Nov 02 2011 - 15:52:12 GMT
To: postfix-users@postfix.org

On 11/2/2011 10:43 AM, Keith Steensma wrote:
> It's been a long time since I have participated in this list (goes
> to show how good Postfiix is when it can run for years with so few
> problems). Our company has decided to start using an outside SPAM
> filtering service. Overall, this is doing a very good job. But we
> are getting SPAM directly into out system and I need to block all
> outside SMTP connections except the connections from a group of 8 IP
> address'.
>
> CIDR notation: 199.89.0.0/21
> Netmask notation: 199.89.0.0 with a netmask of 255.255.248.0
> Address range: 199.89.0.0 through 199.89.7.255
>
> I tried (from "Getting selective with SMTP access restriction lists"
> web page)
>
> smtpd_recipient_restrictions = permit_mynetworks,
> reject_unauth_destination

Just replace "reject_unauth_destination" with "reject" and you're
good to go.

-- Noel Jones

> mynetworks = 127.0.0.0/8, 192.168.1.0/24, 199.89.0.0/21
>
> But that only solved half the problem. Mail is still getting in
> from from IP's (like from 203.200.235.214 by 125.160.50.143)
>
> Can anyone offer a suggestion how to fix this problem the right way?
>
> Keith Steensma
>

This message: [ Message body ]
Next message: Charles Marcus: "Re: Isolating SMTP to a single band of 8 IP's"
Previous message: Keith Steensma: "Isolating SMTP to a single band of 8 IP's"
In reply to: Keith Steensma: "Isolating SMTP to a single band of 8 IP's"
Next in thread: Charles Marcus: "Re: Isolating SMTP to a single band of 8 IP's"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]