2021-08-28 11:34:37 +00:00
|
|
|
# typically non smtp commands. Block fast for access to postfix
|
|
|
|
[miab-postfix-scanner]
|
|
|
|
enabled = true
|
|
|
|
port = smtp,465,587
|
|
|
|
filter = miab-postfix-scanner
|
|
|
|
logpath = /var/log/mail.log
|
|
|
|
maxretry = 2
|
|
|
|
findtime = 1d
|
|
|
|
bantime = 1h
|
|
|
|
|
|
|
|
# ip lookup of hostname does not match. Go easy on block
|
|
|
|
[miab-pf-rdnsfail]
|
|
|
|
enabled = true
|
|
|
|
port = smtp,465,587
|
|
|
|
mode = normal
|
|
|
|
filter = miab-postfix-rdnsfail
|
|
|
|
logpath = /var/log/mail.log
|
|
|
|
maxretry = 8
|
|
|
|
findtime = 12h
|
|
|
|
bantime = 30m
|
|
|
|
|
|
|
|
# ip lookup of hostname does not match with failure. More strict block
|
|
|
|
[miab-pf-rdnsfail-e]
|
|
|
|
enabled = true
|
|
|
|
port = smtp,465,587
|
|
|
|
mode = errors
|
|
|
|
filter = miab-postfix-rdnsfail[mode=errors]
|
|
|
|
logpath = /var/log/mail.log
|
|
|
|
maxretry = 4
|
2022-09-04 18:57:50 +00:00
|
|
|
findtime = 2d
|
|
|
|
bantime = 2h
|
|
|
|
|
|
|
|
# aggressive filter against ddos etc
|
|
|
|
[postfix-aggressive]
|
|
|
|
enabled = true
|
|
|
|
mode = aggressive
|
|
|
|
filter = postfix[mode=aggressive]
|
|
|
|
port = smtp,465,submission
|
|
|
|
logpath = %(postfix_log)s
|
|
|
|
backend = %(postfix_backend)s
|
|
|
|
maxretry = 100
|
|
|
|
findtime = 15m
|
|
|
|
bantime = 1h
|
|
|
|
|