On Fri, 8 Aug 2008, Johann Spies wrote:
>
> I am thinking of using something like this in the data-acl:
>
> defer message = Sender rate exceeds $sender_rate_limit \
> messages per $sender_rate_period
> ratelimit = 1200M / 1h / per_byte / leaky
> hosts = <ip's of naughty hosts>
>
> The last line (hosts) is probably not necessary.
>
> Am I on the right way with this configuration?
Yes, that's fine.
If you decide to use the hosts condition, put it before the ratelimit
condition so that the rate calculation is skipped if the client host is
not in the list. The ratelimit condition accesses a hints database so it
is relatively expensive.
Tony.
--
<fanf@???> <dot@???>
http://dotat.at/ ${sg{\N${sg{\
N\}{([^N]*)(.)(.)(.*)}{\$1\$3\$2\$1\$3\n\$2\$3\$4\$3\n\$3\$2\$4}}\
\N}{([^N]*)(.)(.)(.*)}{\$1\$3\$2\$1\$3\n\$2\$3\$4\$3\n\$3\$2\$4}}