And how can you forecast the IP's that you want to prevent from
connecting?
Le 23.11.2012 08:48, Bernard Hurley a écrit :
> On Thu,
Nov 22, 2012 at 08:07:12AM -0300, Jorge wrote:
>
>> Hi, Daily I found
in rejectlog file hundreds of lines like: 2012-mm-dd hh: mm: ss
fixed_login authenticator failed for ([
www.xxx.yyy.zzz [1]])
[ww.xx.yyy.zz]: 535 Incorrect authentication data (set_id = xyz) And in
most of them the IP is the same. How I can prevents access to EXIM of
those IPs?
>
> On my Debian system I block IP's using iptables like
this:
>
> iptables -A INPUT -s XX.XX.XX.XX -p tcp --dport 25 -j
REJECT
>
> where you obviously have to fill in the correct address for
the X's.
>
> You can also block a range of IP's with code like:
>
>
iptables -A INPUT -s XX.XX.XX.0/16 -p tcp --dport 25 -j REJECT
>
> If
you do this the connections are blocked at the firewall and exim
> never
sees them. I hope this helps.
>
> Bernard
>
>> Thanks in advance.
Jorge Colaccini -- ## List details at
https://lists.exim.org/mailman/listinfo/exim-users [2] ## Exim details
at
http://www.exim.org/ [3] ## Please use the Wiki with this list -
http://wiki.exim.org/ [4]
Links:
------
[1]
http://www.xxx.yyy.zzz
[2]
https://lists.exim.org/mailman/listinfo/exim-users
[3]
http://www.exim.org/
[4]
http://wiki.exim.org/
