On Tue, 28 Oct 2014, Anoop John wrote:
>
> Not sure how to take things forward from here. Thanks once again for your
> suggestions.
>
Are you doing any dns blocklist rejections? You could try to
do those earlier in the connect acl, taking into account whitelisted
hosts, etc.
You might also look at shoving either the DROP or EDROP list into
iptables:
http://www.spamhaus.org/drop/
--
--------------------------------------------------------
Dave Lugo dlugo@??? LC Unit #260 TINLC
Have you hugged your firewall today? No spam, thanks.
--------------------------------------------------------
Are you the police? . . . . No ma'am, we're sysadmins.
