Re: [exim] Blocking a Class C

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
MThe Doctor at <-
M+\Jeremy Harris at ->
Delete this message
Reply to this message
Author: The Doctor
Date:  
To: Odhiambo Washington
CC: exim-users
Subject: Re: [exim] Blocking a Class C
On Thu, Dec 08, 2022 at 11:35:15AM +0300, Odhiambo Washington wrote:
> Define this in the global section:
>
> hostlist blocked_hosts = 5.34.207.0/24
> 
> Then in acl_smtp_connect:
>             drop
>                  message         = You are banned here
>                  log_message  = Blocked host from 5.34.207.0/24 subnet
> ($sender_host_address)
>                  hosts               = +blocked_hosts

>

Still getting 

tcp4       0      0 midwest.ab.ca.smtps    5.34.207.58.62078      SYN_RCVD   
tcp4       0      0 204.209.81.122.smtps   5.34.207.77.62962      SYN_RCVD   
tcp4       0      0 204.209.81.102.smtps   5.34.207.195.9246      ESTABLISHED
tcp4       0      0 stagehypnotistco.smtps 5.34.207.114.55268     ESTABLISHED
tcp4       0      0 204.209.81.97.smtps    5.34.207.198.63598     ESTABLISHED
tcp4       0   6153 204.209.81.174.smtps   5.34.207.114.4726      ESTABLISHED
tcp4       0   6153 dwellmodern.ca.smtps   5.34.207.190.48444     ESTABLISHED
tcp4       0      0 204.209.81.110.smtps   5.34.207.198.63764     ESTABLISHED
tcp4       0      0 204.209.81.51.smtps    5.34.207.198.38686     ESTABLISHED
tcp4       0      0 204.209.81.87.smtps    5.34.207.77.43412      ESTABLISHED
tcp4       0      0 environmental-so.smtps 5.34.207.49.53302      ESTABLISHED
tcp4       0      0 204.209.81.51.smtps    5.34.207.153.61228     ESTABLISHED
tcp4       0      0 lpeser.ca.smtps        5.34.207.198.43508     ESTABLISHED
tcp4       0      0 204.209.81.142.smtps   5.34.207.198.4664      ESTABLISHED
tcp4       0      0 gibb.ab.ca.smtps       5.34.207.189.8904      ESTABLISHED
tcp4       0      0 robertsonsplumbi.smtps 5.34.207.189.1834      ESTABLISHED
tcp4       0    151 attilahypnotist..smtps 5.34.207.198.5432      ESTABLISHED
tcp4       0      0 techsupplies.ca.smtps  5.34.207.58.62492      ESTABLISHED
tcp4       0      0 proflamefireplac.smtps 5.34.207.198.56078     ESTABLISHED
tcp4       0      0 204.209.81.97.smtps    5.34.207.191.21406     ESTABLISHED
tcp4       0      0 204.209.81.151.smtps   5.34.207.95.43326      ESTABLISHED
tcp4       0      0 unityintegration.smtps 5.34.207.191.29918     ESTABLISHED
tcp4       0     47 albertadogs.com.smtps  5.34.207.77.59246      ESTABLISHED
tcp4       0      0 lpeser.ca.smtps        5.34.207.153.16136     ESTABLISHED
tcp4       0      0 valpy.com.smtps        5.34.207.153.7492      ESTABLISHED
tcp4       0      0 travelersfirstch.smtps 5.34.207.153.45748     ESTABLISHED
tcp4       0     43 massageresultsco.smtps 5.34.207.185.20282     ESTABLISHED
tcp4       0      0 204.209.81.102.smtps   5.34.207.186.47794     ESTABLISHED
tcp4       0      0 204.209.81.110.smtps   5.34.207.193.51362     ESTABLISHED
tcp4       0      0 valpy.com.smtps        5.34.207.198.50486     ESTABLISHED
tcp4       0     64 204.209.81.167.smtps   5.34.207.198.34662     ESTABLISHED
tcp4       0     64 stage-hypnosis-c.smtps 5.34.207.198.64002     ESTABLISHED
tcp4       0     64 204.209.81.102.smtps   5.34.207.198.23784     ESTABLISHED
tcp4       0     64 promoteyourbusin.smtps 5.34.207.198.51544     ESTABLISHED
tcp4       0     64 fortchipewyanlod.smtps 5.34.207.198.21030     ESTABLISHED


I am using exim-4.95 from FreeBSD ports.

Etierh the port is in question or the IP block is being faked.


> On Thu, Dec 8, 2022 at 10:31 AM Andreas Metzler via Exim-users <
> exim-users@???> wrote:
>
> > On 2022-12-08 The Doctor via Exim-users <exim-users@???> wrote:
> > > On Wed, Dec 07, 2022 at 04:02:55PM -0700, The Doctor via Exim-users
> > wrote:
> > > > On Wed, Dec 07, 2022 at 04:08:34PM +0000, Jeremy Harris via Exim-users
> > wrote:
> > > > > On 07/12/2022 15:34, The Doctor via Exim-users wrote:
> > > > > > How do you block a whole Class C like
> > > > > > 5.34.207.0/24 using the configuration file?
> > > > >
> > > > > Make a start by reading the manual, about ACLs
> > > > > and hostlists.
> >
> > > > Already did that.
> >
> > > For clarification, here is what I am seeing when I go
> > > netstat -a | egrep smtp
> >
> > > tcp4       0      0 204.209.81.116.smtps   5.34.207.189.11238
> >  ESTABLISHED
> > [...]

> >
> > I am missing some sign of "I tried this but it did not work because I
> > failed
> > to understand that specific detail there ...". This looks more like "Phew
> > that is lot to read, let's simply ask."
> >
> > cu Andreas
> > --
> > `What a good friend you are to him, Dr. Maturin. His other friends are
> > so grateful to you.'
> > `I sew his ears on from time to time, sure'
> >
> > --
> > ## List details at https://lists.exim.org/mailman/listinfo/exim-users
> > ## Exim details at http://www.exim.org/
> > ## Please use the Wiki with this list - http://wiki.exim.org/
> >
>
>
> --
> Best regards,
> Odhiambo WASHINGTON,
> Nairobi,KE
> +254 7 3200 0004/+254 7 2274 3223
> "Oh, the cruft.", egrep -v '^$|^.*#' ??\_(???)_/?? :-)

--
Member - Liberal International This is doctor@??? Ici doctor@???
Yahweh, King & country!Never Satan President Republic!Beware AntiChrist rising!
Look at Psalms 14 and 53 on Atheism https://www.empire.kred/ROOTNK?t=94a1f39b
Happy Christmas 2022 and Merry New Year 2023 Beware https://mindspring.com

This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-[exim] Problem with catchallRe: [exim] Blocking a Class C->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)