And how can you forecast the IP's that you want to prevent from connecting?
Le 23.11.2012 08:48, Bernard Hurley a écrit : > On Thu, Nov 22, 2012 at 08:07:12AM -0300, Jorge wrote: > >> Hi, Daily I found in rejectlog file hundreds of lines like: 2012-mm-dd hh: mm: ss fixed_login authenticator failed for ([www.xxx.yyy.zzz [1]]) [ww.xx.yyy.zz]: 535 Incorrect authentication data (set_id = xyz) And in most of them the IP is the same. How I can prevents access to EXIM of those IPs? > > On my Debian system I block IP's using iptables like this: > > iptables -A INPUT -s XX.XX.XX.XX -p tcp --dport 25 -j REJECT > > where you obviously have to fill in the correct address for the X's. > > You can also block a range of IP's with code like: > > iptables -A INPUT -s XX.XX.XX.0/16 -p tcp --dport 25 -j REJECT > > If you do this the connections are blocked at the firewall and exim > never sees them. I hope this helps. > > Bernard > >> Thanks in advance. Jorge Colaccini -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users [2] ## Exim details at http://www.exim.org/ [3] ## Please use the Wiki with this list - http://wiki.exim.org/ [4] Links: ------ [1] http://www.xxx.yyy.zzz [2] https://lists.exim.org/mailman/listinfo/exim-users [3] http://www.exim.org/ [4] http://wiki.exim.org/ -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
