I am not sure what you are referring to, I just did "egrep "24.51.13.81" /var/log/maillog" to try to find out why this particular IP is passing = the RBLs and those are the results that showed up.
I'm assuming Postfix smtpd did accept those messages since they showed = up in my inbox which is behind my IMGATE machine that uses those RBLs that = have the mentioned IP. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] = On Behalf Of Len Conrad Sent: Thursday, January 08, 2004 12:48 AM To: [EMAIL PROTECTED] Subject: [IMGate] Re: Weird behavior with RBLs >I am getting spam from servers that are listed in several RBLs that I = use, >here is a log sample when I egrep for the IP address in the mail log: > >Jan 7 13:24:49 hasna postfix/smtpd[83149]: connect from >24-51-13-81.pittpa.adelphia.net[24.51.13.81] >Jan 7 13:24:50 hasna postfix/smtpd[83149]: A6455AE141: >client=3D24-51-13-81.pittpa.adelphia.net[24.51.13.81] >Jan 7 13:24:53 hasna postfix/smtpd[83149]: disconnect from >24-51-13-81.pittpa.adelphia.net[24.51.13.81] connect/disconnect is not STMP behavior (which is what the MTA + RBLs=20 block, it's TCP behavior. The RBL are not involved at TCP level. If you want TCP blocking, use a packet filtering firewall. >This IP is listed in CBL, DSBL, NJABLDYNA, SPAMCOP. I have all of = these in >my smtpd_recipient_restrictions. Those RBLs do seem to work as they = catch >quite a lot as my spam-stats report tells me, so I don't know why this = IP >address slipped. Did postfix smtpd accept msgs from these IPs? Len
