Hi, I have three smtp servers as MX to my domain. It is done such to balance load. But it was observed that each server would have high mail queue if it accepted 20 connections at a time. I found that most of the emails were from spam sources. So, I thought it is good to use iptables as a preliminary solution before we can work out grey listing methods. To do that I need to know what are right values to put in iptables. Which I have been unsuccessful at ! here are the rules I put in iptables. (had used for ssh, worked really well with it. values were different though!) iptables -I INPUT -p tcp --dport 25 -i eth0 -m state --state NEW -m recent --setiptables -I INPUT -p tcp --dport 25 -i eth0 -m state --state NEW -m recent --update --seconds 10 --hitcount 8 -j DROP This has effectively reduced smtp connections to the server. Apparently, it has even blocked gmail and yahoo. I dont want that to happen. The mails from gmail and yahoo are coming with at least half hour delay. Not because of mail queue (its hovering around 10-20) its because gmail/yahoo IPs have exhausted 8 hits in the 10seconds time frame. Could any one help with correct inputs to make this effective ? Thanks !
[Non-text portions of this message have been removed]
