changed --hitcount to 15 in 10 seconds lets see !
--- In [email protected], "doorsofperception82" <anupn...@...> wrote: > > Hi, > I have three smtp servers as MX to my domain. It is done such to balance > load. But it was observed that each server would have high mail queue if > it accepted 20 connections at a time. > I found that most of the emails were from spam sources. So, I thought it > is good to use iptables as a preliminary solution before we can work out > grey listing methods. > To do that I need to know what are right values to put in iptables. > Which I have been unsuccessful at ! > here are the rules I put in iptables. (had used for ssh, worked really > well with it. values were different though!) > iptables -I INPUT -p tcp --dport 25 -i eth0 -m state --state NEW -m > recent --setiptables -I INPUT -p tcp --dport 25 -i eth0 -m state --state > NEW -m recent --update --seconds 10 --hitcount 8 -j DROP > This has effectively reduced smtp connections to the server. Apparently, > it has even blocked gmail and yahoo. I dont want that to happen. The > mails from gmail and yahoo are coming with at least half hour delay. Not > because of mail queue (its hovering around 10-20) its because > gmail/yahoo IPs have exhausted 8 hits in the 10seconds time frame. > Could any one help with correct inputs to make this effective ? > Thanks ! > > > [Non-text portions of this message have been removed] >
