black.pf
------------------------
ext_if="em0"
tcp_services="{ 22, 80, 143 }"
icmp_types="echoreq"
set block-policy return
set loginterface $ext_if
set skip on lo
set reassemble yes no-df
block in log
pass out quick
antispoof quick for { lo }
pass in on $ext_if proto tcp to any port submission
table <spamd-white> persist
table <nospamd> persist file "/etc/mail/nospamd"
pass in on $ext_if proto tcp from any to any port smtp
rdr-to 127.0.0.1 port spamd
# any may be spamed mail , so it shall be dealed by spamd .
pass in on $ext_if proto tcp from <nospamd> to any port smtp
pass in log on $ext_if proto tcp from <spamd-white> to any port smtp
# from <nospamd> & <spamd-white> is safe , so send owtword .
pass out log on $ext_if proto tcp to any port smtp
# all mail is dealed whith this mechanism , so is safe so send owtword .
pass in on $ext_if inet proto tcp from any to ( $ext_if:0 ) port
$tcp_services
pass in inet proto icmp all icmp-type $icmp_types
pass in on $ext_if proto tcp to port 21
pass in on $ext_if proto tcp to port > 4915
is also ok.
and this is [man spamd] itself
--------
regards
--
You received this mail because you are subscribed to misc@opensmtpd.org
To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
