On Mon, Nov 12, 2012 at 04:16:40PM -0500, Jack S wrote:
> I just wanted to verify the format for the CIDR file is correct:
>
> To whitelist:
> 94.68.240.213 OK
> 94.68.240.214 OK
>
> To blacklist:
> 94.242.222.0/20 REJECT CIDR-BLOCK SPAMMERS->94.242.222.0/20
> 109.95.120.0/21 REJECT CIDR-BLOCK SPAMMERS->109.95.120.0/21
Yes for whitelist or blacklist entries, but on the other hand if
you want to make narrow exceptions for a broad reject rule in the
same table, you may not want to make those exceptions disable other
rules in other Postfix access control actions. If so:
192.0.2.1 DUNNO exception reason
192.0.2.0/24 REJECT rejection reason
With CIDR and regexp tables any exception must be listed *above*
any reject rules.
--
Viktor.
