Eric Shubert wrote:
That does mean that if you get more than 12 connections on port 25 in a
60 second timeframe by an IP you'll drop the rest of their connections
from their IP at the firewall level.
It's not targeted at clients; it's targeted at spam servers. Some of
them will connect 50 times or more at whatever rate their NIC can handle
and try joe-jobbing your server.
Wouldn't this be a good thing to have in the stock toaster firewall?
We had a discussion a couple years back on the development list (I think
before you joined the project) and it was decided that the stock toaster
would be targeted to be a "just works" install for small businesses and
individuals. The spam rules were left loose so that it would
(hopefully) never reject legitimate emails, which was shooting for the
goal of companies installing QMT to not having to worry about legitimate
emails being lost from a stock install. Those that want to customize it
for their environments can do so, but to keep it a "just works" type
thing a lot of things had to be left loose, if that makes sense.
It was also targeted at smaller businesses, which is why some people
complain that when they hit >= 1000 users they have to "do a lot of
work" to make it fit their environment.