On 09/05/03 at 14:21 -0400, chris opined:
> >In addition to suggestions made by others, make sure that you have
> >the addresses corresponding to RBL responses included in your local
> >blacklist, or else the RBL servers won't actually cause SMTP
> >connections to be rejected. For the RBLs listed above, you need at
> >least:
> >
> >127.0.0.2-127.0.0.3 ; *.3 for Korean IPs in cn-kr.blackholes.us
> >127.1.0.1-127.1.0.32 ; opm.blitzed.org
> >
> >If you want to determine if you are successfully rejecting connections
> >based on RBL responses, filter your logs for entries containing
> >'blacklisted per rbl'.
>
> Uh... wait... if you put an RBL into the RBL list, but don't ALSO put the
> those IPs into the blacklisted IPs list... then nothing actually happens?
Yup. This allows some control of granularity when using RBLs that return
different response addresses depending on the reason for a given listing.
E.g., cn-kr.blackholes.us returns 127.0.0.2 for Chinese IPs and 127.0.0.3
for Korean. If for some reason you wanted to block cn but not kr, you'd
leave 127.0.0.3 out of your local blacklist (you could also just use
cn.blackholes.us, but that wouldn't illustrate the present point... ;-] ).
--
Christopher Bort | [EMAIL PROTECTED]
Webmaster, Global Homes | [EMAIL PROTECTED]
<http://www.globalhomes.com/>
#############################################################
This message is sent to you because you are subscribed to
the mailing list <[EMAIL PROTECTED]>.
To unsubscribe, E-mail to: <[EMAIL PROTECTED]>
To switch to the DIGEST mode, E-mail to <[EMAIL PROTECTED]>
To switch to the INDEX mode, E-mail to <[EMAIL PROTECTED]>
Send administrative queries to <[EMAIL PROTECTED]>
