Hi List
I have policyd set up to "HOLD" mails which exceed the quota limit.
The quota limit is set to 200 for a time period of 3600s.
I use this policy to then manually decide if the mails are a kind of
spam-flooding or not.
The problem is that mails get put on HOLD even the counter did not reach its
limit yet:
**
[2010/10/25-20:05:05 - 24344] [CORE] INFO: module=Quotas, action=hold,
host=62.43.191.51, helo=correo.ensumacongresos.com, from=RePlAcEd, to=RePlAcEd,
reason=quota_match, policy=3, quota=4, limit=5, track=Sender:RePlAcEd,
counter=MessageCount, quota=142/200 (71.2%)
[2010/10/25-20:15:07 - 32558] [CORE] INFO: module=Quotas, action=hold,
host=62.43.191.51, helo=correo.ensumacongresos.com, from=RePlAcEd, to=RePlAcEd,
reason=quota_match, policy=3, quota=4, limit=5, track=Sender:RePlAcEd,
counter=MessageCount, quota=179/200 (89.7%)
[2010/10/25-20:45:38 - 31088] [CORE] INFO: module=Quotas, action=hold,
host=62.43.191.51, helo=correo.ensumacongresos.com, from=RePlAcEd, to=RePlAcEd,
reason=quota_match, policy=3, quota=4, limit=5, track=Sender:RePlAcEd,
counter=MessageCount, quota=63/200 (31.4%)
[2010/10/25-20:49:18 - 26760] [CORE] INFO: module=Quotas, action=hold,
host=61.152.221.18, helo=mail.xintv.com, from=RePlAcEd, to=RePlAcEd,
reason=quota_match, policy=3, quota=4, limit=5, track=Sender:RePlAcEd,
counter=MessageCount, quota=76/200 (38.2%)
[2010/10/25-20:51:24 - 26555] [CORE] INFO: module=Quotas, action=hold,
host=146.228.100.12, helo=mstore02.switzerland.net, from=RePlAcEd, to=RePlAcEd,
reason=quota_match, policy=3, quota=4, limit=5, track=Sender:RePlAcEd,
counter=MessageCount, quota=146/200 (73.0%)
[2010/10/25-21:00:44 - 1279] [CORE] INFO: module=Quotas, action=hold,
host=62.43.191.51, helo=correo.ensumacongresos.com, from=RePlAcEd, to=RePlAcEd,
reason=quota_match, policy=3, quota=4, limit=5, track=Sender:RePlAcEd,
counter=MessageCount, quota=119/200 (59.3%)
[2010/10/25-21:06:31 - 26760] [CORE] INFO: module=Quotas, action=hold,
host=139.146.133.138, helo=cns.cnscorp.com, from=RePlAcEd, to=RePlAcEd,
reason=quota_match, policy=3, quota=4, limit=5, track=Sender:RePlAcEd,
counter=MessageCount, quota=140/200 (70.0%)
***
The configuration looks like this:
mysql> select * from quotas_limits;
+----+----------+--------------+--------------+---------+----------+
| ID | QuotasID | Type | CounterLimit | Comment | Disabled |
+----+----------+--------------+--------------+---------+----------+
| 4 | 3 | MessageCount | 200 | | 0 |
| 5 | 4 | MessageCount | 200 | | 0 |
+----+----------+--------------+--------------+---------+----------+
2 rows in set (0.00 sec)
mysql> select * from quotas;
+----+----------+--------------------------+--------------------+--------+---------+-------------------------+-------------------------------+----------+
| ID | PolicyID | Name | Track | Period |
Verdict | Data | Comment | Disabled |
+----+----------+--------------------------+--------------------+--------+---------+-------------------------+-------------------------------+----------+
| 3 | 2 | Outgoing (Sender) Limit | Sender:u...@domain | 3600 | HOLD
| Rate limiting in effect | | 0 |
| 4 | 3 | Receiving (Sender) Limit | Sender:u...@domain | 3600 | HOLD
| Rate limiting in effect | Default Reciving Sender Limit | 0 |
+----+----------+--------------------------+--------------------+--------+---------+-------------------------+-------------------------------+----------+
2 rows in set (0.00 sec)
mysql> select * from policies;
+----+--------------------+----------+----------------------------------------+----------+
| ID | Name | Priority | Description |
Disabled |
+----+--------------------+----------+----------------------------------------+----------+
| 1 | Default | 5 | Default System Policy |
0 |
| 2 | Default Outbound | 10 | Default Outbound System Policy |
0 |
| 3 | Default Inbound | 10 | Default Inbound System Policy |
0 |
| 4 | Default Internal | 20 | Default Internal System Policy |
1 |
| 6 | HOLD-MAILS | 100 | Hold Mails in queue |
0 |
| 7 | Graylisting-policy | 6 | Policy to define which ips to greylist |
0 |
+----+--------------------+----------+----------------------------------------+----------+
6 rows in set (0.00 sec)
mysql> select * from policy_members;
+----+----------+-----------------------------------------------+--------------------+------------------------------+----------+
| ID | PolicyID | Source | Destination
| Comment | Disabled |
+----+----------+-----------------------------------------------+--------------------+------------------------------+----------+
| 1 | 1 | NULL | NULL
| NULL | 0 |
| 2 | 2 | %internal_ips,%internal_domains |
!%internal_domains | NULL | 0 |
| 3 | 3 | !%internal_ips,!%internal_domains |
%internal_domains | NULL | 0 |
| 4 | 4 | %internal_ips,%internal_domains |
%internal_domains | NULL | 0 |
| 6 | 6 | [email protected] | any
| HOLD-EXAMPLE | 1 |
| 7 | 7 | !%internal_ips | any
| Catches all not internal ips | 0 |
+----+----------+-----------------------------------------------+--------------------+------------------------------+----------+
6 rows in set (0.01 sec)
mysql> select * from policy_groups;
+----+------------------+----------+---------+
| ID | Name | Disabled | Comment |
+----+------------------+----------+---------+
| 1 | internal_ips | 0 | NULL |
| 3 | internal_domains | 0 | |
+----+------------------+----------+---------+
2 rows in set (0.00 sec)
mysql> select * from policy_group_members;
+----+---------------+---------------+----------+------------------+
| ID | PolicyGroupID | Member | Disabled | Comment |
+----+---------------+---------------+----------+------------------+
| 1 | 1 | 130.92.0.0/16 | 0 | NULL |
| 6 | 3 | @unibe.ch | 0 | |
| 8 | 3 | @*.unibe.ch | 0 | Unibe Subdomains |
+----+---------------+---------------+----------+------------------+
3 rows in set (0.00 sec)
I am running the latest stable RC version (Policyd (ClueBringer) v2.0.11RC1) of
policyd with the wildcard patch from nigel (thanks again).
Thanks in advance for your help
Simon Staehelin
University of Berne
Postmaster
_______________________________________________
Users mailing list
[email protected]
http://lists.policyd.org/mailman/listinfo/users
