IP drop list
Joseph Tam
jtam.home at gmail.com
Tue Mar 3 02:41:51 UTC 2015
Dave McGuire writes:
>>>> then setup fail2ban to manage extrafields
>>>
>>> Now that's a very interesting idea, thank you! I will investigate this.
>>
>> If you don't expect yor firewall to handle 45K+ IPs, I'm not how you
>> expect dovecot will handle a comma separated string with 45K+ entries
>> any better.
>
> My firewall can handle that without breaking a sweat. I just haven't
> found a way (that I'm comfortable with) to automatically inject rules
> into it from a machine on the network.
>
> Doing it via a DNSBL is an elegant solution to the problem, IMO.
I'm agnostic as far as which method you want to use. All I'm saying is
that using dovecot's allow_net facility is as difficult, if not
more so, than letting your firewall handle it.
Joseph Tam <jtam.home at gmail.com>
More information about the dovecot
mailing list