Spam from NAT boxes
Baldur Gislason
baldur at foo.is
Mon Mar 6 07:32:13 PST 2006
With the fwd rule, you can only redirect to 127.0.0.1 when you want your machine to
intercept the connection.
I'd suggest putting a tcp proxy or smtp proxy listening on 127.0.0.1 port 25
that just forwards to the mailserver box.
Baldur
On Mon, Mar 06, 2006 at 09:39:46AM -0300, Cesar wrote:
> Hi,
>
> I have some NAT boxes running FreeBSD, each of these boxes do NAT for
> like 100+ people.
> Almost everyday my IPs got blacklisted because of spam. I cant block the
> smtp traffic going out became some people need it to send true e-mails.
> Are there any tool to detect/block those spams?
>
> I tought in a program that receive the connection diverted/forwarded by
> ipfw and then deliver it to SpamAssassin ...
>
> I also have an e-mail server fully configurated with anti-spam,
> anti-virus ... I tried forward to this e-mail server all my NAT box tcp
> connections to port 25.
>
> ipfw add fwd xx.xx.xx.xx,25 tcp from 192.168.0.0/24 to any 25
>
> I got some matches in this rule when I try to send an email, but I didnt
> get redirected to my email server.
>
>
> Any ideas and/or sugestions?
>
>
> Thanks
>
> _______________________________________________
> freebsd-hackers at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
> To unsubscribe, send any mail to "freebsd-hackers-unsubscribe at freebsd.org"
>
More information about the freebsd-hackers
mailing list