Date: Mon, 6 Mar 2006 15:32:05 +0000 From: Baldur Gislason <baldur@foo.is> To: Cesar <listas@itm.net.br> Cc: freebsd-hackers@freebsd.org Subject: Re: Spam from NAT boxes Message-ID: <20060306153205.GM20678@gremlin.foo.is> In-Reply-To: <009601c6411b$0d455d90$0e4fdfc8@ironman> References: <009601c6411b$0d455d90$0e4fdfc8@ironman>
next in thread | previous in thread | raw e-mail | index | archive | help
With the fwd rule, you can only redirect to 127.0.0.1 when you want your machine to intercept the connection. I'd suggest putting a tcp proxy or smtp proxy listening on 127.0.0.1 port 25 that just forwards to the mailserver box. Baldur On Mon, Mar 06, 2006 at 09:39:46AM -0300, Cesar wrote: > Hi, > > I have some NAT boxes running FreeBSD, each of these boxes do NAT for > like 100+ people. > Almost everyday my IPs got blacklisted because of spam. I cant block the > smtp traffic going out became some people need it to send true e-mails. > Are there any tool to detect/block those spams? > > I tought in a program that receive the connection diverted/forwarded by > ipfw and then deliver it to SpamAssassin ... > > I also have an e-mail server fully configurated with anti-spam, > anti-virus ... I tried forward to this e-mail server all my NAT box tcp > connections to port 25. > > ipfw add fwd xx.xx.xx.xx,25 tcp from 192.168.0.0/24 to any 25 > > I got some matches in this rule when I try to send an email, but I didnt > get redirected to my email server. > > > Any ideas and/or sugestions? > > > Thanks > > _______________________________________________ > freebsd-hackers@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-hackers > To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@freebsd.org" >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060306153205.GM20678>