From owner-freebsd-questions@FreeBSD.ORG  Sun Oct 19 16:25:21 2008
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 0F66110656CC
	for <freebsd-questions@freebsd.org>;
	Sun, 19 Oct 2008 16:25:21 +0000 (UTC) (envelope-from jos@webrz.net)
Received: from webrz.xs4all.nl (webrz.xs4all.nl [82.95.248.216])
	by mx1.freebsd.org (Postfix) with ESMTP id C3BB38FC1A
	for <freebsd-questions@freebsd.org>;
	Sun, 19 Oct 2008 16:25:20 +0000 (UTC) (envelope-from jos@webrz.net)
Received: from webrz.xs4all.nl (localhost.webrz.net [127.0.0.1])
	by webrz.xs4all.nl (Postfix) with ESMTP id 701BAFD06C
	for <freebsd-questions@freebsd.org>;
	Sun, 19 Oct 2008 18:25:42 +0200 (CEST)
Received: from [10.10.10.27] (tethys.webrz.net [10.10.10.27])
	by webrz.xs4all.nl (Postfix) with ESMTP id 3A6F8FD067
	for <freebsd-questions@freebsd.org>;
	Sun, 19 Oct 2008 18:25:39 +0200 (CEST)
Message-ID: <48FB5F6C.6070205@webrz.net>
Date: Sun, 19 Oct 2008 18:25:16 +0200
From: Jos Chrispijn <jos@webrz.net>
User-Agent: Thunderbird 2.0.0.16 (Windows/20080708)
MIME-Version: 1.0
To: FreeBSD Questions <freebsd-questions@freebsd.org>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-AV-Checked: ClamAV using ClamSMTP @ prometheus.webrz.net
Subject: Postfix communicating with IPFW
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 19 Oct 2008 16:25:21 -0000

Dear FQ,

I recently got attacked with some dsl subscribers of this (imaginary) 
some.net domain.

These subscribers present themselves as [ip address.dynamic.some.net].
Postfix SMTP server: errors from 66-66-66-166.dynamic.some.net 
[66.66.66.166]

What I would like to do is to generate a some.net list with all these 
dynamic ip addresses and provide them to my ipfw firewall in order to 
block them on the moment that they try to relay a 2nd time thru my 
server. This will cause less process time as it is quicker to send 
someone home by the doorkeeper (ipfw) rather than check his credentials 
first (Postfix) and tell him to get lost.

Is there any way to let postfix 'communicate' with my ipfw firewall?

Jos Chrispijn