Hi,
I need to block a whole network due to the fact that this network is sending massive bogous emails.
Here a sample:
2005-11-21 18:06:23 Received from <> H=(smtp.domain.com) [192.168.*.*] P=esmtp S=5353 id=xqS1wicRW1030158f@smtp.domain.com
2005-11-21 18:06:25 mx2.hanmail.net [211.43.197.144]: Connection refused
2005-11-21 18:06:28 SMTP error from remote mailer after RCPT TO:: host mx2.hanmail.net [211.43.197.172]: 550 5.1.1 ... Inactive mbox
2005-11-21 18:06:28 foruk@hanmail.net R=dnslookup T=remote_smtp: SMTP error from remote mailer after RCPT TO:: host mx2.hanmail.net [211.43.197.172]: 550 5.1.1 ... Inactive mbox
*** Frozen (delivery error message)
or
2005-11-21 17:11:19 Received from <> H=(smtp.domain.com) [192.168.*.*] P=esmtp S=5377 id=xW4k7WWWv0200523e@smtp.domain.com
2005-11-21 17:11:22 SMTP error from remote mailer after RCPT TO:: host mx9.hanmail.net [211.43.197.15]: 551 5.7.1 Relaying denied
2005-11-21 17:11:22 flatron2004@hanmail.net R=dnslookup T=remote_smtp: SMTP error from remote mailer after RCPT TO:: host mx9.hanmail.net [211.43.197.15]: 551 5.7.1 Relaying denied
*** Frozen (delivery error message)
and so on
Unfortunately the packet filter is "behind" the smtp proxy - this really makes no sense to me. Even for a novice users, the packet filter should be the first layer the packets have to pass.
I searched for a solution and found a thread where the user DNATed the packets to a 'nowhere host' (non existing IP address). I found out that this does not work either.
Blacklist etc. does not help either.
What is the solution here - I need to block this spammer.
Thanks
Ed
running: V5.206
This thread was automatically locked due to age.
