This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to blackhole mails from one IP address in SMTP

We receive thousands of e-mails from one IP address (not listed in ripe.net) and they fill up our smtp proxy content manager. I added the IP to the sender blacklist, but they still appear. How can I just blackhole all e-mails on IP basis?
We want to still check all other spam mails in smtp proxy content manager as there are some "real" mails we dequeue there.

This thread was automatically locked due to age.

0 ^-^Neko over 19 years ago

I've never tried it... but how about using the Expression filter feature?

With the expression filter...you can filter out mails based on the body... in the body you have the IP address of the sender... how about filtering it out?

Otherwise using SPF Fail check... that reverse checks validity of MX record and mail server for that domain...

...using temporarily "Verify Sender" could help you in some cases... but I would be careful...because some payment gateways send out confirmation email from non existing email accounts... and you might not get the payment confirmation...

Let me know if you manage to solve the problem...

Take care...
Neko
Cancel
Vote Up 0 Vote Down

Cancel
0 drees over 19 years ago

You could just add a rule to drop SMTP traffic from that host...
Cancel
Vote Up 0 Vote Down

Cancel