質問編集履歴

1

文章の修正

2020/09/30 01:54

投稿

sarasa_38765
sarasa_38765

スコア34

test CHANGED
File without changes
test CHANGED
@@ -1,4 +1,8 @@
1
- #Fail2banでpostfixのアクセス制限をしています。SASL等の分はうまく機能しているのですが、以下のような場合に反応していないようなのです。以下の事例でも機能する設定方法を教えてください。OSはcentOS7になります。
1
+ #Fail2banでpostfixのアクセス制限をしています。SASL等の分はうまく機能しているのですが、以下のような場合に反応していないようなのです。
2
+
3
+
4
+
5
+
2
6
 
3
7
 
4
8
 
@@ -41,3 +45,117 @@
41
45
 
42
46
 
43
47
  ```
48
+
49
+
50
+
51
+ #現状のpostfix関連の設定は以下になります
52
+
53
+
54
+
55
+ ```
56
+
57
+ [postfix]
58
+
59
+ # To use another modes set filter parameter "mode" in jail.local:
60
+
61
+ enabled = true
62
+
63
+ mode = more
64
+
65
+ port = smtp,465,submission
66
+
67
+ logpath = %(postfix_log)s
68
+
69
+ backend = %(postfix_backend)s
70
+
71
+ bantime = 8640000
72
+
73
+ findtime = 43200
74
+
75
+ maxretry = 1
76
+
77
+
78
+
79
+
80
+
81
+ [postfix-rbl]
82
+
83
+
84
+
85
+ filter = postfix[mode=rbl]
86
+
87
+ port = smtp,465,submission
88
+
89
+ logpath = %(postfix_log)s
90
+
91
+ backend = %(postfix_backend)s
92
+
93
+ maxretry = 1
94
+
95
+
96
+
97
+ [postfix-ddos]
98
+
99
+ filter = postfix[mode=ddos]
100
+
101
+ port = smtp,465,submission
102
+
103
+ logpath = %(postfix_log)s
104
+
105
+ backend = %(postfix_backend)s
106
+
107
+ enabled = true
108
+
109
+ bantime = 864000
110
+
111
+ findtime = 43200
112
+
113
+ maxretry = 1
114
+
115
+
116
+
117
+
118
+
119
+
120
+
121
+ [postfix-sasl]
122
+
123
+
124
+
125
+ enabled = true
126
+
127
+ filter = postfix-sasl
128
+
129
+ action = iptables-multiport[name=postfix-sasl, port="smtp,smtps,submission", pro
130
+
131
+ tocol=tcp]
132
+
133
+ # sendmail-whois[name=postfix-sasl, dest=************** , s
134
+
135
+ ender=fail2ban@domain.jp]
136
+
137
+ port = smtp,465,submission,imap,imaps,pop3,pop3s
138
+
139
+ # You might consider monitoring /var/log/mail.warn instead if you are
140
+
141
+ # running postfix since it would provide the same log lines at the
142
+
143
+ # "warn" level but overall at the smaller filesize.
144
+
145
+ logpath = %(postfix_log)s
146
+
147
+ backend = %(postfix_backend)s
148
+
149
+ bantime = 8640000
150
+
151
+ findtime = 43200
152
+
153
+ maxretry = 1
154
+
155
+
156
+
157
+
158
+
159
+
160
+
161
+ ```