Trying to setup PF and spamd...hell!

elekktretterr at exemail.com.au elekktretterr at exemail.com.au
Wed Aug 8 08:30:38 PDT 2007


I decided to try spamd/greylisting so I configured pf.conf the following way:

rdr pass on $int_if proto tcp from <whitelist> to $int_if port smtp ->
127.0.0.1 port smtp
rdr pass on $int_if proto tcp from <blacklist> to $int_if port smtp ->
127.0.0.1 port 8025
rdr pass on $int_if proto tcp from <spamd> to $int_if port smtp ->
127.0.0.1 port 8025
rdr pass on $int_if proto tcp from <spamd-white> to $int_if port smtp ->
127.0.0.1 port smtp
rdr pass on $int_if proto tcp from !<spamd-white> to $int_if port smtp ->
127.0.0.1 port 8025


The filtering machine is the postfix server itself as you can see.

Ive installed and configured spamd.conf the following way.

daria# less /usr/pkg/etc/spamd.conf
all:\
        :spews1:spews2:china:korea:russia:mycustom-black:

# Mirrored from http://www.spews.org/spews_list_level1.txt
spews1:\
        :black:\
        :msg="SPAM. Your address %A is in the spews level 1 database\n\
        See http://www.spews.org/ask.cgi?x=%A for more details":\
        :method=http:\
        :file=www.openbsd.org/spamd/spews_list_level1.txt.gz:

# Mirrored from http://www.spews.org/spews_list_level2.txt
spews2:\
        :black:\
        :msg="SPAM. Your address %A is in the spews level 2 database\n\
        See http://www.spews.org/ask.cgi?x=%A for more details":\
        :method=http:\
        :file=www.openbsd.org/spamd/spews_list_level2.txt.gz:

# Mirrored from http://www.okean.com/chinacidr.txt
china:\
        :black:\
        :msg="SPAM. Your address %A appears to be from China\n\
        See http://www.okean.com/asianspamblocks.html for more details":\
        :method=http:\
        :file=www.openbsd.org/spamd/chinacidr.txt.gz:

# Mirrored from http://www.okean.com/koreacidr.txt
korea:\
        :black:\
        :msg="SPAM. Your address %A appears to be from Korea\n\
        See http://www.okean.com/asianspamblocks.html for more details":\
        :method=http:\
        :file=www.openbsd.org/spamd/koreacidr.txt.gz:

# Mirrored from
http://www.completewhois.com/statistics/data/ips-bycountry/rirstats/RU-cidr.txt
russia:\
        :black:\
        :msg="SPAM. Your address %A appears to be a source of spam email\n\
        Please contact your ISP regarding this issue":\
        :method=http:\
        :file=www.completewhois.com/statistics/data/ips-bycountry/rirstats/RU-cidr.txt:

# My custom blacklist
mycustom-black:\
        :black:\
        :msg="SPAM. Your address %A is in my spammers list. Please stop.":\
        :method=file:\
        :file=/etc/blacklist.txt:

but when i run spamd-setup, i get a message after about 10 seconds: Broken
pipe.

also when i run spamdb it says there is no database in /var/db/spamd.

When I try to send an email through it gets stopped somewhere after the
redirection. Ive tried to add the IP address of my ISPs mail server to the
whitelist but it just seeems nothing gets through but as soon as I
comment:

rdr pass on $int_if proto tcp from !<spamd-white> to $int_if port smtp ->
127.0.0.1 port 8025

everything gets delivered the normal way.

Is anyone using spamd + pf? Can you show me how you configured yours?

Thanks,

Petr







More information about the Users mailing list