warning: Connection rate limit exceeded: 10 from localhost[127.0.0.1] for service 127.0.0.1:10025

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
4 messages Options
Reply | Threaded
Open this post in threaded view
|

warning: Connection rate limit exceeded: 10 from localhost[127.0.0.1] for service 127.0.0.1:10025

Helmut Schneider
Hi,

postfix with inbound and outbound instance, amavisd in the middle.
Amavisd relays through 127.0.0.1:10025.

[helmut@BSDHelmut ~]$ postfix.sh -i postfix-in -C 'postconf
smtpd_client_connection_count_limit'
Getting Instances ... done
Instance 'postfix-in': smtpd_client_connection_count_limit = 4
[helmut@BSDHelmut ~]$

[helmut@BSDHelmut ~]$ postfix.sh -i postfix-in -C 'postconf
smtpd_client_connection_limit_exceptions'
Getting Instances ... done
Instance 'postfix-in': smtpd_client_connection_limit_exceptions =
/usr/local/etc/postfix-in/smtpd_client_connection_limit_exceptions
[helmut@BSDHelmut ~]$

[helmut@BSDHelmut ~]$ cat
/usr/local/etc/postfix-in/smtpd_client_connection_limit_exceptions
# My Networks
$mynetworks

# OpenVPN Host Helmut
10.0.124.129/32
[helmut@BSDHelmut ~]$

[helmut@BSDHelmut ~]$ postfix.sh -i postfix-in -C 'postconf mynetworks'
Getting Instances ... done
Instance 'postfix-in': mynetworks = 127.0.0.0/8 [::1]/128
192.168.124.0/24 10.0.124.0/24 [fe80::]/64
[helmut@BSDHelmut ~]$

postfix-in/master.cf:

### This is the after-filter smtpd, it receives mail from amavisd to
port 10025 ###
127.0.0.1:10025 inet    n       -       y       -       -       smtpd
         -o content_filter=
         -o smtpd_delay_reject=no
         -o smtpd_client_restrictions=permit_mynetworks,reject
         -o smtpd_helo_restrictions=
         -o smtpd_sender_restrictions=
         -o smtpd_recipient_restrictions=permit_mynetworks,reject
         -o smtpd_data_restrictions=reject_unauth_pipelining
         -o smtpd_end_of_data_restrictions=
         -o smtpd_restriction_classes=
         -o mynetworks=127.0.0.0/8
         # -o
receive_override_options=no_header_body_checks,no_unknown_recipient_checks,no_milters
         -o receive_override_options=no_unknown_recipient_checks,no_milters
         -o local_header_rewrite_clients=
         -o smtpd_client_connection_count_limit=50

Oct 29 11:31:12 BSDHelmut postfix-in/smtpd[90888]: warning: Connection
rate limit exceeded: 13 from localhost[127.0.0.1] for service
127.0.0.1:10025

What did I miss?

Thank you!

Reply | Threaded
Open this post in threaded view
|

Re: warning: Connection rate limit exceeded: 10 from localhost[127.0.0.1] for service 127.0.0.1:10025

Matus UHLAR - fantomas
On 29.10.20 11:43, Helmut Schneider wrote:
>[helmut@BSDHelmut ~]$ postfix.sh -i postfix-in -C 'postconf
>smtpd_client_connection_limit_exceptions'

you apparently mean smtpd_client_event_limit_exceptions

>postfix-in/master.cf:
>
>### This is the after-filter smtpd, it receives mail from amavisd to
>port 10025 ###
>127.0.0.1:10025 inet    n       -       y       -       -       smtpd
>        -o content_filter=
>        -o smtpd_delay_reject=no
>        -o smtpd_client_restrictions=permit_mynetworks,reject
>        -o smtpd_helo_restrictions=
>        -o smtpd_sender_restrictions=
>        -o smtpd_recipient_restrictions=permit_mynetworks,reject
>        -o smtpd_data_restrictions=reject_unauth_pipelining
>        -o smtpd_end_of_data_restrictions=
>        -o smtpd_restriction_classes=
>        -o mynetworks=127.0.0.0/8
>        # -o receive_override_options=no_header_body_checks,no_unknown_recipient_checks,no_milters
>        -o receive_override_options=no_unknown_recipient_checks,no_milters
>        -o local_header_rewrite_clients=
>        -o smtpd_client_connection_count_limit=50
>
>Oct 29 11:31:12 BSDHelmut postfix-in/smtpd[90888]: warning: Connection
>rate limit exceeded: 13 from localhost[127.0.0.1] for service
>127.0.0.1:10025
>
>What did I miss?

smtpd_client_connection_rate_limit


--
Matus UHLAR - fantomas, [hidden email] ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Posli tento mail 100 svojim znamim - nech vidia aky si idiot
Send this email to 100 your friends - let them see what an idiot you are
Reply | Threaded
Open this post in threaded view
|

Re: warning: Connection rate limit exceeded: 10 from localhost[127.0.0.1] for service 127.0.0.1:10025

Helmut Schneider
Am 29.10.2020 um 13:44 schrieb Matus UHLAR - fantomas:
> On 29.10.20 11:43, Helmut Schneider wrote:
>>What did I miss?
>
> smtpd_client_connection_rate_limit

Hum, the obvious...Thank you.

Reply | Threaded
Open this post in threaded view
|

Re: warning: Connection rate limit exceeded: 10 from localhost[127.0.0.1] for service 127.0.0.1:10025

Viktor Dukhovni
In reply to this post by Helmut Schneider
On Thu, Oct 29, 2020 at 11:43:41AM +0100, Helmut Schneider wrote:

> [helmut@BSDHelmut ~]$ postfix.sh -i postfix-in -C 'postconf
> smtpd_client_connection_limit_exceptions'
> Getting Instances ... done
> Instance 'postfix-in': smtpd_client_connection_limit_exceptions =
> /usr/local/etc/postfix-in/smtpd_client_connection_limit_exceptions

You're specifying the list of IP addresses in an external file:

> [helmut@BSDHelmut ~]$ cat
> /usr/local/etc/postfix-in/smtpd_client_connection_limit_exceptions
> # My Networks
> $mynetworks

That file seems to expect expansion of "$main_dot_cf_parameter"
variables, which best I can tell/recall is not supported in such
external files.

Variable expansion in most main.cf parameters happens *before*
they are used.  By the time the parameter is split into tokens
and some are interpreted as file names to read, ... all the
expansions are already done, and no further variable expansion
takes place.

--
    Viktor.