1
# This is a test configuration. It listens on port 8025, waits for an incoming
2
# connection, and applies the following rules :
3
# - if the address is in the white list, then accept it and forward the
4
# connection to the server (local port 25)
5
# - if the address is in the black list, then immediately drop it
6
# - otherwise, wait up to 35 seconds. If the client talks during this time,
8
# - then accept the connection if it passes all the tests.
10
# Note that the rules are evaluated at every new chunk of data read, and at
11
# delay expiration. Rules which apply to incomplete data don't match as long
12
# as the timer has not expired.
14
listen block-fake-mailers
15
log 127.0.0.1:514 local0
25
tcp-request inspect-delay 35s
27
acl white_list src 127.0.0.2
28
acl black_fast src 127.0.0.3 # those ones are immediately rejected
29
acl black_slow src 127.0.0.4 # those ones are rejected after a delay
31
tcp-request content accept if white_list
32
tcp-request content reject if black_fast
33
tcp-request content reject if black_slow WAIT_END
34
tcp-request content reject if REQ_CONTENT
35
# note that it is possible to wait for the end of the analysis period
36
# before rejecting undesired contents
37
# tcp-request content reject if REQ_CONTENT WAIT_END
39
# on Linux+transparent proxy patch, it's useful to reuse the client'IP
40
# source 0.0.0.0 usesrc clientip
43
server mail 127.0.0.1:25