Jim_Kessler_504
Jan 28, 2007Nimbostratus
Still Learning ...... Dig deeper into LTM and spam
My question is in regards to the code below. This was one of the iRule winners in 2005. I understand the syntax, but what I don't understand is where the data for 'harvesters' and 'spammers' and 'blacklist' etc... is being stored on the LTM
After reading the write up on the winner, the spam info is collected on a spam appliance and then sent to the LTM, where the iRule picks up the data. I am in a similar situation where I am collecting a lot of data in regards of spammers on the email servers and I would like to push this data to the LTM so the LTM can make decisions on the connections before the expensive processing is used. So, how is the data moved up to the LTM and how does the LTM know to refer to the data based on the code below.
Follow this link on the write up of this code.
http://devcentral.f5.com/Default.aspx?tabid=74
Is there something that I am overlooking?
Thanks in advance.
when CLIENT_ACCEPTED {
if {[matchclass [IP::remote_addr] equals $::harvesters] }{
TCP::respond "550 Message Rejected - Too many unknown recipients\r\n"
drop
}
if {[matchclass [IP::remote_addr]equals $::spammers] }{
TCP::respond "550 Message Rejected - Too much spam\r\n"
drop
}
if {[matchclass [IP::remote_addr] equals $::blacklisted] }{
TCP::respond "550 Message Rejected - client blacklisted\r\n"
drop
}
if {[matchclass [IP::remote_addr] equals $::infected]}{
TCP::respond "550 Message Rejected - Infected\r\n"
drop
}
if {[matchclass [IP::remote_addr] equals $::tarpit] }{
pool slow_rateclass
}
}