From owner-freebsd-questions@FreeBSD.ORG  Tue Oct 30 21:20:55 2007
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id A8DB616A41A
	for <freebsd-questions@freebsd.org>;
	Tue, 30 Oct 2007 21:20:55 +0000 (UTC)
	(envelope-from artur@eboundhost.com)
Received: from em.eboundhost.com (em.eboundhost.com [65.91.249.22])
	by mx1.freebsd.org (Postfix) with ESMTP id 807CC13C480
	for <freebsd-questions@freebsd.org>;
	Tue, 30 Oct 2007 21:20:55 +0000 (UTC)
	(envelope-from artur@eboundhost.com)
Received: from localhost (localhost.localdomain [127.0.0.1])
	by em.eboundhost.com (Postfix) with ESMTP id 56AE64C41F4
	for <freebsd-questions@freebsd.org>;
	Tue, 30 Oct 2007 16:02:47 -0500 (CDT)
X-Virus-Scanned: amavisd-new at 
X-Spam-Score: 1.48
X-Spam-Level: *
X-Spam-Status: No, score=1.48 tagged_above=-10 required=5 tests=[AWL=-0.229,
	BAYES_50=0.001, DNS_FROM_RFC_POST=1.708]
Received: from em.eboundhost.com ([127.0.0.1])
	by localhost (em.eboundhost.com [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id zgOach+oIehX for <freebsd-questions@freebsd.org>;
	Tue, 30 Oct 2007 16:02:45 -0500 (CDT)
Received: from mobility (adsl-75-11-83-244.dsl.chcgil.sbcglobal.net
	[75.11.83.244])
	by em.eboundhost.com (Postfix) with ESMTP id 6F71E4C41F3
	for <freebsd-questions@freebsd.org>;
	Tue, 30 Oct 2007 16:02:45 -0500 (CDT)
Message-ID: <002001c81b37$7dc605e0$6b00a8c0@mobility>
From: "eBoundHost: Artur" <artur@eboundhost.com>
To: <freebsd-questions@freebsd.org>
Date: Tue, 30 Oct 2007 15:57:31 -0500
MIME-Version: 1.0
Content-Type: text/plain; format=flowed; charset="iso-8859-1";
	reply-type=original
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.3138
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3198
Subject: how many IPFW rules?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Oct 2007 21:20:55 -0000

Hello FreeBSD people!

I have a smtp server under attack by what seems like a large botnet.  My 
inetd is choking under the load and not allowing real mail through.  I've 
successfully used tshark to find the offenders and put them into ipfw 
firewall for port 25.

So here is my question, I'm currently blocking 55,529 ip addresses and the 
server seems pretty snappy, with no noticible load or lag.  How many more 
rulesets will I be able to handle before things start getting fuzzy?

Best Regards,

Artur
eBoundHost.com
http://www.eboundhost.com