block mails from a particular country in postfix

Is there any possibility to block mails from country wise in Postfix.  for Example I need to block all mails coming from China. Please let me know the process.

Thanks,
Vijay.G
Vijay Kumar GajulaAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Tim EdwardsIT Team Lead - Unified Communications & CollaborationCommented:
Please take a look here, they were able to get this completed with Postfix:

http://freesoftware.zona-m.net/how-to-reject-spam-from-certain-countries-if-you-must-really-really-do-it/
0
Kent WSr. Network / Systems AdminCommented:
The most straightforward way is blocking the /8 IP block of the associated country, via iptables.
The list of IPv4 is here - http://www.iana.org/assignments/ipv4-address-space/ipv4-address-space.xhtml
Ipv6 is here - https://www.iana.org/assignments/bgp-extended-communities/bgp-extended-communities.xhtml#non-trans-ipv6

Regardless of your postfix config, if you block via iptables rules, they won't be able to get mail or any other packets to your server...like bruteforce, etc.
0
arnoldCommented:
http://www.postfix.org/addon.html has references to enhance functionality.
Blocking by firewall could lead to dos since there is a resource for blocking and attempts will be retried ..
Using rbl that will mimic an SMTP session and issue a permanent error when the recipient is identified in the SMTP session.

Rbl, you would use an internally created ..........
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Determine the Perfect Price for Your IT Services

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden with our free interactive tool and use it to determine the right price for your IT services. Download your free eBook now!

Natty GregIn Theory (IT)Commented:
Use PFblocker
0
Vijay Kumar GajulaAuthor Commented:
is PFblocker is open source? can we install it in my mail server which is UBUNTU back-end. If So Please let me know the procedure.
Thanks
0
Natty GregIn Theory (IT)Commented:
Yes PFblocker is open source, however it only installs on PFsense from what I know and found. So maybe use PFsense as your firewall then you'll have all this functionality
0
Vijay Kumar GajulaAuthor Commented:
Thanks
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Linux

From novice to tech pro — start learning today.