On Tue, 23 May 2006 11:28:52 +0530 Ramprasad
<ram(_at_)netcore(_dot_)co(_dot_)in> wrote:
Wov,
I get a feeling ,every SPF advocate is having a crystal ball. ( when do
I get mine ? ) :-)
We wouldn't be volunteering our time if we didn't think it was important.
On a more serious note, I understand the best way of doing SPF checks
are at the MTA level. Are there any implications. I have 8 load balanced
servers and typically the peak time mail rate is 20K mails per hour per
server. How will postfix+SPF check respond to so many requests.
Depends on what you use to do the check and where you do it in sequence.
Do your SPF checks after RCPT TO and you've already rejected invalid rcpt
to.
If you reject at rcpt to it will save you bandwidth upstream (reject before
data, so don't accept payloads that you don't want) and save you CPU
downstream because SA won't burn CPU on messages already rejected.
Also If I do SPF checks at MTA level can I hash our those checks in SA.
I cant play around with my live environment and on test environments
I can never simulate the numbers. So I am doing some searching. (And to
keep my management impressed I have to make sure they would be
relevant :-) dont I ?)
Sure. You can simulate it though. Now that would be a way to really
impress them.
Scott K
-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com