昨天接到服务商通知,说咱服务器流量峰值超标了,再不处理就断线了。上服务器上一看发现postfix被人盗用了,队列中的邮件都有10G了,急忙把postfix服务给停了。但还是有大堆的访问mail.xxx.com的流量。我的服务器上没有绑定这个mail.xxx.com的域名。
netstat的部分结果如下:
tcp 0 0 mail.xxx.com:http b3091285.crawl.yahoo.:35720 TIME_WAIT
tcp 0 0 mail.xxx.com:http baiduspider-123-125-7:58612 FIN_WAIT2
tcp 0 0 mail.xxx.com:http 222.184.232.189:12092 ESTABLISHED
tcp 0 0 mail.xxx.com:http 222.219.213.194:ncpm-pm ESTABLISHED
tcp 0 0 mail.xxx.com:http 210-242-214-11.HINET-:46801 ESTABLISHED
tcp 0 0 mail.xxx.com:http 222.184.232.189:53265 ESTABLISHED
tcp 0 0 mail.xxx.com:ftp 47.14.62.58.broad.gz.g:1775 ESTABLISHED
tcp 0 0 mail.xxx.com:38046 202.91.244.155:http TIME_WAIT
tcp 0 0 mail.xxx.com:37843 202.91.244.155:http TIME_WAIT
tcp 0 0 mail.xxx.com:http 222.219.213.194:radio ESTABLISHED
请问一下各位大鸟,怎么封掉访问mail.xxx.com来的请求?
netstat的部分结果如下:
tcp 0 0 mail.xxx.com:http b3091285.crawl.yahoo.:35720 TIME_WAIT
tcp 0 0 mail.xxx.com:http baiduspider-123-125-7:58612 FIN_WAIT2
tcp 0 0 mail.xxx.com:http 222.184.232.189:12092 ESTABLISHED
tcp 0 0 mail.xxx.com:http 222.219.213.194:ncpm-pm ESTABLISHED
tcp 0 0 mail.xxx.com:http 210-242-214-11.HINET-:46801 ESTABLISHED
tcp 0 0 mail.xxx.com:http 222.184.232.189:53265 ESTABLISHED
tcp 0 0 mail.xxx.com:ftp 47.14.62.58.broad.gz.g:1775 ESTABLISHED
tcp 0 0 mail.xxx.com:38046 202.91.244.155:http TIME_WAIT
tcp 0 0 mail.xxx.com:37843 202.91.244.155:http TIME_WAIT
tcp 0 0 mail.xxx.com:http 222.219.213.194:radio ESTABLISHED
请问一下各位大鸟,怎么封掉访问mail.xxx.com来的请求?
Select Language