This article describes how to manage allowed IP addresses of SpamAssassin services.
To manage allowed IP adresses of SpamAssassin services, follow these steps:
Prepare SPAMASSASSIN_SERVICE_IDs of the SpamAssassin services. These identifiers can be obtained at Provider Control Panel > Infrastructure > Services Nodes > SpamAssassin service node > Packages tab > Applications subtab.
Log in to the Odin Automation Management Node.
Go to the
/usr/local/pem/bin/directory.Perform necessary operations:
Viewing a list of allowed IP addresses of a SpamAssassin service
SpamAssassin_ctl service listips SPAMASSASSIN_SERVICE_IDAdding allowed IP addresses for a SpamAssassin service:
SpamAssassin_ctl service addips SPAMASSASSIN_SERVICE_ID ALLOWED_IP_01 ALLOWED_IP_02 ...Adding allowed IP addresses to all SpamAssassin services:
SpamAssassin_ctl addips ALLOWED_IP_01 ALLOWED_IP_02 ...Removing allowed IP addresses of a SpamAssassin service:
SpamAssassin_ctl service removeips SPAMASSASSIN_SERVICE_ID ALLOWED_IP_01 ALLOWED_IP_02 ...
Wait until all SpamAssassin configuration tasks complete.
Restart all affected SpamAssassin services by using the following command on the corresponding SpamAssassin service nodes:
service spamassassin restartIf necessary, reconfigure your firewall for each affected SpamAssassin service:
- If an IP address was added to the list of allowed IP addresses of a SpamAssassin service, allow connections from the added IP address to the SpamAssassin service node's BackNet IP address (TCP ports 783, 784).
- If an IP address was removed from the list of allowed IP addresses of a SpamAssassin service, prohibit connections from the removed IP address to the SpamAssassin service node's BackNet IP address (TCP ports 783, 784);