diff options
author | Vsevolod Stakhov <vsevolod@highsecure.ru> | 2015-05-14 18:33:07 +0100 |
---|---|---|
committer | Vsevolod Stakhov <vsevolod@highsecure.ru> | 2015-05-14 18:33:07 +0100 |
commit | 9c2cf79a2b3af60df475472bed36332b7fa8041b (patch) | |
tree | 8470f627aed4eacf4c40b9c95d72f51358fa5fc1 /doc | |
parent | fdd416f3858edc3bc294ac3bcea21df236b88318 (diff) | |
download | rspamd-9c2cf79a2b3af60df475472bed36332b7fa8041b.tar.gz rspamd-9c2cf79a2b3af60df475472bed36332b7fa8041b.zip |
Add multimap documentation.
Diffstat (limited to 'doc')
-rw-r--r-- | doc/markdown/modules/multimap.md | 60 |
1 files changed, 60 insertions, 0 deletions
diff --git a/doc/markdown/modules/multimap.md b/doc/markdown/modules/multimap.md index e69de29bb..75d060e7d 100644 --- a/doc/markdown/modules/multimap.md +++ b/doc/markdown/modules/multimap.md @@ -0,0 +1,60 @@ +# Multimap module + +Multimap module is designed to handle rules that are based on different types of maps. + +## Principles of work + +Maps in rspamd are the files or HTTP links that are automatically monitored and reloaded +if changed. For example, maps can be defined as following: + + "http://example.com/file" + "file:///etc/rspamd/file.map" + "/etc/rspamd/file.map" + +Rspamd respects `304 Not Modified` reply from HTTP server allowing to save traffic +when a map has not been actually changed since last load. For file maps, rspamd uses normal +`mtime` attribute (time modified). The global map watching settings are defined in the +`options` section of the configuration file: + +* `map_watch_interval`: defines time when all maps are rescanned; the actual check interval is jittered to avoid simultaneous checking (hence, the real interval is from this value up to the this interval doubled). + +Multimap module allows to build rules based on the dynamic maps content. Rspamd supports the following +map types in this module: + +* `hash map` - a list of domains or `user@domain` +* `ip map` - an effective radix trie of `ip/mask` values (supports both IPv4 and IPv6 addresses) +* `cdb` - constant database format (files only) + +Multimap has different message attributes to be checked via maps. + +## Configuration + +The module itself contains a set of rules in form: + + symbol { type = type; map = uri; [optional params] } + +Type attribute means what is matched with this map. The following types are supported: + +* `ip` - matches source IP of message (radix map) +* `from` - matches envelope from (or header `From` if envelope from is absent) +* `rcpt` - matches any of envelope rcpt or header `To` if envelope info is missing +* `header` - matches any header specified (must have `header = "Header-Name"` configuration attribute) +* `dnsbl` - matches source IP against some DNS blacklist (see [RBL](rbl.md) documentation for details) + +DNS maps has historic support. + +Maps can also have a special URL format in style: + + map = "cdb:///path/to/file.cdb"; + +which is treated as CDB map by rspamd. + +Here is an example configuration of multimap module: + +~~~nginx +multimap { + test { type = "ip"; map = "/tmp/ip.map"; symbol = "TESTMAP"; } + spamhaus { type = "dnsbl"; map = "pbl.spamhaus.org"; symbol = "R_IP_PBL"; + description = "PBL dns block list"; } # Better use RBL module instead +} +~~~
\ No newline at end of file |