It’s hard to block e-mail bombs as they were sent by normal SMTP(Simple Mail Transfer Protocol) applications with fake mail sender addresses and IP addresses. Fortunately, original network packets contain real IP address information anyway. Collecting and analyzing these packets content can realize where the e-mail bombs from and block them. This article presents a simple method that uses a bandwidth manager device, iPolicer, to collect and analysis packets to get e-mail bombs information. And then block e-mail bombs sources IP address in routers. In the practical application experience at computer center of our university, this method can block e-mail bombs simply and effectively. Furthermore, a fuzzy inference system was also designed to help identify e-mail bombs in this paper. It affords an automatic and adaptable alarm to find out e-mail bombs in brief.
