Postfix Replaying

O

OlliG

New Member
Hallo Leute,
es ist mir zwar schon fast peinlich, aber auch nach viel Google & zig Howtos ich glaub ich bin zu blöd ?!

Habe folgendes Laufen:
- Cyrus Imap
- Festchmail
- Spamasassin
- Amavis-new
- Postfix

Interne Mail funktionieren problemlos, Abholung mit Fetchmail auch.
Das Problem, Relaying funktioniert nicht !

Nach dem vielen ausprobieren, weiß ich schon nicht mehr was in den Config-Dateien wirklich wichtig ist.

Ach ja noch ganz wichtig :
- ich logge mit über ein OpenVPN ein. IP 10.0.0.x
- Amavis ist zur Zet nicht aktiv

Hier der Auszug aus der Mail.log

# Lokale Mail
Code: 
[I]Jul 25 13:33:26 artus postfix/pipe[5745]: 450DB606A: to=[EMAIL="email@domain.tld"]email@domain.tld[/EMAIL], relay=cyrus, delay=0.47, delays=0.44/0/0/0.03, dsn=2.0.0, status=sent (delivered via cyrus service) [/I]
[I]Jul 25 13:33:26 artus postfix/qmgr[5404]: 450DB606A: removed [/I]
[I]Jul 25 13:33:26 artus postfix/smtpd[5740]: disconnect from unknown[10.0.0.2] [/I]
[I]Jul 25 13:33:27 artus cyrus/master[5748]: about to exec /usr/lib/cyrus/bin/imapd [/I]
[I]Jul 25 13:33:27 artus cyrus/imap[5748]: executed [/I]
# externe Mail
Code: 
[I]Jul 25 13:34:01 artus postfix/smtpd[5740]: F0EA3606A: client=unknown[10.0.0.2] [/I]
[I]Jul 25 13:34:02 artus postfix/cleanup[5743]: F0EA3606A: message-id=[EMAIL="46A73523.7060206@domain.tld"]46A73523.7060206@domain.tld[/EMAIL] [/I]
[I]Jul 25 13:34:02 artus postfix/qmgr[5404]: F0EA3606A: from=[EMAIL="email@other."]email@other.[/EMAIL]tld, size=502, nrcpt=1 (queue active) [/I]
[I]Jul 25 13:34:02 artus postfix/qmgr[5404]: F0EA3606A: [EMAIL="to=email@extdomain.tld"]to=email@extdomain.tld[/EMAIL], relay=none, delay=0.46, delays=0.44/0.02/0/0, dsn=4.3.2, status=deferred (deferred transport) [/I]
[I]Jul 25 13:34:02 artus postfix/smtpd[5740]: disconnect from unknown[10.0.0.2 [/I]

Und hier der Scheibenhaufen, genannt Konfig-Files
Main.cf
Code: 
[I]# See /usr/share/postfix/main.cf.dist for a commented, more complete version [/I]
 
[I]########################################################################### [/I]
[I]# Angabe zum Masterserver [/I]
[I]########################################################################### [/I]
[I]relayhost = post.strato.de [/I]
[I]defer_transports = smtp [/I]
 
[I]########################################################################### [/I]
[I]# Allgemeine Einstellungen [/I]
[I]########################################################################### [/I]
[I]#default_privs = nobody [/I]
 
[I]biff = no [/I]
 
[I]local_destination_concurrency_limit = 2 [/I]
[I]default_destination_concurrency_limit = 10 [/I]
[I]default_peer_level = 2 [/I]
 
[I]# Falls Fehlermeldung: Mailbox does not exists [/I]
[I]cyrus_destination_recipient_limit = 1 [/I]
 
[I]########################################################################### [/I]
[I]# Netzwerkangaben [/I]
[I]########################################################################### [/I]
[I]mailbox_transport = cyrus [/I]
[I]##fallback_transport = cyrus [/I]
[I]mynetworks = 192.168.71.0/24, 127.0.0.0/8, 10.0.0.0/8 [/I]
[I]myhostname = mail.[EMAIL="email@domain.tld"]domain.tld[/EMAIL][/I]
[I]mydomain = domain.de [/I]
[I]myorigin = $mydomain [/I]
[I]mydestination = $myhostname, $mydomain, localhost, localhost.$mydomain [/I]
[I]inet_interfaces = all [/I]
 
 
[I]########################################################################### [/I]
[I]# Verwaltung [/I]
[I]########################################################################### [/I]
[I]mail_owner = postfix [/I]
[I]default_transport = smtp [/I]
 
[I]canonical_maps = hash:/etc/postfix/canonical [/I]
[I]virtual_maps = hash:/etc/postfix/virtual [/I]
 
[I]smtpd_banner = $myhostname ESMTP Mailserver [/I]
[I]alias_maps = hash:/etc/aliases [/I]
[I]alias_database = hash:/etc/aliases [/I]
 
[I]luser_relay = $ [/I]
 
 
[I]########################################################################### [/I]
[I]# SASL-Authentifizierung [/I]
[I]########################################################################### [/I]
 
 
[I]# 23.7.2007 - Kopie [/I]
[I]smtp_sasl_auth_enable = yes [/I]
[I]smtp_sasl_tls = no [/I]
[I]smtp_sasl_security_options = noanonymous [/I]
[I]#smtp_always_send_ehlo = yes [/I]
[I]smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd [/I]
 
 
[I]## SMTPD - Interne Mail Abholung [/I]
[I]smtpd_sasl_auth_enable = no [/I]
[I]smtpd_tls_auth_enable = no [/I]
[I]#smtpd_sasl_local_domain = $myhostname [/I]
[I]#smtpd_sasl_application_name = smtpd [/I]
 
 
[I]########################################################################### [/I]
[I]# Amavis [/I]
[I]########################################################################### [/I]
[I]# Ãœbergabe der Mails an Amavis [/I]
[I]##content_filter = smtp-amavis:[127.0.0.1]:10024 [/I]
[I]#receive_override_options = no_address_mappings [/I]
Master.cf
Code: 
[I]# [/I]
[I]# Postfix master process configuration file. For details on the format [/I]
[I]# of the file, see the master(5) manual page (command: "man 5 master"). [/I]
[I]# [/I]
[I]# ========================================================================== [/I]
[I]# service type private unpriv chroot wakeup maxproc command + args [/I]
[I]# (yes) (yes) (yes) (never) (100) [/I]
[I]# ========================================================================== [/I]
[I]smtp inet n - n - 50 smtpd [/I]
[I]# -o content_filter=smtp-amavis:[localhost]:10024 [/I]
[I]#submission inet n - - - - smtpd [/I]
[I]# -o smtpd_enforce_tls=yes [/I]
[I]# -o smtpd_sasl_auth_enable=yes [/I]
[I]# -o smtpd_client_restrictions=permit_sasl_authenticated,reject [/I]
[I]#smtps inet n - - - - smtpd [/I]
[I]# -o smtpd_tls_wrappermode=yes [/I]
[I]# -o smtpd_sasl_auth_enable=yes [/I]
[I]# -o smtpd_client_restrictions=permit_sasl_authenticated,reject [/I]
[I]#628 inet n - - - - qmqpd [/I]
[I]pickup fifo n - n 60 1 pickup [/I]
[I]cleanup unix n - n - 0 cleanup [/I]
[I]qmgr fifo n - n 300 1 qmgr [/I]
[I]#qmgr fifo n - - 300 1 oqmgr [/I]
[I]tlsmgr unix - - - 1000? 1 tlsmgr [/I]
[I]rewrite unix - - - - - trivial-rewrite [/I]
[I]bounce unix - - - - 0 bounce [/I]
[I]defer unix - - - - 0 bounce [/I]
[I]trace unix - - - - 0 bounce [/I]
[I]verify unix - - - - 1 verify [/I]
[I]flush unix n - - 1000? 0 flush [/I]
[I]proxymap unix - - n - - proxymap [/I]
[I]#smtp unix - - - - - smtp [/I]
[I]relay unix - - n - - smtp [/I]
[I]error unix - - - - - error [/I]
[I]discard unix - - - - - discard [/I]
[I]local unix - n n - - local [/I]
[I]virtual unix - n n - - virtual [/I]
[I]lmtp unix - - - - - lmtp [/I]
[I]anvil unix - - - - 1 anvil [/I]
[I]scache unix - - - - 1 scache [/I]
[I]cyrus unix - n n - - pipe flags=R user=cyrus argv=/usr/sbin/cyrdeliver -e -m ${extension} ${user} [/I]
 
[I]localhost:10025 inet n - n - 50 smtpd [/I]
[I]-o content_filter= [/I]
[I]-o local_recipient_maps= [/I]
[I]-o relay_recipient_maps= [/I]
[I]-o smtpd_restriction_classes= [/I]
[I]-o smtpd_client_restrictions= [/I]
[I]-o smtpd_helo_restrictions= [/I]
[I]-o smtpd_sender_restrictions= [/I]
[I]# -o smtpd_recipient_restrictions=permit_mynetworks,reject [/I]
[I]-o mynetworks=127.0.0.0/8,192.168.71.0/24 [/I]
[I]-o strict_rfc821_envelopes_yes [/I]
[I]-o smtpd_error_sleep_time=0 [/I]
[I]-o smtpd_soft_error_limit=1001 [/I]
[I]-o smtpd_hard_error_limit=1000 [/I]
 
[I]smtp-amavis unix - - n - 2 smtp [/I]
[I]-o smtp_data_done_timeout=1200 [/I]
[I]-o smtp_send_xforward_command=yes [/I]
[I]# -o disable_dns_lookups=yes [/I]
[I]# -o max_use=100 [/I]
 
[I]# ==================================================================== [/I]
[I]# Interfaces to non-Postfix software. Be sure to examine the manual [/I]
[I]# pages of the non-Postfix software to find out what options it wants. [/I]
[I]# [/I]
[I]# Many of the following services use the Postfix pipe( delivery [/I]
[I]# agent. See the pipe( man page for information about ${recipient} [/I]
[I]# and other message envelope options. [/I]
[I]# ==================================================================== [/I]
[I]# [/I]
[I]# maildrop. See the Postfix MAILDROP_README file for details. [/I]
[I]# Also specify in main.cf: maildrop_destination_recipient_limit=1 [/I]
[I]# [/I]
[I]maildrop unix - n n - - pipe [/I]
[I]flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient} [/I]
[I]# [/I]
[I]# See the Postfix UUCP_README file for configuration details. [/I]
[I]# [/I]
[I]uucp unix - n n - - pipe [/I]
[I]flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient) [/I]
[I]# [/I]
[I]# Other external delivery methods. [/I]
[I]# [/I]
 
 
[I]## ab hier weiss ich nicht, deshalb auskommentier 9.6.2007 [/I]
 
[I]#ifmail unix - n n - - pipe [/I]
[I]# flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient) [/I]
[I]#bsmtp unix - n n - - pipe [/I]
[I]# flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender $recipient [/I]
[I]#scalemail-backend unix - n n - 2 pipe [/I]
[I]# flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store ${nexthop} ${user} ${extension} [/I]
[I]#mailman unix - n n - - pipe [/I]
[I]# flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py [/I]
[I]# ${nexthop} ${user} [/I]
 
[I]relay unix - - n - - smtp [/I]
und zu guter letzt noch die Ausgabe von postconfig -n
Code: 
 [I]alias_database = hash:/etc/aliases [/I]
[I]alias_maps = hash:/etc/aliases [/I]
[I]biff = no [/I]
[I]canonical_maps = hash:/etc/postfix/canonical [/I]
[I]config_directory = /etc/postfix [/I]
[I]default_destination_concurrency_limit = 10 [/I]
[I]default_transport = smtp [/I]
[I]defer_transports = smtp [/I]
[I]inet_interfaces = all [/I]
[I]local_destination_concurrency_limit = 2 [/I]
[I]luser_relay = $ [/I]
[I]mail_owner = postfix [/I]
[I]mailbox_transport = cyrus [/I]
[I]mydestination = $myhostname, $mydomain, localhost, localhost.$mydomain [/I]
[I]mydomain = domail.tld [/I]
[I]myhostname = mail.domain.tld [/I]
[I]mynetworks = 192.168.71.0/24, 127.0.0.0/8, 10.0.0.0/8 [/I]
[I]myorigin = $mydomain [/I]
[I]relayhost = post.strato.de [/I]
[I]smtp_sasl_auth_enable = yes [/I]
[I]smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd [/I]
[I]smtp_sasl_security_options = noanonymous [/I]
[I]smtpd_banner = $myhostname ESMTP Mailserver [/I]
[I]smtpd_sasl_auth_enable = no [/I]
[I]unknown_local_recipient_reject_code = 450[/I]
Ich setze alle Erwartungen in euer können, ich bin der Verzweifelung nahe.

Ich vermute es liegt vielleicht irgendwie an dem VPN-Zugang über 10.0.0.x und einer Relay-Sperre aber ???

Ich bau auf euch !

Oliver
 
Last edited by a moderator:
Hallo Oliver,

ich denke du hast in der falschen Richtung gesucht: Postfix nimmt deine E-Mail an, auch wenn sie nach extern geht. Das heißt die Fehlerquelle IP Adresse kann quasi ausgeschlossen werden.

Auch an den Restrictions sehe ich keinen Fehler: Du hast zwar alle auskommentiert, aber Postfix greift dann auf "permit_mynetworks, reject_unauth_destination" zurück - und auch hier ist ja die 10er IP gelistet.

Allerdings hast du ein "defer_transports = smtp" in deiner Konfiguration stehen - und das deckt sich auch mit dem Logfile.

Gib doch mal ein "postqueue -p" ein - ich bin mir ziemlich sicher dass du dort alle deine Testmails wiederfinden wirst.

Hintergrund: Mit der Anweisung "defer_transports" weist du Postfix an, alle Mails die über einen bestimmten Transport (in deinem Fall SMTP) gehen in die Queue zu legen und nicht zu versenden.

Die Queue kannst du entweder per "postqueue -f" zustellen oder die Mails aus der Queue per "postsuper -d <ID>" bereinigen.

Ich hoffe ich konnte helfen :-)

Grüße,
Marco
 
Gelöst

Hallo,
stimmt das defer... musste ich rausnehmen.

Zusätzlich hatte ich in der Master.cf noch die Zeile mit smtp auskommentiert.

Jetzt läuft alles so, wie es soll.

Danke

Olli
 
You must log in or register to reply here.
Back
Top