Ivan,
> I have problem with amavisd-new.
> My system: FreeBSD 5.4, postfix-2.3.14, amavisd-new-2.6.2_2,
> p5-Mail-SpamAssassin-3.2.5
>
> For each message to my server I see this error in amavis log:
> Mar 5 18:17:59 mydomain.ua /usr/local/sbin/amavisd[32001]:
> (32001-01) (!)rw_loop: leaving rw loop, no progress
> Mar 5 18:17:59 mydomain.ua /usr/local/sbin/amavisd[32001]:
> (32001-01) (!)FWD via SMTP: <di...@another.ua> -> <di...@mydomain.ua>,
> 451 4.5.0 From MTA([127.0.0.1]:10025) during fwd-connect
> (Negative greeting: at (eval 81) line 578.): id=32001-01
> Mar 5 18:17:59 mydomain.ua /usr/local/sbin/amavisd[32001]:
> (32001-01) Blocked MTA-BLOCKED, [194.44.202.29] [194.44.202.29]
> <di...@another.ua> -> <di...@mydomain.ua>, Message-ID:
> <1931584669.20090305181...@another.ua>, mail_id: D4m8-opP1Ptu,
> Hits: 0, size: 1432, 33219 ms
> After 30-60 minutes message will have delivered.
It happens during fwd-connect phase, i.e. during server greeting and
EHLO exchange. It seems the Postfix smtpd service takes a long time
to respond for some reason, and amavisd times out meanwhile.
Perhaps
> File main.cf
> chk_sender=check_sender_access hash:/usr/local/etc/postfix/check_sender
>
> smtpd_sender_restrictions = permit_mynetworks,
> check_sender_access hash:/usr/local/etc/postfix/check_sender,
> reject_unknown_sender_domain,
> reject_non_fqdn_sender,
> reject_unverified_sender
>
> File /usr/local/etc/postfix/check_sender
> mydomain.ua REJECT
>
> File master.cf
> 89.105.*.*:smtp inet n - n - 10 smtpd
> -o smtpd_sender_restrictions=reject_unknown_sender_domain,
> reject_non_fqdn_sender, permit_sasl_authenticated,$chk_sender
^^^
no spaces are allowed within a postfix option
> -o content_filter=smtp-amavis:[127.0.0.1]:10024
> -o receive_override_options=no_address_mappings
> smtp inet n - n - - smtpd
> 127.0.0.1:10025 inet n - n - - smtpd
> -o content_filter=
> -o local_recipient_maps=
> -o relay_recipient_maps=
> -o smtpd_restriction_classes=
> -o smtpd_delay_reject=no
> -o smtpd_client_restrictions=permit_mynetworks,reject
> -o smtpd_helo_restrictions=
> -o smtpd_sender_restrictions=
> -o smtpd_recipient_restrictions=permit_mynetworks,reject
> -o mynetworks_style=host
> -o mynetworks=127.0.0.0/8
> -o strict_rfc821_envelopes=yes
> -o smtpd_error_sleep_time=0
> -o smtpd_soft_error_limit=1001
> -o smtpd_hard_error_limit=1000
> -o smtpd_client_connection_count_limit=0
> -o smtpd_client_connection_rate_limit=0
> -o
> receive_override_options=no_header_body_checks,no_unknown_recipient_checks
> File amavisd.conf
> @bypass_virus_checks_maps = (1);
> $max_servers = 2;
> $daemon_user = 'vscan';
> $daemon_group = 'vscan';
> $mydomain = 'mydomain.ua';
> @mynetworks = qw( 127.0.0.0/8 172.16.2.0/24 );
> $inet_socket_port = 10024;
Seems alright.
You are not showing your 'smtp-amavis' service in master.cf.
Does it happen often? When it happens to one message, is it likely
that it happens to other messages following it too? When this
happens, are you able to telnet to 127.0.0.1 port 10025 and
receive a greeting and some response to an 'EHLO foo' command?
Is there any problem with (slow?) DNS resolving of '127.0.0.1'
or 'localhost'?
For insight into what is happening, a tcpdump of the failing session would
be interesting (tcpdump -i lo0 -s 0 -w c.log 'tcp port 10025'), and/or
a log at level 5, especially all the 'rw_loop' log entries and a few
events before that, along with timestamps.
------------------------------------------------------------------------------
Apps built with the Adobe(R) Flex(R) framework and Flex Builder(TM) are
powering Web 2.0 with engaging, cross-platform capabilities. Quickly and
easily build your RIAs with Flex Builder, the Eclipse(TM)based development
software that enables intelligent coding and step-through debugging.
Download the free 60 day trial. http://p.sf.net/sfu/www-adobe-com
_______________________________________________
AMaViS-user mailing list
AMaViS-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/amavis-user
AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3
AMaViS-HowTos:http://www.amavis.org/howto/
