I'm setting up postfix on a VPS. I will use it to eventually
receive/store/forward email for only virtual accounts at a couple of my domains
to another server here at the office.
I'm following the Postfix docs -- they're REALLY detailed with lots to read,
but I'm making progress!
I got the NullClient Postfix set up, and I've disabled local delivery. I don't
want any mail delivered to any unix accounts on the server itself; only to
virtual accounts that get sent on down the line.
I also got TLS working.
So next I'm working on receiving inbound mail from the outside and starting to
forward it.
The VPS has 3 IPv4 addresses. I've assigned two of them to Postfix to listen
at, and setup the RDNS for them. So I have for example
IP1=1.1.1.1
IP2=2.2.2.2 <-> mx1.MYDOMAIN.com
IP3=3.3.3.3 <-> mx2.MYDOMAIN.com
As I've been setting this all up I've been watching the logs, and dealing with
the errors one at a time. The detailed logs are really helpful for that!
I've now gotten to this point, and can't figure out what these logs are telling
me, or what to look for in the docs.
When I send a test mail from an offsite shell account to this Postfix server on
my VPS, using
sendmail -i -f MYNAME -t <<EOF
From: [email protected]
To: [email protected]
Subject: VPS TEST FROM SONIC
VPS TEST FROM SONIC
EOF
I see this in the logs
May 16 09:13:56 yoda postfix/postscreen[14983]: CONNECT from
[64.142.111.80]:38167 to [2.2.2.2]:25
May 16 09:13:56 yoda postfix/postscreen[14983]: PASS OLD
[64.142.111.80]:38167
May 16 09:13:56 yoda postfix/smtpd[14984]: connect from
c.mail.sonic.net[64.142.111.80]
May 16 09:13:56 yoda postfix/smtpd[14984]: 8F0D161EC3:
client=c.mail.sonic.net[64.142.111.80]
May 16 09:13:56 yoda postfix/cleanup[14987]: 8F0D161EC3:
message-id=<[email protected]>
May 16 09:13:56 yoda postfix/qmgr[13817]: 8F0D161EC3:
from=<[email protected]>, size=1238, nrcpt=1 (queue active)
May 16 09:13:56 yoda postfix/smtpd[14984]: disconnect from
c.mail.sonic.net[64.142.111.80] ehlo=1 mail=1 rcpt=1 data=1 quit=1 commands=5
May 16 09:13:56 yoda postfix/error[14988]: 8F0D161EC3:
to=<[email protected]>, orig_to=<[email protected]>, relay=none,
delay=0.07, delays=0.06/0.01/0/0.01, dsn=5.1.1, status=bounced (local delivery
is disabled)
May 16 09:13:56 yoda postfix/cleanup[14987]: 9E48261EC6:
message-id=<[email protected]>
May 16 09:13:56 yoda postfix/qmgr[13817]: 9E48261EC6: from=<>,
size=3151, nrcpt=1 (queue active)
May 16 09:13:56 yoda postfix/bounce[14989]: 8F0D161EC3: sender
non-delivery notification: 9E48261EC6
May 16 09:13:56 yoda postfix/qmgr[13817]: 8F0D161EC3: removed
May 16 09:13:57 yoda postfix/smtp[14990]: Trusted TLS connection
established to mailin-01.mx.sonic.net[69.12.210.141]:25: TLSv1.2 with cipher
DHE-RSA-AES256-GCM-SHA384 (256/256 bits)
May 16 09:13:57 yoda postfix/smtp[14990]: 9E48261EC6: host
mailin-01.mx.sonic.net[69.12.210.141] said: 451 4.3.3 1.1.1.1 does not have
matching forward and reverse dns (FAIL) [orthrus:DNS0] (in reply to RCPT TO
command)
May 16 09:13:58 yoda postfix/smtp[14990]: Trusted TLS connection
established to mailin-02.mx.sonic.net[69.12.210.173]:25: TLSv1.2 with cipher
DHE-RSA-AES256-GCM-SHA384 (256/256 bits)
May 16 09:13:58 yoda postfix/smtp[14990]: 9E48261EC6:
to=<[email protected]>, relay=mailin-02.mx.sonic.net[69.12.210.173]:25,
delay=2.3, delays=0/0.01/2.3/0.03, dsn=4.3.3, status=deferred (host
mailin-02.mx.sonic.net[69.12.210.173] said: 451 4.3.3 1.1.1.1 does not have
matching forward and reverse dns (FAIL) [orthrus:DNS0] (in reply to RCPT TO
command))
I can see in the last line that it's complaining about mismatched
forward/reverse DNS. But it's @ IP = 1.1.1.1. I don't know why it's checking
THAT ip -- it's NOT either of the Postfix IPs.
I think the problem may start earlier with the "status=bounced (local delivery
is disabled)".
I really want to keep learn how to start debugging this stuff. So I'm not just
looking for a 'do this'.
Can anyone lend a hand in how to figure out what the actual problem is from
those logs and get to where to look? If I can figure out the general idea &
area of the problem I can find the right place in the docs and read up. Right
now, I just don't know where to look.
