Delivering Mail with priority based on domain
Hi, I have been reading about prioritizing mail in Postfix on this list. It seems that the answer is, there is a shared queue and mail is not prioritized. I want to make sure that I fully understand if this applies to my situation. All of our servers that send mail go through our Postfix gateways. I don't want to manage our exchange server as a relay. I find that when we send out a lot of email and there is mail queued, internal mail is delayed. I'm assuming the short term solution to this is: postqueue -s domain.com Is there another way to prioritize internal mail delivery based on domain? Postfix-2.3.3-2.1.el5_2 running on CentOS 5.5 x64 Thanks, James
How to prevent retrying delivery of invalid addresses
Hi, We send email to new users and frequently they give us false addresses or the address gets entered incorrectly. One example would be instead of aol.com the address gets entered as aol.cm. I would like to bounce invalid addresses quickly instead of retrying them for days on end. Its my understanding yahoo.com, hotmail.com etc change our domain's Sender Score based on retrying non existent addresses i.e. usernames. I figured this might be a common scenario and read the FAQ on Kyle Dent's site. I don't want to bounce emails that have been deferred. I would like to hear if other people have implemented similar solutions? Thanks, James
Re: Mail blocked if not HTML
I tried your command and it didn't take, I then ran what I posted and it seems to have worked. James On Jul 1, 2010, at 9:33 PM, Matt Hayes wrote: > > On 07/01/2010 07:29 PM, James R. Marcus wrote: >> no inspect smtp didn't work for me. >> > > > So you tried it and it didn't work or you ran the command and it wasn't > correct? > > -Matt
Re: Mail blocked if not HTML
no inspect smtp didn't work for me. James On Jul 1, 2010, at 7:07 PM, Matt Hayes wrote: On 07/01/2010 07:02 PM, James R. Marcus wrote: For the ASA: af-cam-primary# conf t af-cam-primary(config)# class-map inspection_default af-cam-primary(config-cmap)# class inspection_default af-cam-primary(config-cmap)# no fixup protocol smtp 25 I believe its: no inspect smtp Most ASAs I've worked on the smtp inspect is on automatically. -Matt :: James R. Marcus | Director, IT Operations :: Edhance | jmar...@edhance.com :: v: 617-475-5360 | m: 914-772-8533 :: web: www.edhance.com<http://www.edhance.com/>
Re: Mail blocked if not HTML
For the ASA: af-cam-primary# conf t af-cam-primary(config)# class-map inspection_default af-cam-primary(config-cmap)# class inspection_default af-cam-primary(config-cmap)# no fixup protocol smtp 25 I believe these are the defaults. Do I need to do esmtp too? thanks, James On Jul 1, 2010, at 6:51 PM, Matt Hayes wrote: On 07/01/2010 06:50 PM, James R. Marcus wrote: Yes. Well actually an ASA 5520 James On Jul 1, 2010, at 6:34 PM, Ralf Hildebrandt wrote: * James R. Marcus mailto:jmar...@edhance.com> <mailto:jmar...@edhance.com>>: Sorry I didn't post them before I was just trying to do a sanity check. Here they are: --- Postfix Logs --- Jun 23 16:48:10 relay0 postfix/smtp[30504]: 5ED4F114BBC: to=mailto:sa...@2co.com>>, relay=mail.2co.com[64.128.185.221]:25, delay=0.98, delays=0.01/0.01/0.33/0.62, dsn=4.4.2, status=deferred (lost connection with mail.2co.com[64.128.185.221] while sending end of data -- message may Jun 23 18:02:08 relay0 postfix/smtp[1638]: 5ED4F114BBC: enabling PIX . workaround for mail.2co.com[64.128.185.221]:25 Jun 23 18:02:18 relay0 postfix/smtp[1638]: 5ED4F114BBC: to=mailto:sa...@2co.com>>, relay=mail.2co.com[64.128.185.221]:25, delay=4449, delays=4438/0.03/0.34/10, dsn=4.4.2, status=deferred (lost connection with mail.2co.com[64.128.185.221] while sending end of data -- message may be Jun 23 19:25:27 relay0 postfix/smtp[3204]: 5ED4F114BBC: enabling PIX . workaround for mail.2co.com[64.128.185.221]:25 Jun 23 19:25:37 relay0 postfix/smtp[3204]: 5ED4F114BBC: to=mailto:sa...@2co.com>>, relay=mail.2co.com[64.128.185.221]:25, delay=9448, delays=9438/0.02/0.08/10, dsn=4.4.2, status=deferred (lost connection with mail.2co.com[64.128.185.221] while sending end of data -- message may be Jun 23 22:12:08 relay0 postfix/smtp[6277]: 5ED4F114BBC: enabling PIX . workaround for mail.2co.com[64.128.185.221]:25 Jun 23 22:12:18 relay0 postfix/smtp[6277]: 5ED4F114BBC: to=mailto:sa...@2co.com>>, relay=mail.2co.com[64.128.185.221]:25, delay=19449, delays=19438/0.09/0.22/10, dsn=4.4.2, status=deferred (lost connection with mail.2co.com[64.128.185.221] while sending end of data -- message may b Is the CISCO PIX in your organization? -- Ralf Hildebrandt Geschäftsbereich IT | Abteilung Netzwerk Charité - Universitätsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebra...@charite.de<mailto:ralf.hildebra...@charite.de> <mailto:ralf.hildebra...@charite.de> | http://www.charite.de :: James R. Marcus | Director, IT Operations :: Edhance | jmar...@edhance.com<mailto:jmar...@edhance.com> :: v: 617-475-5360 | m: 914-772-8533 :: web: www.edhance.com<http://www.edhance.com> <http://www.edhance.com/> ASA: config t no inspect smtp -Matt :: James R. Marcus | Director, IT Operations :: Edhance | jmar...@edhance.com :: v: 617-475-5360 | m: 914-772-8533 :: web: www.edhance.com<http://www.edhance.com/>
Re: Mail blocked if not HTML
No it is not just one host it is many. I have tried to confirm the users claim, and although he is a reliable source, I wasn't able to replicate the issue. The recipient did not get the email anyway, as far as I know. There was no response, and in this case it was a customer service request. I have contacted Postmasters about this issue, not many have responded. The most interesting response I got was one asking if we made a connection, did something (which would cause a delay) and then tried to send the email. It seems to me any preprocessing of email is done before the connection is opened. James On Jul 1, 2010, at 6:42 PM, Noel Jones wrote: On 7/1/2010 4:55 PM, James R. Marcus wrote: Sorry I didn't post them before I was just trying to do a sanity check. Here they are: --- Postfix Logs --- Jun 23 16:48:10 relay0 postfix/smtp[30504]: 5ED4F114BBC: to=mailto:sa...@2co.com> <mailto:sa...@2co.com>>, relay=mail.2co.com[64.128.185.221]:25, delay=0.98, delays=0.01/0.01/0.33/0.62, dsn=4.4.2, status=deferred (lost connection with mail.2co.com[64.128.185.221] while sending end of data -- message may Jun 23 18:02:08 relay0 postfix/smtp[1638]: 5ED4F114BBC: enabling PIX . workaround for mail.2co.com[64.128.185.221]:25 Jun 23 18:02:18 relay0 postfix/smtp[1638]: 5ED4F114BBC: to=mailto:sa...@2co.com> <mailto:sa...@2co.com>>, relay=mail.2co.com[64.128.185.221]:25, delay=4449, delays=4438/0.03/0.34/10, dsn=4.4.2, status=deferred (lost connection with mail.2co.com[64.128.185.221] while sending end of data -- message may be deferred - message can't be received now, please try later. lost connection - the other end disconnected in the middle of the conversation. Is it just this one host that's deferring your mail? Did the recipient get the mail anyway? Does the mail eventually get delivered? Have you confirmed the user's claim that only plain-text mail is deferred? Have you contacted the postmaster of 64.128.185.221? If you can deliver to other hosts OK, the problem is at 64.128.185.221. -- The Bounce -- Diagnostic information for administrators: Generating server: relay0.edhance.com<http://relay0.edhance.com> <http://relay0.edhance.com> sa...@2co.com<mailto:sa...@2co.com> <mailto:sa...@2co.com> #< #4.4.2 X-Postfix; lost connection with mail.2co.com[64.128.185.221] while sending end of data -- message may be sent more than once> #SMTP# This isn't a bounce notice; it's a "message delayed" notice. The mail was not rejected; the connection was lost during transmission. Postfix will continue trying to deliver the mail until the queue file expires; typically 5 days. As the notice says, the mail *might* have been delivered to the recipient, but your local sever can't tell because the remote end disconnected while -- Noel Jones :: James R. Marcus | Director, IT Operations :: Edhance | jmar...@edhance.com :: v: 617-475-5360 | m: 914-772-8533 :: web: www.edhance.com<http://www.edhance.com/>
Re: Mail blocked if not HTML
Yes. Well actually an ASA 5520 James On Jul 1, 2010, at 6:34 PM, Ralf Hildebrandt wrote: * James R. Marcus mailto:jmar...@edhance.com>>: Sorry I didn't post them before I was just trying to do a sanity check. Here they are: --- Postfix Logs --- Jun 23 16:48:10 relay0 postfix/smtp[30504]: 5ED4F114BBC: to=mailto:sa...@2co.com>>, relay=mail.2co.com[64.128.185.221]:25, delay=0.98, delays=0.01/0.01/0.33/0.62, dsn=4.4.2, status=deferred (lost connection with mail.2co.com[64.128.185.221] while sending end of data -- message may Jun 23 18:02:08 relay0 postfix/smtp[1638]: 5ED4F114BBC: enabling PIX . workaround for mail.2co.com[64.128.185.221]:25 Jun 23 18:02:18 relay0 postfix/smtp[1638]: 5ED4F114BBC: to=mailto:sa...@2co.com>>, relay=mail.2co.com[64.128.185.221]:25, delay=4449, delays=4438/0.03/0.34/10, dsn=4.4.2, status=deferred (lost connection with mail.2co.com[64.128.185.221] while sending end of data -- message may be Jun 23 19:25:27 relay0 postfix/smtp[3204]: 5ED4F114BBC: enabling PIX . workaround for mail.2co.com[64.128.185.221]:25 Jun 23 19:25:37 relay0 postfix/smtp[3204]: 5ED4F114BBC: to=mailto:sa...@2co.com>>, relay=mail.2co.com[64.128.185.221]:25, delay=9448, delays=9438/0.02/0.08/10, dsn=4.4.2, status=deferred (lost connection with mail.2co.com[64.128.185.221] while sending end of data -- message may be Jun 23 22:12:08 relay0 postfix/smtp[6277]: 5ED4F114BBC: enabling PIX . workaround for mail.2co.com[64.128.185.221]:25 Jun 23 22:12:18 relay0 postfix/smtp[6277]: 5ED4F114BBC: to=mailto:sa...@2co.com>>, relay=mail.2co.com[64.128.185.221]:25, delay=19449, delays=19438/0.09/0.22/10, dsn=4.4.2, status=deferred (lost connection with mail.2co.com[64.128.185.221] while sending end of data -- message may b Is the CISCO PIX in your organization? -- Ralf Hildebrandt Geschäftsbereich IT | Abteilung Netzwerk Charité - Universitätsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebra...@charite.de<mailto:ralf.hildebra...@charite.de> | http://www.charite.de :: James R. Marcus | Director, IT Operations :: Edhance | jmar...@edhance.com :: v: 617-475-5360 | m: 914-772-8533 :: web: www.edhance.com<http://www.edhance.com/>
Re: Mail blocked if not HTML
om>> Date: Wed, 23 Jun 2010 16:48:44 -0400 Subject: RE: 2CO.COM<http://2CO.COM> Sales Receipt 418 Thread-Topic: 2CO.COM<http://2CO.COM> Sales Receipt 418 Thread-Index: AcqUMooN4G53+UaSRDWmi9n40AzM4R+4r2ng Message-ID: <28ffb76f86a155449265dbc461ea014a3305b68...@exch1.studentsonly.com<mailto:28ffb76f86a155449265dbc461ea014a3305b68...@exch1.studentsonly.com>> References: <20100113092645.8350.qm...@pweb-04.2checkout.com<mailto:20100113092645.8350.qm...@pweb-04.2checkout.com>> In-Reply-To: <20100113092645.8350.qm...@pweb-04.2checkout.com<mailto:20100113092645.8350.qm...@pweb-04.2checkout.com>> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: acceptlanguage: en-US Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 On Jul 1, 2010, at 5:45 PM, Matt Hayes wrote: On 07/01/2010 05:40 PM, James R. Marcus wrote: Slightly off topic, but a user has observed that any email sent in plain text is bounced, any mail sent as HTML gets sent. Has anyone encountered such an issue? My environment hasn't really changed in months and I'm confused. Thanks, James James, Do you have logs of the instances where 'plain text' emails bounced or were rejected? Would be quite helpful to see that if so! -Matt :: James R. Marcus | Director, IT Operations :: Edhance | jmar...@edhance.com :: v: 617-475-5360 | m: 914-772-8533 :: web: www.edhance.com<http://www.edhance.com/>
Mail blocked if not HTML
Slightly off topic, but a user has observed that any email sent in plain text is bounced, any mail sent as HTML gets sent. Has anyone encountered such an issue? My environment hasn't really changed in months and I'm confused. Thanks, James
Nessus scan reports server is vulnerable to a buffer overflow
Hi, I ran a Nessus scan last night and got a High Severity alert, which is frustratingly vague. At least most reports point me to other vulnerability sites to find a resolution. I'm wondering if this an issue with my version of Postfix, configuration, or a red herring. Any input would be appreciated. I'm running: postfix-2.3.3-2.1.el5_2. I'm wondering if posting postconf will be useful? Here is the message from Nessus: SMTP Generic Overflow Detection <> This script is Copyright (C) 2003-2010 Tenable Network Security, Inc. Family SMTP problems Nessus Plugin ID11772 (smtp_overflows.nasl) Bugtraq ID CVE ID Description: Synopsis : The remote SMTP server is vulnerable to a buffer overflow. Description : The remote SMTP server crashes when it is sent a command with a too long argument. A cracker might use this flaw to kill this service or worse, execute arbitrary code on your server. Solution : This plugin tests for a generic condition. It may be remedied by upgrading, reconfiguring, or changing your SMTP Server (MTA). Risk factor : Critical / CVSS Base Score : 10.0 (CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
Re: How to get Windows to send FQDN when connecting to a relay
This solved my problem. Thanks, James On Apr 26, 2010, at 10:17 AM, Wietse Venema wrote: James R. Marcus: I have two applications that run on windows that return this error when I try to use my postfix relay to send mail. An error occurred while trying to send the test email. 504 5.5.2 : Helo command rejected: need fully-qualified hostname I have added the IPs to mynetworks, but Postfix is requiring a FQDN before allowing the server to relay. Put "permit_mynetworks" before "reject_non_fqdn_mumble". Wietse
How to get Windows to send FQDN when connecting to a relay
I have two applications that run on windows that return this error when I try to use my postfix relay to send mail. An error occurred while trying to send the test email. 504 5.5.2 : Helo command rejected: need fully-qualified hostname I have added the IPs to mynetworks, but Postfix is requiring a FQDN before allowing the server to relay. The servers have a PTR. Does anyone know how to get Windows to send the FQDN when connecting to a relay? Or is there a simple way to make an exception in Postfix? I'm guessing it gets denied here: smtpd_recipient_restrictions = reject_invalid_hostname, reject_non_fqdn_hostname,reject_non_fqdn_sender, reject_non_fqdn_recipient,reject_unknown_sender_domain, reject_unknown_recipient_domain,permit_mynetworks, reject_unauth_destination,reject_rbl_client cbl.abuseat.org, reject_rbl_client sbl.spamhaus.org,reject_rbl_client pbl.spamhaus.org permit Thanks, James
Logrotate with Postfix
Hi,
Does anyone have logrotate working correctly for maillog on a weekly basis?
I'm not sure if its my logrotate config:
/var/log/maillog {
rotate 100
compress
weekly
dateext
notifempty
copytruncate
postrotate
/etc/init.d/postfix reload
endscript
}
Can someone who has this working correctly post their logrotate config.
Thanks,
James
Re: localhost in Message Headers
I'm most concerned about keeping my headers clean so I minimize the chance of being considered SPAM. thanks, James On Feb 21, 2010, at 12:39 AM, Eero Volotinen wrote: 2010/2/21 James R. Marcus mailto:jmar...@edhance.com>>: Hi, In regards to having honest headers, is it bad to have localhost.localdomain in the an email header? Received: from localhost (localhost.localdomain [127.0.0.1]) by relay1.edhance.com<http://relay1.edhance.com> (Postfix) with ESMTP id 18D231A7517 for mailto:usern...@gmail.com>>; Sat, 20 Feb 2010 23:08:19 -0500 (EST) It depends on situation, in some cases (content filter, www-form) it is normal. -- Eero :: James R. Marcus | Director, IT Operations :: Edhance | jmar...@edhance.com :: v: 617-475-5360 | m: 914-772-8533 :: web: www.edhance.com<http://www.edhance.com/>
localhost in Message Headers
Hi, In regards to having honest headers, is it bad to have localhost.localdomain in the an email header? Received: from localhost (localhost.localdomain [127.0.0.1]) by relay1.edhance.com (Postfix) with ESMTP id 18D231A7517 for ; Sat, 20 Feb 2010 23:08:19 -0500 (EST) James
Re: load balancing among mail servers
I did round robin. Unless your servers are really under a high load I think this is more then suitable. James On Feb 16, 2010, at 8:51 AM, donovan jeffrey j wrote: > > On Feb 16, 2010, at 8:09 AM, aa wrote: > >> Someone advised me to insert in the DNS zone a list of MX records >> defined with the same level of priority so the DNS server will >> choose one of them without invoking always the same mail server >> It could be an idea, in my opinion, but I'd prefer a "less random" >> solution and a more scientific one > > very easy for smtp relays. > > smtp1 > smtp2 > > > create a dns name smtp, and your system will round robin query for the > next available server.
Re: Receiving mail for *...@domain.com
Thanks for your help, this solved my problem. James On Sep 25, 2009, at 10:50 AM, Eero Volotinen wrote: But I don't seem to be getting it right, can anyone explain how I receive email for anyaddr...@domain.se<mailto:anyaddr...@domain.se> without the server bouncing the email. http://www.postfix.org/VIRTUAL_README.html # Uncomment entry below to implement a catch-all address 10 # @example.com jim Thanks, -- Eero, RHCE :: James R. Marcus | Director, IT Operations :: Edhance | jmar...@edhance.com :: v: 617-475-5360 | m: 914-772-8533 :: web: www.edhance.com<http://www.edhance.com/>
Receiving mail for *...@domain.com
Hi, I have been reading documentation on this issue and it still seems I can't get it right. I'm building a Postfix server for testing. We need to test the impact of sending 100K emails, and I have setup this postfix server to receive the 100K emails. [r...@mx3 etc]# cat /etc/postfix/main.cf myhostname = mx3.domain.se mydomain = domain.se myorigin = $mydomain inet_interfaces = all mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain mynetworks = 10.10.10.0/24 relay_domains = home_mailbox = Maildir/ #luser_relay = #local_recipient_maps = $alias_maps, proxy:unix:passwd.byname local_recipient_maps = [r...@mx3 etc]# [r...@mx3 etc]# postconf mail_version mail_version = 2.3.3 Running on 64-Bit CentOS 5.3 with SELINUX disabled. I have been reading documentation here: http://www.postfix.org/faq.html#bogus But I don't seem to be getting it right, can anyone explain how I receive email for anyaddr...@domain.se without the server bouncing the email. thanks, James
