Re: [qmailtoaster] Re: Slowness in smtp
Hi YongSan, I tested to connect to your server on port 25. It takes about 2-3 min to get the greeting-banner (220 localhost.localdomain - Welcome to Qmail Toaster Ver. 1.3 SMTP Server ESMTP) For me that looks like your server takes ages to resolve my senders reverse dns. Did you configure the forwarders on your caching dns server on localhost? How long does it take to resolve f.ex. 122.175.72.62 ? Some times ago I had the same behaviour on a clients qmail-box where the config. of bind disallowed querys from localhost (127.0.0.1). Andreas Am Montag, 12. Juli 2010 05:29:44 schrieb Poh Yong Hwang: Hi, It should not be my windows as i have ask many people to try(around 10) and all face the same issue with slowness in smtp. I have remove the default zen.spamhaues on the blacklist file and it is still slow.. YongSan On Mon, Jul 12, 2010 at 11:06 AM, South Computers i...@southcomputers.comwrote: For a quick test to see if it's your dns at the windoze box, try adding your toaster to the hosts file. Typically win boxes check the hosts file before dns. Also, check the blacklists on your toaster. You may have a slow dnsbl in there. Poh Yong Hwang wrote: Hi, Here is my resolv.conf : search mail.popular.com.sg http://mail.popular.com.sg nameserver 127.0.0.1 nameserver 165.21.83.88 nameserver 165.21.100.88 The slowness occurs on the time that the message took to leave Outlook outbound queue. If we do a email dossier check at centralops.net http://centralops.net, it always get timeout while connecting to our mail server. One of the domain i have in this mail server is mail.popular.com.sg http://mail.popular.com.sg Please advise. Thanks YongSan On Mon, Jul 12, 2010 at 3:54 AM, Eric Shubert e...@shubes.net mailto: e...@shubes.net wrote: DNS is often the culprit with sluggish performance, so Andreas is right. Outlook doesn't usually exhibit slowness. Because it has its own Outbound queue, it appears to the user that the message has been sent before the submission/smtp server is even contacted. I'd like to know where you're seeing the slowness. Are you counting the time it takes for the message to reach its destination? The time it takes to leave Outlook's Outbound queue? What messages are you seeing in the send queue that correspond to the slow message(s)? # qmlog send It's possible that the message is being requeued due to graylisting by the recipient's server. There are many possibilities. -- -Eric 'shubes' Andreas Galatis wrote: Hi Yongsan, I think 1st thing to lookup is dns-lookup speed of your server. Do you have a cahing-nameserver installed? What are your settings in resolve.conf? How is your connection to the internet (static, dynamic ip) Bye Andreas Am Sonntag, 11. Juli 2010 13:32:36 schrieb Poh Yong Hwang: Hi all, I have setup qmailtoaster and have an issue with sending out emails. Whenever I tried to send out emails, it gets very slow. Takes around 5 mins to send out an email using outlook. Please advise how should I troubleshoot this. Thanks. Yongsan --- - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com http://www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com http://qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com mailto:qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com mailto:qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group ( www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail:
Re: [qmailtoaster] Re: Slowness in smtp
Hi, I tried the following on the mail server itself and i got the reply immediately. [r...@mail init.d]# nslookup 122.175.72.62 Server: 127.0.0.1 Address:127.0.0.1#53 Non-authoritative answer: 62.72.175.122.in-addr.arpa name = Telemedia-AP-dynamic-062.72.175.122.airtelbroadband.in. Authoritative answers can be found from: It seems that i have djbdns install rather than BIND for my qmailtoaster. Can i check how can i configure the forwarders on my caching server? The mail server setup is by default according to the Qmailtoaster installation guide. Thanks YongSan On Mon, Jul 12, 2010 at 2:02 PM, Andreas Galatis a...@unet.de wrote: Hi YongSan, I tested to connect to your server on port 25. It takes about 2-3 min to get the greeting-banner (220 localhost.localdomainhe - Welcome to Qmail Toaster Ver. 1.3 SMTP Server ESMTP) For me that looks like your server takes ages to resolve my senders reverse dns. Did you configure the forwarders on your caching dns server on localhost? How long does it take to resolve f.ex. 122.175.72.62 ? Some times ago I had the same behaviour on a clients qmail-box where the config. of bind disallowed querys from localhost (127.0.0.1). Andreas Am Montag, 12. Juli 2010 05:29:44 schrieb Poh Yong Hwang: Hi, It should not be my windows as i have ask many people to try(around 10) and all face the same issue with slowness in smtp. I have remove the default zen.spamhaues on the blacklist file and it is still slow.. YongSan On Mon, Jul 12, 2010 at 11:06 AM, South Computers i...@southcomputers.comwrote: For a quick test to see if it's your dns at the windoze box, try adding your toaster to the hosts file. Typically win boxes check the hosts file before dns. Also, check the blacklists on your toaster. You may have a slow dnsbl in there. Poh Yong Hwang wrote: Hi, Here is my resolv.conf : search mail.popular.com.sg http://mail.popular.com.sg nameserver 127.0.0.1 nameserver 165.21.83.88 nameserver 165.21.100.88 The slowness occurs on the time that the message took to leave Outlook outbound queue. If we do a email dossier check at centralops.net http://centralops.net, it always get timeout while connecting to our mail server. One of the domain i have in this mail server is mail.popular.com.sg http://mail.popular.com.sg Please advise. Thanks YongSan On Mon, Jul 12, 2010 at 3:54 AM, Eric Shubert e...@shubes.netmailto: e...@shubes.net wrote: DNS is often the culprit with sluggish performance, so Andreas is right. Outlook doesn't usually exhibit slowness. Because it has its own Outbound queue, it appears to the user that the message has been sent before the submission/smtp server is even contacted. I'd like to know where you're seeing the slowness. Are you counting the time it takes for the message to reach its destination? The time it takes to leave Outlook's Outbound queue? What messages are you seeing in the send queue that correspond to the slow message(s)? # qmlog send It's possible that the message is being requeued due to graylisting by the recipient's server. There are many possibilities. -- -Eric 'shubes' Andreas Galatis wrote: Hi Yongsan, I think 1st thing to lookup is dns-lookup speed of your server. Do you have a cahing-nameserver installed? What are your settings in resolve.conf? How is your connection to the internet (static, dynamic ip) Bye Andreas Am Sonntag, 11. Juli 2010 13:32:36 schrieb Poh Yong Hwang: Hi all, I have setup qmailtoaster and have an issue with sending out emails. Whenever I tried to send out emails, it gets very slow. Takes around 5 mins to send out an email using outlook. Please advise how should I troubleshoot this. Thanks. Yongsan --- - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com http://www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com http://qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
Re: [qmailtoaster] Re: Slowness in smtp
On 07/12/2010 02:24 AM, Poh Yong Hwang wrote: Hi, I tried the following on the mail server itself and i got the reply immediately. [r...@mail init.d]# nslookup 122.175.72.62 Server: 127.0.0.1 Address:127.0.0.1#53 Non-authoritative answer: 62.72.175.122.in-addr.arpa name = Telemedia-AP-dynamic-062.72.175.122.airtelbroadband.in http://Telemedia-AP-dynamic-062.72.175.122.airtelbroadband.in. Authoritative answers can be found from: It seems that i have djbdns install rather than BIND for my qmailtoaster. Can i check how can i configure the forwarders on my caching server? The mail server setup is by default according to the Qmailtoaster installation guide. Thanks YongSan On Mon, Jul 12, 2010 at 2:02 PM, Andreas Galatis a...@unet.de mailto:a...@unet.de wrote: Hi YongSan, I tested to connect to your server on port 25. It takes about 2-3 min to get the greeting-banner (220 localhost.localdomainhe - Welcome to Qmail Toaster Ver. 1.3 SMTP Server ESMTP) You have a DNS lookup problem. When I tried to telnet to your SMTP port, it took 1 minute and 42 seconds to connect: [j...@jake-lapbox ~]$ time telnet mail.popular.com.sg 25 Trying 117.120.3.103... Connected to mail.popular.com.sg. Escape character is '^]'. 220 localhost.localdomain - Welcome to Qmail Toaster Ver. 1.3 SMTP Server ESMTP quit 221 localhost.localdomain - Welcome to Qmail Toaster Ver. 1.3 SMTP Server Connection closed by foreign host. real1m42.329s user0m0.001s sys0m0.006s I entered quit within 1-2 seconds of receiving your banner. What is the contents of your /var/qmail/control/blacklists file? Are you using spamdyke? What does your tcp.smtp file look like? What is being logged in your smtp log file?
Re: [qmailtoaster] Re: Slowness in smtp
Hi, It seems that if i use port 587 it does not have the slowness issue.. [r...@cp root]# time telnet mail.popular.com.sg 25 Trying 117.120.3.103... Connected to mail.popular.com.sg (117.120.3.103). Escape character is '^]'. 220 localhost.localdomain - Welcome to Qmail Toaster Ver. 1.3 SMTP Server ESMTP quit 221 localhost.localdomain - Welcome to Qmail Toaster Ver. 1.3 SMTP Server Connection closed by foreign host. real2m14.788s user0m0.000s sys 0m0.000s [r...@cp root]# time telnet mail.popular.com.sg 587 Trying 117.120.3.103... Connected to mail.popular.com.sg (117.120.3.103). Escape character is '^]'. 220 localhost.localdomain - Welcome to Qmail Toaster Ver. 1.3 SMTP Server ESMTP quit 221 localhost.localdomain - Welcome to Qmail Toaster Ver. 1.3 SMTP Server Connection closed by foreign host. real0m5.913s user0m0.000s sys 0m0.010s [r...@cp root]# Could it still be DNS issue since the slowness does not show up in port 587? Thanks YongSan On Mon, Jul 12, 2010 at 2:32 PM, Jake Vickers j...@qmailtoaster.com wrote: On 07/12/2010 02:24 AM, Poh Yong Hwang wrote: Hi, I tried the following on the mail server itself and i got the reply immediately. [r...@mail init.d]# nslookup 122.175.72.62 Server: 127.0.0.1 Address:127.0.0.1#53 Non-authoritative answer: 62.72.175.122.in-addr.arpa name = Telemedia-AP-dynamic-062.72.175.122.airtelbroadband.in. Authoritative answers can be found from: It seems that i have djbdns install rather than BIND for my qmailtoaster. Can i check how can i configure the forwarders on my caching server? The mail server setup is by default according to the Qmailtoaster installation guide. Thanks YongSan On Mon, Jul 12, 2010 at 2:02 PM, Andreas Galatis a...@unet.de wrote: Hi YongSan, I tested to connect to your server on port 25. It takes about 2-3 min to get the greeting-banner (220 localhost.localdomainhe - Welcome to Qmail Toaster Ver. 1.3 SMTP Server ESMTP) You have a DNS lookup problem. When I tried to telnet to your SMTP port, it took 1 minute and 42 seconds to connect: [j...@jake-lapbox ~]$ time telnet mail.popular.com.sg 25 Trying 117.120.3.103... Connected to mail.popular.com.sg. Escape character is '^]'. 220 localhost.localdomain - Welcome to Qmail Toaster Ver. 1.3 SMTP Server ESMTP quit 221 localhost.localdomain - Welcome to Qmail Toaster Ver. 1.3 SMTP Server Connection closed by foreign host. real1m42.329s user0m0.001s sys0m0.006s I entered quit within 1-2 seconds of receiving your banner. What is the contents of your /var/qmail/control/blacklists file? Are you using spamdyke? What does your tcp.smtp file look like? What is being logged in your smtp log file?
Re: [qmailtoaster] Re: Slowness in smtp
It looks like you have problems solving your local name (the name of server where tcpserver is running). Check your local name in DNS, and add -l name to your tcpserver command line. Tonino Poh Yong Hwang ha scritto: Hi, Here is my resolv.conf : search mail.popular.com.sg http://mail.popular.com.sg nameserver 127.0.0.1 nameserver 165.21.83.88 nameserver 165.21.100.88 The slowness occurs on the time that the message took to leave Outlook outbound queue. If we do a email dossier check at centralops.net http://centralops.net, it always get timeout while connecting to our mail server. One of the domain i have in this mail server is mail.popular.com.sg http://mail.popular.com.sg Please advise. Thanks YongSan On Mon, Jul 12, 2010 at 3:54 AM, Eric Shubert e...@shubes.net mailto:e...@shubes.net wrote: DNS is often the culprit with sluggish performance, so Andreas is right. Outlook doesn't usually exhibit slowness. Because it has its own Outbound queue, it appears to the user that the message has been sent before the submission/smtp server is even contacted. I'd like to know where you're seeing the slowness. Are you counting the time it takes for the message to reach its destination? The time it takes to leave Outlook's Outbound queue? What messages are you seeing in the send queue that correspond to the slow message(s)? # qmlog send It's possible that the message is being requeued due to graylisting by the recipient's server. There are many possibilities. -- -Eric 'shubes' Andreas Galatis wrote: Hi Yongsan, I think 1st thing to lookup is dns-lookup speed of your server. Do you have a cahing-nameserver installed? What are your settings in resolve.conf? How is your connection to the internet (static, dynamic ip) Bye Andreas Am Sonntag, 11. Juli 2010 13:32:36 schrieb Poh Yong Hwang: Hi all, I have setup qmailtoaster and have an issue with sending out emails. Whenever I tried to send out emails, it gets very slow. Takes around 5 mins to send out an email using outlook. Please advise how should I troubleshoot this. Thanks. Yongsan --- - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com http://www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com http://qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com mailto:qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com mailto:qmailtoaster-list-h...@qmailtoaster.com -- in...@zioniInterazioni di Antonio Nati http://www.interazioni.it to...@interazioni.it
Re: [qmailtoaster] Re: spam email routing query
Ok, here is Timo's response to my question: Am 11.07.2010 um 21:01 schrieb Timo Sirainen: On Sat, 2010-07-10 at 09:14 +0200, Martin Waschbuesch wrote: 1.) Is there any danger regarding maildir consistency in directly moving mail items about? No. Assuming you use mv and not cp (and it's all in the same filesystem) so that the move is atomic. 2.) Could I somehow use deliver to move the mails? I think I can recall that other LDAs (maildrop?) allow for that? This would of course be preferred as the maildir cache would also still be optimized after the operation. deliver -u user -m mailboxname could be used to save new mails. Maybe a save + delete would work too. I don't really think it's worth it. If anyone has any suggestions, I'd really appreciate this. See the antispam plugin: http://johannes.sipsolutions.net/Projects/dovecot-antispam So, since I have not seen any issues with the way I do it (it is indeed mv and on same filesystem), I'll leave it as is. Though, that does not explain why Andreas saw different behaviour? Martin Am 08.07.2010 um 21:12 schrieb Martin Waschbuesch: You know, sometimes I am just way too slow it seems. :-) Am 08.07.2010 um 20:29 schrieb Eric Shubert: I haven't looked at the deliver documentation much, let alone recently. I don't mean to sound like a broken record, but would you like to ask on the dovecot list? (dove...@dovecot.org) That list has been pretty active lately, and the people there are very helpful. -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: Slowness in smtp
On 07/12/2010 02:48 AM, Poh Yong Hwang wrote: Hi, It seems that if i use port 587 it does not have the slowness issue.. [r...@cp root]# time telnet mail.popular.com.sg http://mail.popular.com.sg 25 Trying 117.120.3.103... Connected to mail.popular.com.sg http://mail.popular.com.sg (117.120.3.103). Escape character is '^]'. 220 localhost.localdomain - Welcome to Qmail Toaster Ver. 1.3 SMTP Server ESMTP quit 221 localhost.localdomain - Welcome to Qmail Toaster Ver. 1.3 SMTP Server Connection closed by foreign host. real2m14.788s user0m0.000s sys 0m0.000s [r...@cp root]# time telnet mail.popular.com.sg http://mail.popular.com.sg 587 Trying 117.120.3.103... Connected to mail.popular.com.sg http://mail.popular.com.sg (117.120.3.103). Escape character is '^]'. 220 localhost.localdomain - Welcome to Qmail Toaster Ver. 1.3 SMTP Server ESMTP quit 221 localhost.localdomain - Welcome to Qmail Toaster Ver. 1.3 SMTP Server Connection closed by foreign host. real0m5.913s user0m0.000s sys 0m0.010s [r...@cp root]# Could it still be DNS issue since the slowness does not show up in port 587? Port 587 skips the blacklists check, so the /var/qmail/control/blacklists file is not processed. Do your clients use port 25 or 587? If they're using port 25, change them to 587 but you will still need to fix your blacklists to lower the time before mails are allowed to be received. And we still have not seen any log files, so this is like installing a network card in the dark.
[qmailtoaster] help with some spam
I have these in my logs .. Found it when I was trimming some entries in my domain greylist This is not an account I have in my domain.. 44b2a950.4000106 My domain is wletc.com Looks like multiple ips with some multiple rdns. I am just going to add this one to the senders blacklist file. Is there a another method for blocking these types of numerical senders? Also, what steps can I take from getting false positives by listing my domain from sending to itself like some these entries. @40004c3b4f4d10acf19c spamdyke[11976]: TIMEOUT from: 44b2a950.4000...@wletc.com to: 44b2a950.4000...@wletc.com origin_ip: 213.190.211.147 origin_rdns: (unknown) auth: (unknown) reason: TIMEOUT @40004c3b56d128b184c4 CHKUSER accepted sender: from 44b2a950.4000...@wletc.com:: remote [94.65.155.4]:unknown:94.65.155.4 rcpt : sender accepted @40004c3b56d13709d9f4 spamdyke[18424]: DENIED_IP_IN_CC_RDNS from: 44b2a950.4000...@wletc.com to: 44b2a950.4000...@wletc.com origin_ip: 94.65.155.4 origin_rdns: ppp-94-65-155-4.home.otenet.gr auth: (unknown) @40004c3b570f0a02a51c spamdyke[18424]: TIMEOUT from: 44b2a950.4000...@wletc.com to: 44b2a950.4000...@wletc.com origin_ip: 94.65.155.4 origin_rdns: ppp-94-65-155-4.home.otenet.gr auth: (unknown) reason: TIMEOUT @40004c3b5e45242165b4 CHKUSER accepted sender: from 44b2a950.4000...@wletc.com:: remote [89.123.30.150]:unknown:89.123.30.150 rcpt : sender accepted @40004c3b5e45314303ec spamdyke[25343]: DENIED_RBL_MATCH from: 44b2a950.4000...@wletc.com to: 44b2a950.4000...@wletc.com origin_ip: 89.123.30.150 origin_rdns: (unknown) auth: (unknown) @40004c3b5e8302297974 spamdyke[25343]: TIMEOUT from: 44b2a950.4000...@wletc.com to: 44b2a950.4000...@wletc.com origin_ip: 89.123.30.150 origin_rdns: (unknown) auth: (unknown) reason: TIMEOUT @40004c3b6b742cb00294 CHKUSER accepted sender: from 44b2a950.4000...@wletc.com:: remote [12.29.111.249]:unknown:12.29.111.133 rcpt : sender accepted @40004c3b6b74336cc98c spamdyke[4241]: DENIED_GRAYLISTED from: 44b2a950.4000...@wletc.com to: 44b2a950.4000...@wletc.com origin_ip: 12.29.111.133 origin_rdns: (unknown) auth: (unknown) @40004c3b786a36a2bb84 spamdyke[15651]: DENIED_BLACKLIST_IP from: oqocegogel1...@satlynx.net to: 44b2a950.4000...@wletc.com origin_ip: 217.159.121.90 origin_rdns: host-217-159-121-90.satlynx.net auth: (unknown) @40004c3b78a914e6bb1c spamdyke[15651]: TIMEOUT from: oqocegogel1...@satlynx.net to: 44b2a950.4000...@wletc.com origin_ip: 217.159.121.90 origin_rdns: host-217-159-121-90.satlynx.net auth: (unknown) reason: TIMEOUT Thanks, -- David Milholen Project Engineer 501-318-1300 Wireless Etc
Re: [qmailtoaster] Re: spam email routing query
Hi. My experience was only when I deleted files. I think dovecot does not complain if there are new files in the folder, but if there are files missing, it complains. I think it's normel that programs deliver mail into the folder, but normaly, whitout dovecot no file is deleted. So dovecot thinks there is missing s.th. and complains I just tried out and deleted some mails in a Mailbox/cur Folder. No problem. I will investigate more on the error I had with my client and will tell you about the results. Andreas Am Montag, 12. Juli 2010 09:32:51 schrieb Martin Waschbuesch: Ok, here is Timo's response to my question: Am 11.07.2010 um 21:01 schrieb Timo Sirainen: On Sat, 2010-07-10 at 09:14 +0200, Martin Waschbuesch wrote: 1.) Is there any danger regarding maildir consistency in directly moving mail items about? No. Assuming you use mv and not cp (and it's all in the same filesystem) so that the move is atomic. 2.) Could I somehow use deliver to move the mails? I think I can recall that other LDAs (maildrop?) allow for that? This would of course be preferred as the maildir cache would also still be optimized after the operation. deliver -u user -m mailboxname could be used to save new mails. Maybe a save + delete would work too. I don't really think it's worth it. If anyone has any suggestions, I'd really appreciate this. See the antispam plugin: http://johannes.sipsolutions.net/Projects/dovecot-antispam So, since I have not seen any issues with the way I do it (it is indeed mv and on same filesystem), I'll leave it as is. Though, that does not explain why Andreas saw different behaviour? Martin Am 08.07.2010 um 21:12 schrieb Martin Waschbuesch: You know, sometimes I am just way too slow it seems. :-) Am 08.07.2010 um 20:29 schrieb Eric Shubert: I haven't looked at the deliver documentation much, let alone recently. I don't mean to sound like a broken record, but would you like to ask on the dovecot list? (dove...@dovecot.org) That list has been pretty active lately, and the people there are very helpful. --- -- Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! -- --- Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
[qmailtoaster] Re: Slowness in smtp
Is sounds as though there is something amiss in your djbdns configuration. If you really want to use djbdns for some reason, I've found The Linux Cookbook by Carla Schroeder to be a good reference for that. I don't presently have my copy nearby. I've found that it's much easier to use the caching-nameserver package if you're using CentOS. Simply remove the djbdns package, then install caching-nameserver: # rpm -e djbdns # yum install caching-nameserver I expect that will fix things up for you. -- -Eric 'shubes' Poh Yong Hwang wrote: Hi, I tried the following on the mail server itself and i got the reply immediately. [r...@mail init.d]# nslookup 122.175.72.62 Server: 127.0.0.1 Address:127.0.0.1#53 Non-authoritative answer: 62.72.175.122.in-addr.arpa name = Telemedia-AP-dynamic-062.72.175.122.airtelbroadband.in http://Telemedia-AP-dynamic-062.72.175.122.airtelbroadband.in. Authoritative answers can be found from: It seems that i have djbdns install rather than BIND for my qmailtoaster. Can i check how can i configure the forwarders on my caching server? The mail server setup is by default according to the Qmailtoaster installation guide. Thanks YongSan On Mon, Jul 12, 2010 at 2:02 PM, Andreas Galatis a...@unet.de mailto:a...@unet.de wrote: Hi YongSan, I tested to connect to your server on port 25. It takes about 2-3 min to get the greeting-banner (220 localhost.localdomainhe - Welcome to Qmail Toaster Ver. 1.3 SMTP Server ESMTP) For me that looks like your server takes ages to resolve my senders reverse dns. Did you configure the forwarders on your caching dns server on localhost? How long does it take to resolve f.ex. 122.175.72.62 ? Some times ago I had the same behaviour on a clients qmail-box where the config. of bind disallowed querys from localhost (127.0.0.1). Andreas Am Montag, 12. Juli 2010 05:29:44 schrieb Poh Yong Hwang: Hi, It should not be my windows as i have ask many people to try(around 10) and all face the same issue with slowness in smtp. I have remove the default zen.spamhaues on the blacklist file and it is still slow.. YongSan On Mon, Jul 12, 2010 at 11:06 AM, South Computers i...@southcomputers.com mailto:i...@southcomputers.comwrote: For a quick test to see if it's your dns at the windoze box, try adding your toaster to the hosts file. Typically win boxes check the hosts file before dns. Also, check the blacklists on your toaster. You may have a slow dnsbl in there. Poh Yong Hwang wrote: Hi, Here is my resolv.conf : search mail.popular.com.sg http://mail.popular.com.sg http://mail.popular.com.sg nameserver 127.0.0.1 nameserver 165.21.83.88 nameserver 165.21.100.88 The slowness occurs on the time that the message took to leave Outlook outbound queue. If we do a email dossier check at centralops.net http://centralops.net http://centralops.net, it always get timeout while connecting to our mail server. One of the domain i have in this mail server is mail.popular.com.sg http://mail.popular.com.sg http://mail.popular.com.sg Please advise. Thanks YongSan On Mon, Jul 12, 2010 at 3:54 AM, Eric Shubert e...@shubes.net mailto:e...@shubes.net mailto: e...@shubes.net mailto:e...@shubes.net wrote: DNS is often the culprit with sluggish performance, so Andreas is right. Outlook doesn't usually exhibit slowness. Because it has its own Outbound queue, it appears to the user that the message has been sent before the submission/smtp server is even contacted. I'd like to know where you're seeing the slowness. Are you counting the time it takes for the message to reach its destination? The time it takes to leave Outlook's Outbound queue? What messages are you seeing in the send queue that correspond to the slow message(s)? # qmlog send It's possible that the message is being requeued due to graylisting by the recipient's server. There are many possibilities. -- -Eric 'shubes' Andreas Galatis wrote: Hi Yongsan, I think 1st thing to lookup is dns-lookup speed of your server. Do you have a cahing-nameserver installed? What are your settings in resolve.conf? How is your connection to the internet (static, dynamic ip) Bye Andreas Am Sonntag, 11. Juli 2010 13:32:36
[qmailtoaster] Re: help with some spam
If all of your submissions come from authenticated connections (which they should), you can blacklist your own domain. I know this sounds counter-intuitive, but since all of your domains authenticate, the only rejections will be those who claim to come from your domain but fail to authenticate, since authenticated connections pass all filters. It works well to block all spam that forges your domain in the sender's address. Note, if you use squirrelmail, you should modify your SM configuration to authenticate smtp submissions, and probably use port 587 as well (instead of the default port 25). The stock squirrelmail configuration does not authenticate by default. In case all of your submissions aren't authenticated (perhaps you have a web app that doesn't authenticate), the new version of spamdyke (v4.1.0, just released a week or so ago) contains a new option that will reject emails where the sender and recipient address is the same. This is often the case with such spam, and is the next best thing to blacklisting your own domain. FWIW, when you use qtp-install-spamdyke to upgrade to the latest spamdyke version, it will now also install qtp-prune-graylist so your graylist stays pruned optimally. You should be sure to have the latest qmailtoaster-plus package installed before upgrading spamdyke: # yum update qmailtoaster-plus # qtp-install-spamdyke You can also use badmailto for restricting some of these spam messages that contain numbers. See http://wiki.qmailtoaster.com/index.php/Account_verification_using_badmailto but I expect this would not be necessary if you're blacklisting your domain(s). -- -Eric 'shubes' David Milholen wrote: I have these in my logs .. Found it when I was trimming some entries in my domain greylist This is not an account I have in my domain.. 44b2a950.4000106 My domain is wletc.com Looks like multiple ips with some multiple rdns. I am just going to add this one to the senders blacklist file. Is there a another method for blocking these types of numerical senders? Also, what steps can I take from getting false positives by listing my domain from sending to itself like some these entries. @40004c3b4f4d10acf19c spamdyke[11976]: TIMEOUT from: 44b2a950.4000...@wletc.com to: 44b2a950.4000...@wletc.com origin_ip: 213.190.211.147 origin_rdns: (unknown) auth: (unknown) reason: TIMEOUT @40004c3b56d128b184c4 CHKUSER accepted sender: from 44b2a950.4000...@wletc.com:: remote [94.65.155.4]:unknown:94.65.155.4 rcpt : sender accepted @40004c3b56d13709d9f4 spamdyke[18424]: DENIED_IP_IN_CC_RDNS from: 44b2a950.4000...@wletc.com to: 44b2a950.4000...@wletc.com origin_ip: 94.65.155.4 origin_rdns: ppp-94-65-155-4.home.otenet.gr auth: (unknown) @40004c3b570f0a02a51c spamdyke[18424]: TIMEOUT from: 44b2a950.4000...@wletc.com to: 44b2a950.4000...@wletc.com origin_ip: 94.65.155.4 origin_rdns: ppp-94-65-155-4.home.otenet.gr auth: (unknown) reason: TIMEOUT @40004c3b5e45242165b4 CHKUSER accepted sender: from 44b2a950.4000...@wletc.com:: remote [89.123.30.150]:unknown:89.123.30.150 rcpt : sender accepted @40004c3b5e45314303ec spamdyke[25343]: DENIED_RBL_MATCH from: 44b2a950.4000...@wletc.com to: 44b2a950.4000...@wletc.com origin_ip: 89.123.30.150 origin_rdns: (unknown) auth: (unknown) @40004c3b5e8302297974 spamdyke[25343]: TIMEOUT from: 44b2a950.4000...@wletc.com to: 44b2a950.4000...@wletc.com origin_ip: 89.123.30.150 origin_rdns: (unknown) auth: (unknown) reason: TIMEOUT @40004c3b6b742cb00294 CHKUSER accepted sender: from 44b2a950.4000...@wletc.com:: remote [12.29.111.249]:unknown:12.29.111.133 rcpt : sender accepted @40004c3b6b74336cc98c spamdyke[4241]: DENIED_GRAYLISTED from: 44b2a950.4000...@wletc.com to: 44b2a950.4000...@wletc.com origin_ip: 12.29.111.133 origin_rdns: (unknown) auth: (unknown) @40004c3b786a36a2bb84 spamdyke[15651]: DENIED_BLACKLIST_IP from: oqocegogel1...@satlynx.net to: 44b2a950.4000...@wletc.com origin_ip: 217.159.121.90 origin_rdns: host-217-159-121-90.satlynx.net auth: (unknown) @40004c3b78a914e6bb1c spamdyke[15651]: TIMEOUT from: oqocegogel1...@satlynx.net to: 44b2a950.4000...@wletc.com origin_ip: 217.159.121.90 origin_rdns: host-217-159-121-90.satlynx.net auth: (unknown) reason: TIMEOUT Thanks, -- David Milholen Project Engineer 501-318-1300 Wireless Etc - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail:
Re: [qmailtoaster] Re: setting up the virtual drive for scanning
Eric, I did exactly what you said and I do remember this type of setup doing work with the cacti project.. Been a while since I have had to pay attention to Hardware like drives and memory. I can definitely see a difference on the 3 different clients I have to do some real world testing. Things are what you might say popping. Here is snapshot of the top -i [r...@ns2 ~]# top -i top - 18:16:14 up 13 min, 1 user, load average: 3.16, 2.65, 1.74 Tasks: 177 total, 2 running, 173 sleeping, 0 stopped, 2 zombie Cpu(s): 97.8% us, 1.9% sy, 0.0% ni, 0.0% id, 0.0% wa, 0.3% hi, 0.0% si Mem: 4094564k total, 281796k used, 3812768k free,24620k buffers Swap: 779144k total,0k used, 779144k free,84840k cached PID USER PR NI VIRT RES SHR S %CPU %MEMTIME+ COMMAND 5239 clamav25 0 6268 3276 664 R 73.5 0.1 0:05.31 clamd 5038 root 18 0 3012 1072 776 R 6.5 0.0 0:08.56 top This is after a reboot. I went ahead an increase the size of the drive to 512MB. I check before I did this and there was plenty of memory to spare but always seeing swap at 192K. ClamAV usually using about 90% of cpu. I have some really good notes on what I have done with the lists help to make this a very streamline server. I wish we had a wiki that would have all the tweaks on security in one place and another for performance. My notes are divided this way. --Thanks --Dave On 7/10/2010 7:33 PM, Eric Shubert wrote: David Milholen wrote: Hi All, Jake this may be your territory but anyways I am wanting to add a small virtual drive for doing my clam scans. Not sure where I should begin. Thanks ---Dave - I think you're meaning to make a tmpfs for the simscan work area, which is used for clam and spamassassin scanning. I believe you simply want to add a tmpfs definition for /var/qmail/simscan in your /etc/fstab file, like so: tmpfs /var/qmail/simscan tmpfs size=256M,nodev,noexec,noatime,uid=clamav,mode=750 0 0 (all on one line) The size you use should be appropriate for your system, which depends on what you have available and how much scanning is typically done concurrently. You can reboot to make it effective, or I think you alternatively stop qmail, then make sure that /var/qmail/simscan/ is empty, then make a backup of fstab, then add the above line to fstab, then # mount /var/qmail/simscan # service qmail start Having said all that, I'm not sure there's a whole lot to gain by doing this in a typical configuration. I realize that Jake has seen significant performance improvements with this in the past, but I believe it also depends on how your kernel/system is tuned. On the systems I've seen, the simscan work files are usually already still cached, so putting them in a tmpfs doesn't gain anything significant. While it does save physical i/o of the files, with asynchronous i/o that is typically not a bottleneck. The only way I can see that this change could improve performance is if the kernel is deciding not to cache these files (for whatever reason), and/or asynchronous i/o is not installed. It will however reduce your overall i/o a bit regardless. YMMV. Please let us know what you find.
[qmailtoaster] Re: setting up the virtual drive for scanning
David Milholen wrote: Eric, I did exactly what you said and I do remember this type of setup doing work with the cacti project.. Been a while since I have had to pay attention to Hardware like drives and memory. I can definitely see a difference on the 3 different clients I have to do some real world testing. Things are what you might say popping. Here is snapshot of the top -i [r...@ns2 ~]# top -i top - 18:16:14 up 13 min, 1 user, load average: 3.16, 2.65, 1.74 Tasks: 177 total, 2 running, 173 sleeping, 0 stopped, 2 zombie Cpu(s): 97.8% us, 1.9% sy, 0.0% ni, 0.0% id, 0.0% wa, 0.3% hi, 0.0% si Mem: 4094564k total, 281796k used, 3812768k free,24620k buffers Swap: 779144k total,0k used, 779144k free,84840k cached PID USER PR NI VIRT RES SHR S %CPU %MEMTIME+ COMMAND 5239 clamav25 0 6268 3276 664 R 73.5 0.1 0:05.31 clamd 5038 root 18 0 3012 1072 776 R 6.5 0.0 0:08.56 top This is after a reboot. I went ahead an increase the size of the drive to 512MB. I check before I did this and there was plenty of memory to spare but always seeing swap at 192K. ClamAV usually using about 90% of cpu. Those numbers look to me like older version(s) of clamav that had some problems. Which version are you running? If it's not the current one, I'd certainly upgrade. I have some really good notes on what I have done with the lists help to make this a very streamline server. I wish we had a wiki that would have all the tweaks on security in one place and another for performance. Me too. Care to do some editing of the wiki? It's not very tough. Feel free to hack away on it. Seems as though the wiki can always use some improvement. I'm always glad to see others contributing there. My notes are divided this way. That's good organization. FWIW, I did some organizing on the Tips Tricks page recently to group things together a bit. Could probably still use some more work. -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] setting up the virtual drive for scanning
On 7/11/2010 10:41 AM, Jake Vickers wrote: On 07/10/2010 07:44 PM, David Milholen wrote: Hi All, Jake this may be your territory but anyways I am wanting to add a small virtual drive for doing my clam scans. Not sure where I should begin. Thanks I actually had done a video on this - I'll get it back up in a day or two. It was one of the more popular subscriber videos. Jake, I do remember seeing that one but did not get the chance to set up my account for purchase. I will still purchase some of those videos once you get it back up. --thanks Dave - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: setting up the virtual drive for scanning
On 7/12/2010 8:51 PM, Eric Shubert wrote: David Milholen wrote: Eric, I did exactly what you said and I do remember this type of setup doing work with the cacti project.. Been a while since I have had to pay attention to Hardware like drives and memory. I can definitely see a difference on the 3 different clients I have to do some real world testing. Things are what you might say popping. Here is snapshot of the top -i [r...@ns2 ~]# top -i top - 18:16:14 up 13 min, 1 user, load average: 3.16, 2.65, 1.74 Tasks: 177 total, 2 running, 173 sleeping, 0 stopped, 2 zombie Cpu(s): 97.8% us, 1.9% sy, 0.0% ni, 0.0% id, 0.0% wa, 0.3% hi, 0.0% si Mem: 4094564k total, 281796k used, 3812768k free,24620k buffers Swap: 779144k total,0k used, 779144k free,84840k cached PID USER PR NI VIRT RES SHR S %CPU %MEMTIME+ COMMAND 5239 clamav25 0 6268 3276 664 R 73.5 0.1 0:05.31 clamd 5038 root 18 0 3012 1072 776 R 6.5 0.0 0:08.56 top This is after a reboot. I went ahead an increase the size of the drive to 512MB. I check before I did this and there was plenty of memory to spare but always seeing swap at 192K. ClamAV usually using about 90% of cpu. Those numbers look to me like older version(s) of clamav that had some problems. Which version are you running? If it's not the current one, I'd certainly upgrade. You are correct about it being the older version. I am in the process of putting together a new dual quad core x-server with a solid-state HDD for boot and 2 sata 250GB drives(NEW) for a banging server. I have 4 domains on the above machine with about 1000 accounts spread across them. I get great compliments on how well it performs on our all wireless network along with great spam reduction. --Dave - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: help with some spam
On 7/12/2010 8:28 PM, Eric Shubert wrote: If all of your submissions come from authenticated connections (which they should), you can blacklist your own domain. I know this sounds counter-intuitive, but since all of your domains authenticate, the only rejections will be those who claim to come from your domain but fail to authenticate, since authenticated connections pass all filters. It works well to block all spam that forges your domain in the sender's address. There may be a small problem with this but should not be a major issue.. Most not all of my customers have their mail client authentication required box unchecked if they are INSIDE my network but if they are outside of my network they must have this checked. For example I own 208.44.160.xxx/24, 63.147.8.0/23,65.44.158.0/23,63.144.48.0/24 networks and they are all on my wireless topology. If my customers are home on these networks then the only path out is thru my data center which has the main dns and mx services. If they are not home say on vacation then they must set this box for authentication. 2 yrs ago we started this by default to set them. So there may be a few still out there with this not checked. I am not scared to list my nets because I do welcome an attack from outside. I do love my iptables and the unix scripting in image stream :) Note, if you use squirrelmail, you should modify your SM configuration to authenticate smtp submissions, and probably use port 587 as well (instead of the default port 25). The stock squirrelmail configuration does not authenticate by default. Already configured this and works great:) In case all of your submissions aren't authenticated (perhaps you have a web app that doesn't authenticate), the new version of spamdyke (v4.1.0, just released a week or so ago) contains a new option that will reject emails where the sender and recipient address is the same. This is often the case with such spam, and is the next best thing to blacklisting your own domain. FWIW, when you use qtp-install-spamdyke to upgrade to the latest spamdyke version, it will now also install qtp-prune-graylist so your graylist stays pruned optimally. You should be sure to have the latest qmailtoaster-plus package installed before upgrading spamdyke: # yum update qmailtoaster-plus # qtp-install-spamdyke You can also use badmailto for restricting some of these spam messages that contain numbers. See http://wiki.qmailtoaster.com/index.php/Account_verification_using_badmailto but I expect this would not be necessary if you're blacklisting your domain(s). The blacklist_rdns would be the place to list my domain? --Dave - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: help with some spam
I was able to get rid of that sort of spam by signing all outgoing mail with Domainkeys and setting the policy record for Domainkeys to signify: This server signs ALL outgoing mail. Incoming policy can be adjusted to reject mail where there is no signature in such a case. Martin Am 13.07.2010 um 04:57 schrieb David Milholen: On 7/12/2010 8:28 PM, Eric Shubert wrote: If all of your submissions come from authenticated connections (which they should), you can blacklist your own domain. I know this sounds counter-intuitive, but since all of your domains authenticate, the only rejections will be those who claim to come from your domain but fail to authenticate, since authenticated connections pass all filters. It works well to block all spam that forges your domain in the sender's address. There may be a small problem with this but should not be a major issue.. Most not all of my customers have their mail client authentication required box unchecked if they are INSIDE my network but if they are outside of my network they must have this checked. For example I own 208.44.160.xxx/24, 63.147.8.0/23,65.44.158.0/23,63.144.48.0/24 networks and they are all on my wireless topology. If my customers are home on these networks then the only path out is thru my data center which has the main dns and mx services. If they are not home say on vacation then they must set this box for authentication. 2 yrs ago we started this by default to set them. So there may be a few still out there with this not checked. I am not scared to list my nets because I do welcome an attack from outside. I do love my iptables and the unix scripting in image stream :) Note, if you use squirrelmail, you should modify your SM configuration to authenticate smtp submissions, and probably use port 587 as well (instead of the default port 25). The stock squirrelmail configuration does not authenticate by default. Already configured this and works great:) In case all of your submissions aren't authenticated (perhaps you have a web app that doesn't authenticate), the new version of spamdyke (v4.1.0, just released a week or so ago) contains a new option that will reject emails where the sender and recipient address is the same. This is often the case with such spam, and is the next best thing to blacklisting your own domain. FWIW, when you use qtp-install-spamdyke to upgrade to the latest spamdyke version, it will now also install qtp-prune-graylist so your graylist stays pruned optimally. You should be sure to have the latest qmailtoaster-plus package installed before upgrading spamdyke: # yum update qmailtoaster-plus # qtp-install-spamdyke You can also use badmailto for restricting some of these spam messages that contain numbers. See http://wiki.qmailtoaster.com/index.php/Account_verification_using_badmailto but I expect this would not be necessary if you're blacklisting your domain(s). The blacklist_rdns would be the place to list my domain? --Dave - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com -- Corporation. An ingenious device for obtaining individual profit without individual responsibility. Bierce, Ambrose - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com