mr_motor
06-02-2013, 10:49
Всем добрый день.
У меня есть проблема с почтовиком Postfix, не отправляется почта на НЕКОТОРЫЕ домены, в логах выдает следующее:
Feb 6 10:20:48 mail postfix/smtpd[78335]: C65E1D4C30: client=unknown[192.168.19.5], sasl_method=CRAM-MD5, sasl_username=xxx@yyy.ru
Feb 6 10:20:48 mail postfix/cleanup[78331]: C65E1D4C30: message-id=<1184483432.20130205131253@yyy.ru>
Feb 6 10:20:48 mail postfix/cleanup[78331]: C65E1D4C30: resent-message-id=<20130206042048.C65E1D4C30@mail.yyy.ru>
Feb 6 10:21:03 mail postfix/qmgr[78064]: C65E1D4C30: from=<xxx@yyy.ru>, size=19954141, nrcpt=1 (queue active)
Feb 6 10:21:05 mail postfix/smtp[78209]: C65E1D4C30: to=<zzz@arsib.com>, relay=mx1.spaceweb.ru[77.222.41.43]:25, delay=17, delays=15/0/1.6/0.74, dsn=5.0.0, status=bounced (host mx1.spaceweb.ru[77.222.41.43] said: 550-Verification failed for <xxx@yyy.ru> 550-Called: 194.186.xx.xx 550-Sent: RCPT TO:<xxx@yyy.ru> 550-Response: 554 5.7.1 <>: Sender address rejected: Access denied 550 Sender verify failed (in reply to RCPT TO command))
Feb 6 10:21:05 mail postfix/smtp[78209]: C65E1D4C30: lost connection with mx1.spaceweb.ru[77.222.41.43] while sending DATA command
Feb 6 10:21:05 mail postfix/bounce[78510]: C65E1D4C30: sender non-delivery notification: A5B8DD4C7D
Feb 6 10:21:05 mail postfix/qmgr[78064]: C65E1D4C30: removed
Feb 6 10:25:15 mail postfix/smtpd[78834]: connect from mx1.spaceweb.ru[77.222.41.36]
Feb 6 10:25:15 mail postfix/smtpd[78834]: NOQUEUE: reject: RCPT from mx1.spaceweb.ru[77.222.41.36]: 554 5.7.1 <>: Sender address rejected: Access denied; from=<> to=<xxx@yyy.ru> proto=SMTP helo=<mx1.spaceweb.ru>
Feb 6 10:25:15 mail postfix/smtpd[78834]: disconnect from mx1.spaceweb.ru[77.222.41.36]
Если этому верить, то принимающий сервер не может проверить адрес отправителя xxx@yyy.ru (отправитель в нашей сети, адрес существует). Понятно, что где то ошибка в конфиге, но где?
Конфиг такой:
queue_directory = /var/spool/postfix
command_directory = /usr/local/sbin
daemon_directory = /usr/local/libexec/postfix
mail_owner = postfix
default_privs = nobody
myhostname = mail.yyy.ru
mydomain = yyy.ru
myorigin = $mydomain
inet_interfaces = all
mydestination = $myhostname, localhost.$mydomain, localhost
local_recipient_maps = unix:passwd.byname $alias_maps
unknown_local_recipient_reject_code = 550
mynetworks_style = host
mynetworks = mynetworks = 127.0.0.0/8, 192.168.0.0/16
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
smtpd_banner = $myhostname ESMTP $mail_name
debug_peer_level = 2
debugger_command =
PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
xxgdb $daemon_directory/$process_name $process_id & sleep 5
sendmail_path = /usr/local/sbin/sendmail
newaliases_path = /usr/local/bin/newaliases
mailq_path = /usr/local/bin/mailq
setgid_group = maildrop
html_directory = no
manpage_directory = /usr/local/man
sample_directory = /usr/local/etc/postfix
readme_directory = no
smtpd_helo_required = yes
smtpd_soft_error_limit = 2
smtpd_error_sleep_time = ${stress?0}${stress:10s}
smtpd_hard_error_limit = ${stress?3}${stress:20}
smtpd_timeout = ${stress?30}${stress:300}
address_verify_map = btree:$data_directory/postfix_verify
address_verify_positive_expire_time = 90d
address_verify_positive_refresh_time = 30d
address_verify_negative_refresh_time = 3m
unverified_sender_reject_code = 550
smtpd_client_restrictions = permit_mynetworks,
permit_sasl_authenticated,
check_client_access regexp:/usr/local/etc/postfix/client_access,
reject_unknown_client_hostname,
reject_rbl_client cbl.abuseat.org,
reject_rbl_client bl.spamcop.net,
reject_rbl_client dnsbl.sorbs.net
smtpd_recipient_restrictions = hash:/usr/local/etc/postfix/recipient,
check_recipient_access regexp:/usr/local/etc/postfix/recipient_access,
permit_mynetworks,
permit_sasl_authenticated,
reject_non_fqdn_recipient,
reject_unknown_recipient_domain,
reject_unlisted_recipient,
reject_unauth_destination,
reject_unauth_pipelining,
reject_unverified_recipient
reject_rbl_client zen.spamhaus.org,
reject_rbl_client bl.spamcop.net,
smtpd_helo_restrictions = permit_mynetworks,
permit_sasl_authenticated,
check_helo_access regexp:/usr/local/etc/postfix/hello_access,
check_helo_access regexp:/usr/local/etc/postfix/hello_regexp,
check_helo_access regexp:/usr/local/etc/postfix/dul_checks,
reject_invalid_helo_hostname,
reject_non_fqdn_helo_hostname,
reject_unknown_helo_hostname
smtpd_sender_restrictions = permit_mynetworks,
permit_sasl_authenticated,
check_client_access regexp:/usr/local/etc/postfix/sender_exeption,
check_sender_access regexp:/usr/local/etc/postfix/sender_access,
reject_unverified_sender,
reject_authenticated_sender_login_mismatch,
reject_unknown_sender_domain,
reject_unlisted_sender
smtpd_recipient_restrictions = regexp:/usr/local/etc/postfix/recipient,
permit_mynetworks,
permit_sasl_authenticated,
reject_non_fqdn_recipient,
reject_unknown_recipient_domain,
reject_unlisted_recipient,
reject_unauth_destination,
reject_unauth_pipelining,
reject_unverified_recipient
reject_rbl_client zen.spamhaus.org,
reject_rbl_client bl.spamcop.net,
smtpd_etrn_restrictions = reject
smtpd_reject_unlisted_sender = yes
disable_vrfy_command = no
strict_rfc821_envelopes = no
show_user_unknown_table_name = no
address_verify_sender = postmaster@yyy.ru
unverified_sender_reject_code = 550
smtpd_helo_required = yes
smtp_always_send_ehlo = yes
smtpd_hard_error_limit = 8
smtpd_sasl_auth_enable = yes
smtpd_sasl_application_name = smtpd
broken_sasl_auth_clients = yes
smtpd_sasl_security_options = noanonymous
smtpd_sender_login_maps = mysql:/usr/local/etc/postfix/mysqlLookupMaps/sender.conf
virtual_alias_maps = mysql:/usr/local/etc/postfix/mysqlLookupMaps/alias.conf
virtual_mailbox_domains = mysql:/usr/local/etc/postfix/mysqlLookupMaps/domain.conf
virtual_mailbox_maps = mysql:/usr/local/etc/postfix/mysqlLookupMaps/mailbox.conf
virtual_mailbox_base = /var/spool/mail
virtual_mailbox_limit_maps = mysql:/usr/local/etc/postfix/mysqlLookupMaps/quota.conf
virtual_maildir_extended=yes
virtual_mailbox_limit_override=yes
virtual_create_maildirsize = yes
virtual_overquota_bounce = yes
virtual_maildir_limit_message="Sorry, the user's maildir has overdrawn his diskspace quota, please try again later"
message_size_limit = 31242880
virtual_gid_maps = static:1981
virtual_uid_maps = static:1981
virtual_minimum_uid = 1000
bounce_template_file = /usr/local/etc/postfix/bounce.cf
p.s. Не пинайте, если причина банальна и очевидна, пытался найти самостоятельно - не нашел.
У меня есть проблема с почтовиком Postfix, не отправляется почта на НЕКОТОРЫЕ домены, в логах выдает следующее:
Feb 6 10:20:48 mail postfix/smtpd[78335]: C65E1D4C30: client=unknown[192.168.19.5], sasl_method=CRAM-MD5, sasl_username=xxx@yyy.ru
Feb 6 10:20:48 mail postfix/cleanup[78331]: C65E1D4C30: message-id=<1184483432.20130205131253@yyy.ru>
Feb 6 10:20:48 mail postfix/cleanup[78331]: C65E1D4C30: resent-message-id=<20130206042048.C65E1D4C30@mail.yyy.ru>
Feb 6 10:21:03 mail postfix/qmgr[78064]: C65E1D4C30: from=<xxx@yyy.ru>, size=19954141, nrcpt=1 (queue active)
Feb 6 10:21:05 mail postfix/smtp[78209]: C65E1D4C30: to=<zzz@arsib.com>, relay=mx1.spaceweb.ru[77.222.41.43]:25, delay=17, delays=15/0/1.6/0.74, dsn=5.0.0, status=bounced (host mx1.spaceweb.ru[77.222.41.43] said: 550-Verification failed for <xxx@yyy.ru> 550-Called: 194.186.xx.xx 550-Sent: RCPT TO:<xxx@yyy.ru> 550-Response: 554 5.7.1 <>: Sender address rejected: Access denied 550 Sender verify failed (in reply to RCPT TO command))
Feb 6 10:21:05 mail postfix/smtp[78209]: C65E1D4C30: lost connection with mx1.spaceweb.ru[77.222.41.43] while sending DATA command
Feb 6 10:21:05 mail postfix/bounce[78510]: C65E1D4C30: sender non-delivery notification: A5B8DD4C7D
Feb 6 10:21:05 mail postfix/qmgr[78064]: C65E1D4C30: removed
Feb 6 10:25:15 mail postfix/smtpd[78834]: connect from mx1.spaceweb.ru[77.222.41.36]
Feb 6 10:25:15 mail postfix/smtpd[78834]: NOQUEUE: reject: RCPT from mx1.spaceweb.ru[77.222.41.36]: 554 5.7.1 <>: Sender address rejected: Access denied; from=<> to=<xxx@yyy.ru> proto=SMTP helo=<mx1.spaceweb.ru>
Feb 6 10:25:15 mail postfix/smtpd[78834]: disconnect from mx1.spaceweb.ru[77.222.41.36]
Если этому верить, то принимающий сервер не может проверить адрес отправителя xxx@yyy.ru (отправитель в нашей сети, адрес существует). Понятно, что где то ошибка в конфиге, но где?
Конфиг такой:
queue_directory = /var/spool/postfix
command_directory = /usr/local/sbin
daemon_directory = /usr/local/libexec/postfix
mail_owner = postfix
default_privs = nobody
myhostname = mail.yyy.ru
mydomain = yyy.ru
myorigin = $mydomain
inet_interfaces = all
mydestination = $myhostname, localhost.$mydomain, localhost
local_recipient_maps = unix:passwd.byname $alias_maps
unknown_local_recipient_reject_code = 550
mynetworks_style = host
mynetworks = mynetworks = 127.0.0.0/8, 192.168.0.0/16
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
smtpd_banner = $myhostname ESMTP $mail_name
debug_peer_level = 2
debugger_command =
PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
xxgdb $daemon_directory/$process_name $process_id & sleep 5
sendmail_path = /usr/local/sbin/sendmail
newaliases_path = /usr/local/bin/newaliases
mailq_path = /usr/local/bin/mailq
setgid_group = maildrop
html_directory = no
manpage_directory = /usr/local/man
sample_directory = /usr/local/etc/postfix
readme_directory = no
smtpd_helo_required = yes
smtpd_soft_error_limit = 2
smtpd_error_sleep_time = ${stress?0}${stress:10s}
smtpd_hard_error_limit = ${stress?3}${stress:20}
smtpd_timeout = ${stress?30}${stress:300}
address_verify_map = btree:$data_directory/postfix_verify
address_verify_positive_expire_time = 90d
address_verify_positive_refresh_time = 30d
address_verify_negative_refresh_time = 3m
unverified_sender_reject_code = 550
smtpd_client_restrictions = permit_mynetworks,
permit_sasl_authenticated,
check_client_access regexp:/usr/local/etc/postfix/client_access,
reject_unknown_client_hostname,
reject_rbl_client cbl.abuseat.org,
reject_rbl_client bl.spamcop.net,
reject_rbl_client dnsbl.sorbs.net
smtpd_recipient_restrictions = hash:/usr/local/etc/postfix/recipient,
check_recipient_access regexp:/usr/local/etc/postfix/recipient_access,
permit_mynetworks,
permit_sasl_authenticated,
reject_non_fqdn_recipient,
reject_unknown_recipient_domain,
reject_unlisted_recipient,
reject_unauth_destination,
reject_unauth_pipelining,
reject_unverified_recipient
reject_rbl_client zen.spamhaus.org,
reject_rbl_client bl.spamcop.net,
smtpd_helo_restrictions = permit_mynetworks,
permit_sasl_authenticated,
check_helo_access regexp:/usr/local/etc/postfix/hello_access,
check_helo_access regexp:/usr/local/etc/postfix/hello_regexp,
check_helo_access regexp:/usr/local/etc/postfix/dul_checks,
reject_invalid_helo_hostname,
reject_non_fqdn_helo_hostname,
reject_unknown_helo_hostname
smtpd_sender_restrictions = permit_mynetworks,
permit_sasl_authenticated,
check_client_access regexp:/usr/local/etc/postfix/sender_exeption,
check_sender_access regexp:/usr/local/etc/postfix/sender_access,
reject_unverified_sender,
reject_authenticated_sender_login_mismatch,
reject_unknown_sender_domain,
reject_unlisted_sender
smtpd_recipient_restrictions = regexp:/usr/local/etc/postfix/recipient,
permit_mynetworks,
permit_sasl_authenticated,
reject_non_fqdn_recipient,
reject_unknown_recipient_domain,
reject_unlisted_recipient,
reject_unauth_destination,
reject_unauth_pipelining,
reject_unverified_recipient
reject_rbl_client zen.spamhaus.org,
reject_rbl_client bl.spamcop.net,
smtpd_etrn_restrictions = reject
smtpd_reject_unlisted_sender = yes
disable_vrfy_command = no
strict_rfc821_envelopes = no
show_user_unknown_table_name = no
address_verify_sender = postmaster@yyy.ru
unverified_sender_reject_code = 550
smtpd_helo_required = yes
smtp_always_send_ehlo = yes
smtpd_hard_error_limit = 8
smtpd_sasl_auth_enable = yes
smtpd_sasl_application_name = smtpd
broken_sasl_auth_clients = yes
smtpd_sasl_security_options = noanonymous
smtpd_sender_login_maps = mysql:/usr/local/etc/postfix/mysqlLookupMaps/sender.conf
virtual_alias_maps = mysql:/usr/local/etc/postfix/mysqlLookupMaps/alias.conf
virtual_mailbox_domains = mysql:/usr/local/etc/postfix/mysqlLookupMaps/domain.conf
virtual_mailbox_maps = mysql:/usr/local/etc/postfix/mysqlLookupMaps/mailbox.conf
virtual_mailbox_base = /var/spool/mail
virtual_mailbox_limit_maps = mysql:/usr/local/etc/postfix/mysqlLookupMaps/quota.conf
virtual_maildir_extended=yes
virtual_mailbox_limit_override=yes
virtual_create_maildirsize = yes
virtual_overquota_bounce = yes
virtual_maildir_limit_message="Sorry, the user's maildir has overdrawn his diskspace quota, please try again later"
message_size_limit = 31242880
virtual_gid_maps = static:1981
virtual_uid_maps = static:1981
virtual_minimum_uid = 1000
bounce_template_file = /usr/local/etc/postfix/bounce.cf
p.s. Не пинайте, если причина банальна и очевидна, пытался найти самостоятельно - не нашел.