My queue is horribly backed up with over 4,000 messages and I can not figure
out how to shrink the queue. I do not have a bunch of MAILER-DAEMON notices,
I do have strange domain names in the mailq list and handful of temporary
failure messages. The issue is getting worst by the minute. I followed the
article here: http://www.postfix.org/LOCAL_RECIPIENT_README.html and I think
that we are good as far as those settings. Any insight would be great as
email is severely delayed. Here is some data on our postfix setup:
postconf -n:
alias_database = hash:/etc/mail/aliases
alias_maps = hash:/etc/mail/aliases
bounce_queue_lifetime = 8h
broken_sasl_auth_clients = yes
command_directory = /usr/local/sbin
config_directory = /usr/local/etc/postfix
daemon_directory = /usr/local/libexec/postfix
data_directory = /var/db/postfix
debug_peer_level = 2
disable_vrfy_command = yes
enable_original_recipient = no
html_directory = no
inet_interfaces = 127.0.0.1, localhost, $myhostname
invalid_hostname_reject_code = 450
mail_owner = postfix
mailq_path = /usr/local/bin/mailq
manpage_directory = /usr/local/man
maps_rbl_reject_code = 450
maximal_backoff_time = 5135s
maximal_queue_lifetime = 8h
message_size_limit = 40960000
minimal_backoff_time = 535s
mydestination = localhost.$mydomain, $mydomain, localhost, $myhostname
myhostname = post-app3.tdpserver.net
mynetworks = 127.0.0.0/8, 10.0.0.0/8, 38.119.86.0/25, $myhostname
newaliases_path = /usr/local/bin/newaliases
non_fqdn_reject_code = 450
proxy_interfaces = 10.11.0.29
proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps
$virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains
$relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps
$recipient_canonical_maps $relocated_maps $transport_maps $mynetworks
$virtual_mailbox_limit_maps
queue_directory = /var/spool/postfix
queue_run_delay = 535s
readme_directory = no
relay_domains = $mydestination
sample_directory = /usr/local/etc/postfix
sendmail_path = /usr/local/sbin/sendmail
setgid_group = maildrop
smtp_sasl_password_maps =
proxy:mysql:$config_directory/mysql_virtual_mailbox_maps.cf
smtp_tls_CAfile = /usr/local/share/certs/ca-root.crt
smtp_tls_cert_file = /usr/local/etc/dovecot/certs/tdpserver.crt
smtp_tls_key_file = /usr/local/etc/dovecot/certs/tdpserver.key
smtp_tls_security_level = may
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_client_connection_rate_limit = 400
smtpd_client_event_limit_exceptions = $mynetworks, 10.0.0.0/8, 127.0.0.1,
38.119.86.0/25, localhost
smtpd_data_restrictions = reject_unauth_pipelining,
reject_multi_recipient_bounce, permit
smtpd_recipient_limit = 3000
smtpd_recipient_restrictions = permit_mynetworks,
check_policy_service inet:127.0.0.1:10031, permit_sasl_authenticated,
permit_tls_clientcerts, reject_unauth_destination,
reject_invalid_helo_hostname, reject_non_fqdn_sender,
reject_unknown_recipient_domain, reject_non_fqdn_recipient,
warn_if_reject reject_non_fqdn_helo_hostname, warn_if_reject
reject_unknown_helo_hostname, warn_if_reject reject_unknown_client,
reject_unverified_recipient, reject_unknown_sender_domain,
reject_unverified_sender, check_recipient_access
hash:$config_directory/recipient.list, reject_rbl_client
cbl.abuseat.org, reject_rbl_client list.dsbl.org,
reject_rbl_client sbl.spamhaus.org, reject_rbl_client bl.spamcop.net,
reject_rbl_client dnsbl.sorbs.net=127.0.0.2, reject_rbl_client
dnsbl.sorbs.net=127.0.0.3, reject_rbl_client
dnsbl.sorbs.net=127.0.0.4, reject_rbl_client
dnsbl.sorbs.net=127.0.0.5, reject_rbl_client
dnsbl.sorbs.net=127.0.0.7, reject_rbl_client
dnsbl.sorbs.net=127.0.0.9, reject_rbl_client
dnsbl.sorbs.net=127.0.0.11, reject_rbl_client
dnsbl.sorbs.net=127.0.0.12, permit
smtpd_sasl_auth_enable = yes
smtpd_sasl_exceptions_networks = $mynetworks
smtpd_sasl_local_domain = $myhostname
smtpd_sasl_path = private/auth
smtpd_sasl_security_options = noanonymous
smtpd_sasl_type = dovecot
smtpd_sender_restrictions = permit_mynetworks, reject_non_fqdn_sender,
reject_unknown_sender_domain, permit
smtpd_tls_CAfile = /usr/local/share/certs/ca-root.crt
smtpd_tls_ask_ccert = yes
smtpd_tls_cert_file = /usr/local/etc/dovecot/certs/tdpserver.crt
smtpd_tls_key_file = /usr/local/etc/dovecot/certs/tdpserver.key
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_security_level = may
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
soft_bounce = no
transport_maps = hash:/etc/mail/transport
unknown_local_recipient_reject_code = 550
unverified_sender_reject_code = 550
virtual_alias_maps =
proxy:mysql:$config_directory/mysql_virtual_alias_maps.cf
virtual_mailbox_domains =
proxy:mysql:$config_directory/mysql_virtual_domains_maps.cf
virtual_mailbox_maps =
proxy:mysql:$config_directory/mysql_virtual_mailbox_maps.cf
virtual_transport = dovecot
Qshape:
T 5 10 20 40 80 160 320 640 1280 1280+
TOTAL 4573 273 341 146 669 1451 1653 9 5 7 19
yahoo.com 164 7 5 7 34 50 61 0 0 0 0
gmail.com 118 15 9 3 14 30 47 0 0 0 0
agentimage.com 64 0 5 3 8 20 28 0 0 0 0
onclearcreek.com 59 3 0 9 2 12 10 4 3 4 12
alfonso.com 52 3 2 2 8 19 18 0 0 0 0
jones-healy.com 52 1 14 1 6 15 15 0 0 0 0
aol.com 51 1 2 2 5 23 18 0 0 0 0
hotmail.com 51 3 3 1 7 21 16 0 0 0 0
arbotco.com 46 6 4 2 5 2 27 0 0 0 0
traikos.us 41 3 30 0 1 6 1 0 0 0 0
thesaadteam.com 39 1 0 1 14 10 13 0 0 0 0
nostalgichomes.com 39 4 8 1 8 10 8 0 0 0 0
hiltonhyland.com 36 3 8 0 5 13 7 0 0 0 0
tetonvalleyrealty.com 35 0 1 5 2 13 14 0 0 0 0
carolinaproperties.com 35 4 0 1 4 12 14 0 0 0 0
comcast.net 34 2 7 2 2 11 10 0 0 0 0
georgetraikos.com 33 3 30 0 0 0 0 0 0 0 0
-- Tait
