Re: Weird disconnections after RCPT using TLS

Mon, 15 Dec 2008 14:02:43 -0800 

Victor Duchovni escribió:

On Mon, Dec 15, 2008 at 01:31:37PM -0700, Jes?s Manuel Loaiza Vidal wrote:


Yes, all the verbose logging is just hiding the TLS issues. If you
have a TLS transport issue, the problem is a communications problem,
and we need to focus primarily on the communications. Try:

        # The host you want to debug
        debug_peer_list = 192.0.2.1
        # 1 is enough.
        debug_peer_level = 1

This will reduce the noise a bit, but still log clear-text protocol
interactions, so we can tell when in the SMTP protocol the TLS layer
is failing.



Here is the log

postfix-1.txt <http://www.ich.edu.mx/attachments/postfix-1.txt>


The client establishes a TLS connection,

    Dec 15 13:19:42 [postfix/smtpd]
        Anonymous TLS connection established
        from auxiliares.chapule.ich.edu.mx[192.168.10.4]:
        TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)


authenticates,

    Dec 15 13:19:43 [postfix/smtpd]
        > auxiliares.chapule.ich.edu.mx[192.168.10.4]:
        235 2.7.0 Authentication successful

sends MAIL FROM and RCPT TO and then disconnects without sending "QUIT".

    Dec 15 13:19:43 [postfix/smtpd]
        E21D752FB7: client=auxiliares.chapule.ich.edu.mx[192.168.10.4],
        sasl_method=PLAIN, sasl_username=test

    Dec 15 13:19:43 [postfix/smtpd]
        > auxiliares.chapule.ich.edu.mx[192.168.10.4]: 250 2.1.5 Ok

    Dec 15 13:19:43 [postfix/smtpd]
        smtp_get: EOF

    Dec 15 13:19:43 [postfix/smtpd]
        lost connection after RCPT
        from auxiliares.chapule.ich.edu.mx[192.168.10.4]

    Dec 15 13:19:43 [postfix/smtpd]
        disconnect from auxiliares.chapule.ich.edu.mx[192.168.10.4]

What client sent this, and where is the corresponding PCAP file?
Mozilla Thunderbird, but same issue with M$ Outlook, server initiates the disconnection without any explanation other than 'Lost connection after RCPT' just after client sends 'RCPT TO <t...@test.bg>' But second retries sending just after the error the mail sends successfully. The error occurs most the times but there are times when mail sends successfully even from the first try.
Below is the pcap file, but remember that the connection is over TLS, so only useful thing are IP header flags to guess who of the ends triggers disconnection. 
PCAP file <http://www.ich.edu.mx/attachments/tcp-1.cap>
Below is a pcap file from the first session I posted, same issue, but it includes when I retried sending mail, and then sends successfully with no reason. 
PCAP file <http://www.ich.edu.mx/attachments/tcp-tls.cap>

Reply via email to