I am getting no inbound email after locking down the requirements of
users to authenticate before sending. I dropped back from current
(2.7.*) to 2.6.5.
Not having any success getting tcpdump output. The version I have
differs from the example in the DEBUG instructions.
Complete error messages. Please use cut-and-paste, or use attachments,
instead of reciting information from memory.
Sep 8 00:45:30 shuttle postfix/smtpd[56332]:
qmta10.emeryville.ca.mail.comcast.net[76.96.30.17]: TLS cipher list
"ALL:!EXPORT:!LOW:+RC4:@STRENGTH"
Sep 8 00:45:30 shuttle postfix/smtpd[56332]: SSL_accept:before/accept
initialization
Sep 8 00:45:30 shuttle postfix/smtpd[56332]: read from 34103AC0
[341BF000] (11 bytes => -1 (0xFFFFFFFF))
Sep 8 00:45:33 shuttle postfix/smtpd[56335]: SSL_accept error from
mail-pz0-f204.google.com[209.85.222.204]: -1
Sep 8 00:45:33 shuttle postfix/smtpd[56335]: lost connection after
CONNECT from mail-pz0-f204.google.com[209.85.222.204]
Sep 8 00:45:33 shuttle postfix/smtpd[56335]: disconnect from mail-pz0-
f204.google.com[209.85.222.204]
Sep 8 00:46:03 shuttle postfix/smtpd[56437]: warning:
network_biopair_interop: error reading 11 bytes from the network:
Connection reset by peer
Sep 8 00:46:03 shuttle postfix/smtpd[56437]: SSL_accept error from
mail-px0-f194.google.com[209.85.216.194]: -1
Sep 8 00:46:03 shuttle postfix/smtpd[56437]: lost connection after
CONNECT from mail-px0-f194.google.com[209.85.216.194]
Sep 8 00:46:03 shuttle postfix/smtpd[56437]: disconnect from mail-px0-
f194.google.com[209.85.216.194]
Sep 8 00:47:07 shuttle postfix/smtpd[56335]: connect from elasmtp-
masked.atl.sa.earthlink.net[209.86.89.68]
Sep 8 00:47:07 shuttle postfix/smtpd[56335]: setting up TLS
connection from elasmtp-masked.atl.sa.earthlink.net[209.86.89.68]
Sep 8 00:47:07 shuttle postfix/smtpd[56335]: elasmtp-
masked.atl.sa.earthlink.net[209.86.89.68]: TLS cipher list "ALL:!
EXPORT:!LOW:+RC4:@STRENGTH"
postfinger - postfix configuration on Tue Sep 8 00:53:35 PDT 2009
version: 1.30
--System Parameters--
mail_version = 2.6.5
hostname = shuttle.ferbil.fotz
uname = FreeBSD shuttle.ferbil.fotz 7.2-RELEASE-p1 FreeBSD 7.2-RELEASE-
p1 #1: Fri Jun 12 22:10:40 PDT 2009 r...@shuttle.ferbil.fotz:/usr/
obj/usr/src/sys/SHUTTLE i386
--Packaging information--
looks like this postfix comes from BSD package: postfix-2.6.5,1
--main.cf non-default parameters--
default_process_limit = 200
disable_vrfy_command = yes
invalid_hostname_reject_code = 554
maps_rbl_domains = blackholes.mail-abuse.org
multi_recipient_bounce_reject_code = 554
mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain
myhostname = mail.ferbil.fotz
mynetworks = 192.168.2.0/24, 127.0.0.0/8
myorigin = $mydomain
non_fqdn_reject_code = 554
proxy_interfaces = 72.1.134.183
smtp_tls_session_cache_database = btree:/var/lib/postfix/
smtp_tls_session_cache
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_mynetworks, reject_non_fqdn_hostname,
reject_invalid_hostname, permit
smtpd_reject_unlisted_sender = yes
smtpd_sasl_auth_enable = yes
smtpd_sasl_path = private/auth
smtpd_sender_restrictions = permit_mynetworks, permit_sasl_authenticated
smtpd_tls_CAfile = /usr/local/etc/postfix/ssl/cacert.pem
smtpd_tls_cert_file = /usr/local/etc/postfix/ssl/pbo-cert.pem
smtpd_tls_key_file = /usr/local/etc/postfix/ssl/pbo-key.pem
smtpd_tls_loglevel = 3
smtpd_tls_received_header = yes
smtpd_tls_security_level = may
strict_rfc821_envelopes = yes
unknown_address_reject_code = 554
unknown_client_reject_code = 554
unknown_hostname_reject_code = 554
unknown_relay_recipient_reject_code = 554
unknown_virtual_alias_reject_code = 554
unknown_virtual_mailbox_reject_code = 554
unverified_recipient_reject_code = 554
unverified_sender_reject_code = 554
virtual_alias_domains = mildew.org
virtual_alias_maps = hash:/usr/local/etc/postfix/mildew.cf
--master.cf--
smtp inet n - n - 200 smtpd
-o content_filter=filter:
-o smtpd_tls_wrappermode=yes
-o smtpd_sasl_auth_enable=yes
pickup fifo n - n 60 1 pickup
cleanup unix n - n - 0 cleanup
qmgr fifo n - n 300 1 qmgr
tlsmgr unix - - n 1000? 1 tlsmgr
rewrite unix - - n - - trivial-rewrite
bounce unix - - n - 0 bounce
defer unix - - n - 0 bounce
trace unix - - n - 0 bounce
verify unix - - n - 1 verify
flush unix n - n 1000? 0 flush
proxymap unix - - n - - proxymap
proxywrite unix - - n - 1 proxymap
smtp unix - - n - - smtp
relay unix - - n - - smtp
-o smtp_fallback_relay=
-o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq unix n - n - - showq
error unix - - n - - error
retry unix - - n - - error
discard unix - - n - - discard
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - n - - lmtp
anvil unix - - n - 1 anvil
scache unix - - n - 1 scache
policy unix - n n - - spawn
user=nobody argv=/usr/local/sbin/postfix-policyd-spf
filter unix - n n - - pipe
flags=R user=filter argv=/home/filter/postfix-filter.sh -f $
{sender} -- ${recipient}
-- end of postfinger output --
--
Paul Beard
contact info: www.paulbeard.org/paulbeard.vcf
Are you trying to win an argument or solve a problem?
