>> freebsd 7.2 >> mail_version = 2.7-20091008 >> >> out of 6 postscreen machines, I've got one that every 20 or 30 >> minutes just halts, port 25 is dead (several monit agents see it >> dead), then it starts off by itself after a few minutes, dumping >> a bunch of these in maillog: >> >> warning: postscreen_dnsbl_query: connect to dnsblog service: Connection >> refused > >How does this machine differ from the other ones? Different OS, >different build options, different traffic pattern?
the big diff is that the problem machine runs ESXi, with 4 VMs, one is the problem postfix inbound, another is the postfix outbound. I've got more data. The killer option is when I have this on: postscreen_blacklist_networks = mysql:/usr/local/etc/postfix/mysql-mta_clients_reactive_b.cf ... with the blacklist commented out, solid as a rock, never fails. With blacklist in, postscreen can't get through an hour without pausing a couple times, sometimes for many 10s of minutes before starting to function correctly without intervention. Nothing wrong with that mysql query (the db is on another machine on the same switch) since the same query has been used without any problems for months in smtpd restrictions. So if there is some problem talking to mysql, main postfix doesn't care, but postscreen appears not so robust. Some log info where postscreen isn't paused, but hurting: Dec 2 02:55:46 postfix/postscreen[69825]: BLACKLISTED 64.18.156.155 Dec 2 02:55:46 postfix/postscreen[69825]: reject: connect from 64.145.72.142:17226: all screening ports busy Dec 2 02:55:46 postfix/postscreen[69825]: reject: connect from 64.145.72.93:17227: all screening ports busy Dec 2 02:55:46 postfix/postscreen[69825]: BLACKLISTED 64.18.156.156 Dec 2 02:55:46 postfix/postscreen[69825]: BLACKLISTED 64.18.156.157 Dec 2 02:55:46 postfix/postscreen[69825]: reject: connect from 124.103.62.218:2193: all screening ports busy Dec 2 02:55:46 postfix/postscreen[69825]: reject: connect from 77.122.245.157:53272: all screening ports busy Dec 2 02:55:46 postfix/postscreen[69825]: BLACKLISTED 64.18.156.158 Dec 2 02:55:46 postfix/postscreen[69825]: reject: connect from 80.90.167.134:18005: all screening ports busy Dec 2 02:55:46 postfix/postscreen[69825]: reject: connect from 216.59.212.134:1968: all screening ports busy Dec 2 02:55:46 postfix/postscreen[69825]: HANGUP after 6.7 from 59.97.27.9 Dec 2 02:55:46 postfix/postscreen[69825]: BLACKLISTED 64.18.156.154 Dec 2 02:55:46 postfix/postscreen[69825]: HANGUP after 3.9 from 69.198.11.26 Dec 2 02:55:46 postfix/postscreen[69825]: reject: connect from 204.51.144.164:49169: all screening ports busy Dec 2 02:55:47 postfix/postscreen[69825]: HANGUP after 4.1 from 115.145.158.144 Dec 2 02:55:47 postfix/postscreen[69825]: HANGUP after 4.1 from 95.79.77.67 Dec 2 02:55:47 postfix/postscreen[69825]: BLACKLISTED 190.2.53.3 Dec 2 02:55:47 postfix/postscreen[69825]: HANGUP after 4.6 from 124.28.146.165 Dec 2 02:55:47 postfix/postscreen[69825]: PREGREET 16 after 0.37 from 222.252.211.112: HELO localhost?? Dec 2 02:55:47 postfix/postscreen[69825]: HANGUP after 4.1 from 190.86.32.2 Dec 2 02:55:47 postfix/postscreen[69825]: HANGUP after 5.5 from 118.172.211.185 Dec 2 02:55:47 postfix/postscreen[69825]: BLACKLISTED 121.165.52.234 Dec 2 02:55:47 postfix/postscreen[69825]: BLACKLISTED 121.165.52.234 Dec 2 02:55:47 postfix/postscreen[69825]: reject: connect from 117.1.233.223:2212: all screening ports busy Dec 2 02:55:47 postfix/postscreen[69825]: HANGUP after 4.5 from 86.47.48.196 Dec 2 02:55:47 postfix/postscreen[69825]: reject: connect from 121.243.116.129:3399: all screening ports busy I'll provide more logging data today. Len
