Hi there, I am seeing my Postfix 2.3.3 having following error. It may appears to be problem connecting to LDAP (which uses TLS extension), but I tried running postmap and the output shows that it is successfully lookup domain from LDAP. There are other Postfix servers successfully connecting to LDAP using TLS extension, too.
I am not sure this is LDAP/Postfix integration problem, but I do not know where to go from here. This is the error message. Thanks in advance. Yan Jul 22 19:25:21 sdirpop001 postfix/trivial-rewrite[19891]: error: dict_ldap_connect: Unable to set STARTTLS: -11: Connect error Jul 22 19:25:21 sdirpop001 postfix/trivial-rewrite[19891]: fatal: ldap:acceptdomains(0,lock|fold_fix): table lookup problem Jul 22 19:25:21 sdirpop001 postfix/trivial-rewrite[19892]: error: dict_ldap_connect: Unable to set STARTTLS: -11: Connect error Jul 22 19:25:21 sdirpop001 postfix/trivial-rewrite[19892]: fatal: ldap:acceptdomains(0,lock|fold_fix): table lookup problem Jul 22 19:25:22 sdirpop001 postfix/master[16350]: warning: process /usr/libexec/postfix/trivial-rewrite pid 19891 exit status 1 Jul 22 19:25:22 sdirpop001 postfix/master[16350]: warning: /usr/libexec/postfix/trivial-rewrite: bad command startup -- throttling Jul 22 19:25:22 sdirpop001 postfix/smtpd[16359]: warning: premature end-of-input on private/rewrite socket while reading input attribute name Jul 22 19:25:22 sdirpop001 postfix/smtpd[16359]: warning: problem talking to service rewrite: Success Jul 22 19:25:22 sdirpop001 postfix/master[16350]: warning: process /usr/libexec/postfix/trivial-rewrite pid 19892 exit status 1 Jul 22 19:25:22 sdirpop001 postfix/smtpd[16358]: warning: premature end-of-input on private/rewrite socket while reading input attribute name Jul 22 19:25:22 sdirpop001 postfix/smtpd[16358]: warning: problem talking to service rewrite: Connection reset by peer Jul 22 19:25:22 sdirpop001 postfix/smtpd[16354]: warning: premature end-of-input on private/rewrite socket while reading input attribute name Jul 22 19:25:22 sdirpop001 postfix/smtpd[16354]: warning: problem talking to service rewrite: Success Jul 22 19:25:22 sdirpop001 postfix/smtpd[16355]: warning: premature end-of-input on private/rewrite socket while reading input attribute name Jul 22 19:25:22 sdirpop001 postfix/smtpd[16355]: warning: problem talking to service rewrite: Connection reset by peer This is my LDAP-related configuration in main.cf mydestination = $myhostname, localhost.$mydomain, localhost, ldap:acceptdomains acceptdomains_server_host = ldap://<hostname>:389 acceptdomains_start_tls = yes acceptdomains_version = 3 acceptdomains_search_base = ou=domain,dc=hubdirect,dc=stage,dc=medplus,dc=com acceptdomains_query_filter = (&(domainname=%s)(objectClass=DirectDomain)) acceptdomains_result_attribute = domainname acceptdomains_bind = yes acceptdomains_bind_dn = cn=Directory Manager acceptdomains_bind_pw = <password> This is the output of postmap: "postmap -v -q <mydomain> ldap:acceptdomains", it correctly resovles the domain. POSTCONF output is below. [root@sdirpop001 tmp]# postconf -n alias_database = hash:/etc/aliases alias_maps = hash:/etc/aliases command_directory = /usr/sbin config_directory = /etc/postfix daemon_directory = /usr/libexec/postfix debug_peer_level = 2 html_directory = no inet_interfaces = all local_recipient_maps = ldap:ldaplocal local_transport = dovecot mail_owner = postfix mailbox_size_limit = 0 mailq_path = /usr/bin/mailq.postfix manpage_directory = /usr/share/man message_size_limit = 10240000 mydestination = $myhostname, localhost.$mydomain, localhost, ldap:acceptdomains mynetworks = all newaliases_path = /usr/bin/newaliases.postfix queue_directory = /var/spool/postfix readme_directory = /usr/share/doc/postfix-2.3.3/README_FILES sample_directory = /usr/share/doc/postfix-2.3.3/samples sendmail_path = /usr/sbin/sendmail.postfix setgid_group = postdrop smtpd_tls_mandatory_exclude_ciphers = aNULL unknown_local_recipient_reject_code = 550 Confidentiality Notice: The information contained in this electronic transmission is confidential and may be legally privileged. It is intended only for the addressee(s) named above. If you are not an intended recipient, be aware that any disclosure, copying, distribution or use of the information contained in this transmission is prohibited and may be unlawful. If you have received this transmission in error, please notify us by telephone (513) 229-5500 or by email (postmas...@medplus.com). After replying, please erase it from your computer system.
