>> >> >> SUBJECT: Delivery status notification >> >> >> This is an automatically generated Delivery Status Notification. >> >> >> Delivery to the following recipients was aborted after 7 second(s): >> >> >> mas...@masked.com >> >> > >> >> > If you want that mail, whitelist them, >> >> >> >> They should already be whitelisted through my use of list.dnswl.org. >> > >> > Your SMTP server replied with 450. Either your configuration is >> > wrong, or some DNS lookups time out. Note the above text says: >> > >> > Delivery to the following recipients was aborted after 7 second(s) >> > >> > This could be a symptom of DNS lookup timeout. >> >> Something must be wrong with my config. In my log I can see that >> postfix is returning 450 to many more comcast.net messages than it's > > Please show "postconf -n" command output (not cut-and-paste from > main.cf).
# postconf -n command_directory = /usr/sbin config_directory = /etc/postfix daemon_directory = /usr/libexec/postfix data_directory = /var/lib/postfix debug_peer_level = 2 debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id & sleep 5 home_mailbox = .maildir/ html_directory = no inet_protocols = ipv4 mail_owner = postfix mailq_path = /usr/bin/mailq manpage_directory = /usr/share/man message_size_limit = 40960000 mydestination = MASKED.com MASKED.com myhostname = MASKED.com mynetworks_style = host newaliases_path = /usr/bin/newaliases postscreen_bare_newline_action = enforce postscreen_bare_newline_enable = yes postscreen_dnsbl_sites = zen.spamhaus.org list.dnswl.org*-1 postscreen_dnsbl_whitelist_threshold = -1 postscreen_greet_action = enforce postscreen_non_smtp_command_action = enforce postscreen_non_smtp_command_enable = yes postscreen_pipelining_action = enforce postscreen_pipelining_enable = yes queue_directory = /var/spool/postfix readme_directory = no sample_directory = /etc/postfix sendmail_path = /usr/sbin/sendmail setgid_group = postdrop smtpd_recipient_restrictions = reject_unauth_destination, permit smtpd_tls_CAfile = /etc/ssl/postfix/cacert.pem smtpd_tls_auth_only = yes smtpd_tls_cert_file = /etc/ssl/postfix/newcert.pem smtpd_tls_key_file = /etc/ssl/postfix/newkey.pem smtpd_tls_security_level = may smtpd_tls_session_cache_timeout = 3600s tls_random_source = dev:/dev/urandom unknown_local_recipient_reject_code = 550 virtual_alias_maps = hash:/etc/postfix/virtual > Please show one complete logfile record from "connect from" until > "reject" that demonstrates the problem (you may anonymize the email > address). Aug 26 21:21:35 [postfix/tlsproxy] CONNECT from [209.85.219.51]:41193 Aug 26 21:21:36 [postfix/postscreen] NOQUEUE: reject: RCPT from [209.85.219.51]:41193: 450 4.3.2 Service currently unavailable; from=<mas...@gmail.com>, to=<mas...@masked.com>, proto=ESMTP, helo=<mail-oa0-f51.google.com> Aug 26 21:21:36 [postfix/tlsproxy] DISCONNECT [209.85.219.51]:41193 The IP is whitelisted: http://dnswl.org/s?s=209.85.219.51 >> >> I also have several of these: >> >> >> >> lost connection with mx1.comcast.net[68.87.26.147] while receiving the >> >> initial server greeting >> >> conversation with mx1.comcast.net[68.87.26.147] timed out while >> >> receiving the initial server greeting >> > >> > Your SMTP *client* also has problems. Consider monitoring your >> > packet loss rate. I run "mtr" from a cron job. >> >> Is it the sender's SMTP client that has problems? > > Please show one complete logfile record (you may anonymize the email > address). Aug 23 06:35:11 [postfix/smtp] 72A0E5C801E: conversation with mx1.comcast.net[68.87.26.147] timed out while receiving the initial server greeting Aug 23 09:04:03 [postfix/smtp] 80A8A5C801E: lost connection with mx1.comcast.net[68.87.26.147] while receiving the initial server greeting - Grant
