what about learning to use mailing-lists? * don't respond off-list * don't top post * don't post HTML
mynetworks = 172.20.0.0/15, 192.168.12.0/24, 192.168.11.0/24, 127.0.0.0/8 is 172.18.10.1 in "mynetworks"? no it is not! http://jodies.de/ipcalc?host=172.20.0.0&mask1=15&mask2= HostMin: 172.20.0.1 HostMax: 172.21.255.254 Hosts/Net: 131070 May 29 20:43:29 tuttu postfix/smtpd[18548]: NOQUEUE: reject: RCPT from nanoq[172.18.10.1]: 454 4.7.1 <tchi...@gmail.com>: Relay access denied; from=<tchi...@sondrestromradar.net> to=<tchi...@gmail.com> proto=ESMTP helo=<mail.sondrestromradar.net> May 29 20:43:29 tuttu postfix/smtpd[18548]: disconnect from nanoq[172.18.10.1] Am 30.05.2014 00:45, schrieb Philippe Trottier: > Enjoy the paste... > > > Machine 1: > > alias_database = hash:/etc/aliases > alias_maps = hash:/etc/aliases > command_directory = /usr/sbin > config_directory = /etc/postfix > daemon_directory = /usr/libexec/postfix > data_directory = /var/lib/postfix > debug_peer_level = 2 > home_mailbox = Maildir/ > html_directory = no > inet_interfaces = all > inet_protocols = ipv4 > mail_owner = postfix > mailq_path = /usr/bin/mailq.postfix > manpage_directory = /usr/share/man > mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain, > mail.$mydomain, www.$mydomain, ftp.$mydomain > mydomain = sondrestromradar.net <http://sondrestromradar.net> > myhostname = tuttu.sondrestromradar.net <http://tuttu.sondrestromradar.net> > mynetworks = 172.20.0.0/15 <http://172.20.0.0/15>, 192.168.12.0/24 > <http://192.168.12.0/24>, 192.168.11.0/24 > <http://192.168.11.0/24>, 127.0.0.0/8 <http://127.0.0.0/8> > myorigin = $mydomain > newaliases_path = /usr/bin/newaliases.postfix > queue_directory = /var/spool/postfix > readme_directory = /usr/share/doc/postfix-2.6.6/README_FILES > relay_domains = sondrestromradar.net <http://sondrestromradar.net> > sample_directory = /usr/share/doc/postfix-2.6.6/samples > sendmail_path = /usr/sbin/sendmail.postfix > setgid_group = postdrop > smtpd_recipient_restrictions = permit_mynetworks, > reject_unauth_destination, check_policy_service > unix:postgrey/socket, permit > soft_bounce = yes > transport_maps = hash:/etc/postfix/transport > unknown_local_recipient_reject_code = 550 > virtual_alias_maps = hash:/etc/postfix/virtual > > Log : > > May 29 20:43:21 tuttu postfix/anvil[18543]: statistics: max connection rate > 1/60s for (smtp:172.18.10.1) at May 29 > 20:40:00 > May 29 20:43:21 tuttu postfix/anvil[18543]: statistics: max connection count > 1 for (smtp:172.18.10.1) at May 29 > 20:40:00 > May 29 20:43:21 tuttu postfix/anvil[18543]: statistics: max cache size 1 at > May 29 20:40:00 > May 29 20:43:28 tuttu postfix/smtpd[18548]: connect from wabano[172.20.0.110] > May 29 20:43:28 tuttu postfix/smtpd[18548]: 1AD491035D: > client=wabano[172.20.0.110] > May 29 20:43:28 tuttu postfix/cleanup[18551]: 1AD491035D: > message-id=<5387b810.9000...@sondrestromradar.net > <mailto:5387b810.9000...@sondrestromradar.net>> > May 29 20:43:28 tuttu postfix/qmgr[18482]: 1AD491035D: > from=<tchi...@sondrestromradar.net > <mailto:tchi...@sondrestromradar.net>>, size=585, nrcpt=1 (queue active) > May 29 20:43:28 tuttu postfix/smtpd[18548]: disconnect from > wabano[172.20.0.110] > May 29 20:43:29 tuttu postfix/smtp[18552]: 1AD491035D: to=<tchi...@gmail.com > <mailto:tchi...@gmail.com>>, > relay=172.18.10.1[172.18.10.1]:25, delay=0.98, delays=0.14/0.02/0.48/0.35, > dsn=2.0.0, status=sent (250 2.0.0 Ok: > queued as ACE397483) > May 29 20:43:29 tuttu postfix/qmgr[18482]: 1AD491035D: removed > May 29 20:43:29 tuttu postfix/smtpd[18548]: connect from nanoq[172.18.10.1] > May 29 20:43:29 tuttu postfix/smtpd[18548]: NOQUEUE: reject: RCPT from > nanoq[172.18.10.1]: 454 4.7.1 > <tchi...@gmail.com <mailto:tchi...@gmail.com>>: Relay access denied; > from=<tchi...@sondrestromradar.net > <mailto:tchi...@sondrestromradar.net>> to=<tchi...@gmail.com > <mailto:tchi...@gmail.com>> proto=ESMTP > helo=<mail.sondrestromradar.net <http://mail.sondrestromradar.net>> > May 29 20:43:29 tuttu postfix/smtpd[18548]: disconnect from nanoq[172.18.10.1] > > > > Machine 2: > command_directory = /usr/sbin > config_directory = /etc/postfix > daemon_directory = /usr/libexec/postfix > data_directory = /var/lib/postfix > debug_peer_level = 2 > html_directory = no > in_flow_delay = 5s > inet_interfaces = all > inet_protocols = ipv4 > local_recipient_maps = > local_transport = error:local mail delivery is disabled > mail_owner = postfix > mailq_path = /usr/bin/mailq.postfix > manpage_directory = /usr/share/man > mydomain = sondrestromradar.net <http://sondrestromradar.net> > myhostname = mail.sondrestromradar.net <http://mail.sondrestromradar.net> > mynetworks = 172.20.0.0/15 <http://172.20.0.0/15>, 172.18.10.10/32 > <http://172.18.10.10/32>, 127.0.0.0/8 > <http://127.0.0.0/8> > myorigin = $myhostname > newaliases_path = /usr/bin/newaliases.postfix > queue_directory = /var/spool/postfix > readme_directory = /usr/share/doc/postfix-2.6.6/README_FILES > relay_domains = sondrestromradar.net <http://sondrestromradar.net>, > [172.18.10.10] , > [172.20.0.1] , > relay_recipient_maps = hash:/etc/postfix/relay_recipients > relayhost = [172.18.10.10] > sample_directory = /usr/share/doc/postfix-2.6.6/samples > sendmail_path = /usr/sbin/sendmail.postfix > setgid_group = postdrop > smtpd_recipient_restrictions = permit_mynetworks, > reject_unauth_destination, > check_policy_service unix:postgrey/socket, permit > transport_maps = hash:/etc/postfix/transport > unknown_local_recipient_reject_code = 550 > > Log: > May 29 20:43:21 tuttu postfix/anvil[18543]: statistics: max connection rate > 1/60s for (smtp:172.18.10.1) at May 29 > 20:40:00 > May 29 20:43:21 tuttu postfix/anvil[18543]: statistics: max connection count > 1 for (smtp:172.18.10.1) at May 29 > 20:40:00 > May 29 20:43:21 tuttu postfix/anvil[18543]: statistics: max cache size 1 at > May 29 20:40:00 > May 29 20:43:28 tuttu postfix/smtpd[18548]: connect from wabano[172.20.0.110] > May 29 20:43:28 tuttu postfix/smtpd[18548]: 1AD491035D: > client=wabano[172.20.0.110] > May 29 20:43:28 tuttu postfix/cleanup[18551]: 1AD491035D: > message-id=<5387b810.9000...@sondrestromradar.net > <mailto:5387b810.9000...@sondrestromradar.net>> > May 29 20:43:28 tuttu postfix/qmgr[18482]: 1AD491035D: > from=<tchi...@sondrestromradar.net > <mailto:tchi...@sondrestromradar.net>>, size=585, nrcpt=1 (queue active) > May 29 20:43:28 tuttu postfix/smtpd[18548]: disconnect from > wabano[172.20.0.110] > May 29 20:43:29 tuttu postfix/smtp[18552]: 1AD491035D: to=<tchi...@gmail.com > <mailto:tchi...@gmail.com>>, > relay=172.18.10.1[172.18.10.1]:25, delay=0.98, delays=0.14/0.02/0.48/0.35, > dsn=2.0.0, status=sent (250 2.0.0 Ok: > queued as ACE397483) > May 29 20:43:29 tuttu postfix/qmgr[18482]: 1AD491035D: removed > May 29 20:43:29 tuttu postfix/smtpd[18548]: connect from nanoq[172.18.10.1] > May 29 20:43:29 tuttu postfix/smtpd[18548]: NOQUEUE: reject: RCPT from > nanoq[172.18.10.1]: 454 4.7.1 > <tchi...@gmail.com <mailto:tchi...@gmail.com>>: Relay access denied; > from=<tchi...@sondrestromradar.net > <mailto:tchi...@sondrestromradar.net>> to=<tchi...@gmail.com > <mailto:tchi...@gmail.com>> proto=ESMTP > helo=<mail.sondrestromradar.net <http://mail.sondrestromradar.net>> > May 29 20:43:29 tuttu postfix/smtpd[18548]: disconnect from nanoq[172.18.10.1] > > > > On Thu, May 29, 2014 at 8:39 PM, li...@rhsoft.net <mailto:li...@rhsoft.net> > <li...@rhsoft.net > <mailto:li...@rhsoft.net>> wrote: > > > > Am 30.05.2014 00:35, schrieb Philippe Trottier: > > Been about 2 days of digging around the net and going trough the > documentation and I am running out of ideas. > > > > I have this current situation: > > > > Both mail servers are Centos ( I didn't choose the OS ) > > Routing works very well ping all around to all around in and out of the > vpn > > > > Machine 1: > > -One extensive network behind an dyn IP adsl , > > -3 subnets and lots of data going out to the world from there. > > -1 OpenVPN tun link to machine 2 > > -Blocked outgoing Port 25 > > -Normal net gateway output. > > -Local postfix setup to keep the local traffic local (Works OK) > > -Forward outbound traffic to machine 2 (Works OK) > > > > Machine 2: > > -Cloud machine with fixed IP > > -Open port 25 in and out > > -OpenVPN tun link to machine 1 > > -Disabled local delivery ( I don't want to maintain a local file there, > I know bouncing users at the gate > would be > > good too ) > > -Receives mail traffic from the outer world and delivers it to postfix > on machine 1 (works OK) > > -Postgrey (working good) > > -Spamassassin + clamav + amavisd-new (installation later) > > > > My trouble is > > -The machine 2 refuses to relay the mails generated from inside > > since our crystal balls are at vacation you need to provide informations! > > * logs, logs and logs again > * postconf -n >
