Re: Recipient address rejected: Service is unavailable (try later)

Sat, 19 Oct 2019 14:16:56 -0700 

Hi John,

Am 19.10.19 um 21:47 schrieb John Schmerold:
I am using Postfix as a filter, it is protecting end-users on Office 365, Google Apps and a cPanel server. 


We are seeing quite a few "Recipient address rejected: Service is 
unavailable (try later)" messages in mail.log.



The email will be accepted at 8:47, rejected at 8:51, then accepted 
again at 9am



Any idea what's going on - and how to resolve the issue? Thursday, I 
deleted /var/lib/postfix/verify_cache.db, it doesn't seem probable that 
it's corrupted again. We are seeing it when the destination host is 
Office 365 and when destination host is cPanel (Exim/Dovecot).


mails entering by "pmg-smtp-filter" are accepted:

Oct 18 08:44:43 stl-mx pmg-smtp-filter[8060]: 1FBCF5DA9C1C81C7F5: accept 
mail to <a...@h.com> (D17D71FBDE) (rule: default-accept)
Oct 18 08:44:43 stl-mx postfix/lmtp[8134]: F36231FBCE: to=<a...@h.com>, 
relay=127.0.0.1[127.0.0.1]:10024, delay=4.6, delays=0.76/0/0.04/3.8, 
dsn=2.5.0, status=sent (250 2.5.0 OK (1FBCF5DA9C1C81C7F5))
Oct 18 08:44:43 stl-mx postfix/smtp[6833]: D17D71FBDE: to=<a...@h.com>, 
relay=cp.fastnet1.com[68.187.12.72]:8888, delay=0.13, 
delays=0.05/0/0.07/0.01, dsn=2.0.0, status=sent (250 OK 
id=1iLSYd-00030c-VY)

...

Mails entering by "postfix/smtpd" are rejected:

Oct 18 08:51:58 stl-mx postfix/smtpd[7741]: NOQUEUE: reject: RCPT from 
warrentonoil.pdi-cloud.com[64.9.152.145]: 450 4.7.1 <a...@h.com>: Recipient 
address rejected: Service is unavailable (try later); from=<d...@w.com> 
to=<a...@h.com> proto=ESMTP helo=<c2011-02.c2011.local>

...>

Here is how I have configured my recipient restrictions:
smtpd_recipient_restrictions =
         permit_mynetworks
         reject_unauth_destination
         reject_non_fqdn_recipient

         check_recipient_access regexp:/etc/postfix/rcptaccess 
	check_sender_access regexp:/etc/postfix/senderaccess 
	check_client_access cidr:/etc/postfix/clientaccess
	check_policy_service inet:127.0.0.1:10022 
	reject_unknown_recipient_domain 
	reject_unverified_recipient

(edited for readability)

unverified_recipient_reject_code = 450



Because of message part "Service is unavailable (try later)", i'd guess 
the bad boy could be "check_policy_service inet:127.0.0.1:10022".



If you can't get the problem, please see 
http://www.postfix.org/DEBUG_README.html#mail for information about 
providing us with your config.



Willi
























					Reply via email to