Hello,In our setup we have two mail gateway servers accepting incoming mail (mailgw1.noa.gr [primary] and mailgw3.noa.gr - both RockyLinux 8 on VPS with 2 CPUs, 6GB RAM), filtering mail (using postscreen, amavis, spamassassin, clamav) and forwarding to the internal mail server (vmail2.noa.gr - CentOS 7 with 1 CPU and 5GB RAM) where user mailboxes lie.
All servers are running postfix 3.7.0.I am trying to find out why some mails delivered from mailgw1.noa.gr to vmail2.noa.gr are delayed around 4 (and up to 7) minutes, while ALL other messages are delivered consistently within a couple of seconds.
This mainly happens consistently with mail from wetransfer and sharepoint servers.
As you will see, amavis on mailgw1 receives (at port 10024) from postfix and processes messages *quickly* and returns them back to postfix (at port 10025) immediately for final delivery. Postfix however delivers the message to vmail2.noa.gr after ~4 minutes. This does NOT happen with other mail, nor there is any special load that would justify delays. This behavior is driving me nuts.
Am I missing something?Here is one such mail from wetransfer (copied from collated logs, destination address local part modified):
===============================================================================================================================================
On mailgw1.noa.gr:Jun 08 11:48:29 mailgw1 postfix/smtpd[379212]: connect from o5.email.wetransfer.com[167.89.35.243] Jun 08 11:48:30 mailgw1 postfix/smtpd[379212]: Anonymous TLS connection established from o5.email.wetransfer.com[167.89.35.243]: TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 Jun 08 11:48:31 mailgw1 postfix/smtpd[379212]: 4LJ18v2F3zzM587: client=o5.email.wetransfer.com[167.89.35.243] Jun 08 11:48:31 mailgw1 postfix/cleanup[380438]: 4LJ18v2F3zzM587: message-id=<wtm.6c964765-fb3a-4ed8-9e8b-211443c23...@wetransfer.com> Jun 08 11:48:31 mailgw1 postfix/qmgr[372611]: 4LJ18v2F3zzM587: from=<bounces+922094-d8d5-userx=noa...@em9713.email.wetransfer.com>, size=43976, nrcpt=1 (queue active) Jun 08 11:48:32 mailgw1 postfix/smtpd[379212]: disconnect from o5.email.wetransfer.com[167.89.35.243] ehlo=2 starttls=1 mail=1 rcpt=1 data=1 quit=1 commands=7 Jun 08 11:48:33 mailgw1 postfix/lmtp[380474]: 4LJ18v2F3zzM587: to=<us...@noa.gr>, relay=127.0.0.1[127.0.0.1]:10024, delay=2.7, delays=1.3/0/0/1.4, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 4LJ18x2TQSzM58J)
Jun 08 11:48:33 mailgw1 postfix/qmgr[372611]: 4LJ18v2F3zzM587: removedJun 08 11:48:33 mailgw1 postfix/smtpd[379124]: connect from localhost[127.0.0.1] Jun 08 11:48:33 mailgw1 postfix/smtpd[379124]: 4LJ18x2TQSzM58J: client=localhost[127.0.0.1] Jun 08 11:48:33 mailgw1 postfix/cleanup[380469]: 4LJ18x2TQSzM58J: message-id=<wtm.6c964765-fb3a-4ed8-9e8b-211443c23...@wetransfer.com> Jun 08 11:48:33 mailgw1 postfix/qmgr[372611]: 4LJ18x2TQSzM58J: from=<bounces+922094-d8d5-userx=noa...@em9713.email.wetransfer.com>, size=44853, nrcpt=1 (queue active) Jun 08 11:48:33 mailgw1 postfix/smtpd[379124]: disconnect from localhost[127.0.0.1] ehlo=1 mail=1 rcpt=1 data=1 quit=1 commands=5 Jun 08 11:52:48 mailgw1 postfix/smtp[380422]: 4LJ18x2TQSzM58J: to=<us...@noa.gr>, relay=vmail2.noa.gr[2001:648:2011:15::166]:25, delay=255, delays=0.01/0/0.05/255, dsn=2.0.0, status=sent (250 2.0.0 Ok: queued as 671E9804DEE08)
Jun 08 11:52:48 mailgw1 postfix/qmgr[372611]: 4LJ18x2TQSzM58J: removed On vmail2.noa.gr:Jun 08 11:48:33 vmail2 postfix/smtpd[10619]: connect from mailgw1.noa.gr[2001:648:2ffc:1115::27] Jun 08 11:48:33 vmail2 postfix/smtpd[10619]: Anonymous TLS connection established from mailgw1.noa.gr[2001:648:2ffc:1115::27]: TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-
exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256Jun 08 11:48:33 vmail2 postfix/smtpd[10619]: 671E9804DEE08: client=mailgw1.noa.gr[2001:648:2ffc:1115::27] Jun 08 11:48:33 vmail2 postfix/cleanup[10742]: 671E9804DEE08: message-id=<wtm.6c964765-fb3a-4ed8-9e8b-211443c23...@wetransfer.com> Jun 08 11:52:48 vmail2 postfix/qmgr[30346]: 671E9804DEE08: from=<bounces+922094-d8d5-userx=noa...@em9713.email.wetransfer.com>, size=45294, nrcpt=1 (queue active) Jun 08 11:52:48 vmail2 postfix/smtpd[10619]: disconnect from mailgw1.noa.gr[2001:648:2ffc:1115::27] ehlo=2 starttls=1 mail=1 rcpt=1 data=1 quit=1 commands=7 Jun 08 11:52:48 vmail2 postfix/lmtp[17935]: 671E9804DEE08: to=<us...@noa.gr>, relay=vmail2.noa.gr[private/dovecot-lmtp], delay=255, delays=255/0.003/0.001/0.016, dsn=2.0.0, status=sent (250 2.0.0 <us...@noa.gr> SIJZCWBjoGIQRgAAcV+qjQ Saved)
Jun 08 11:52:48 vmail2 postfix/qmgr[30346]: 671E9804DEE08: removed ===============================================================================================================================================Another one from sharepoint (copied from collated logs, destination address local part modified):
=============================================================================================================================================== On mailgw1.noa.gr:Jun 08 12:19:27 mailgw1 postfix/smtpd[380489]: connect from mail-eopbgr10114.outbound.protection.outlook.com[40.107.1.114] Jun 08 12:19:28 mailgw1 postfix/smtpd[380489]: Anonymous TLS connection established from mail-eopbgr10114.outbound.protection.outlook.com[40.107.1.114]: TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits) Jun 08 12:19:28 mailgw1 postfix/smtpd[380489]: 4LJ1rc4bHzzM58g: client=mail-eopbgr10114.outbound.protection.outlook.com[40.107.1.114] Jun 08 12:19:28 mailgw1 postfix/cleanup[380567]: 4LJ1rc4bHzzM58g: message-id=<odspmicro-SpoShare-954c45a0-1091-4000-4bec-05ba5f269df9-f7c31e0d-0889-49e5-b58e-01972665e5e4-0378d1a3-0343-4ecc-8cc2-122acf4a9ea8@RD00155D58C96F> Jun 08 12:19:28 mailgw1 postfix/qmgr[372611]: 4LJ1rc4bHzzM58g: from=<no-re...@sharepointonline.com>, size=29491, nrcpt=1 (queue active) Jun 08 12:19:28 mailgw1 postfix/smtpd[380489]: disconnect from mail-eopbgr10114.outbound.protection.outlook.com[40.107.1.114] ehlo=2 starttls=1 mail=1 rcpt=1 bdat=1 quit=1 commands=7 Jun 08 12:19:29 mailgw1 postfix/lmtp[380574]: 4LJ1rc4bHzzM58g: to=<us...@noa.gr>, relay=127.0.0.1[127.0.0.1]:10024, delay=1.2, delays=0.59/0/0/0.58, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 4LJ1rd2yxSzM58b)
Jun 08 12:19:29 mailgw1 postfix/qmgr[372611]: 4LJ1rc4bHzzM58g: removedJun 08 12:19:29 mailgw1 postfix/smtpd[380463]: connect from localhost[127.0.0.1] Jun 08 12:19:29 mailgw1 postfix/smtpd[380463]: 4LJ1rd2yxSzM58b: client=localhost[127.0.0.1] Jun 08 12:19:29 mailgw1 postfix/cleanup[380567]: 4LJ1rd2yxSzM58b: message-id=<odspmicro-SpoShare-954c45a0-1091-4000-4bec-05ba5f269df9-f7c31e0d-0889-49e5-b58e-01972665e5e4-0378d1a3-0343-4ecc-8cc2-122acf4a9ea8@RD00155D58C96F> Jun 08 12:19:29 mailgw1 postfix/smtpd[380463]: disconnect from localhost[127.0.0.1] ehlo=1 mail=1 rcpt=1 data=1 quit=1 commands=5 Jun 08 12:19:29 mailgw1 postfix/qmgr[372611]: 4LJ1rd2yxSzM58b: from=<no-re...@sharepointonline.com>, size=30095, nrcpt=1 (queue active) Jun 08 12:23:44 mailgw1 postfix/smtp[380547]: 4LJ1rd2yxSzM58b: to=<us...@noa.gr>, relay=vmail2.noa.gr[194.177.195.166]:25, delay=255, delays=0.01/0/0.06/255, dsn=2.0.0, status=sent (250 2.0.0 Ok: queued as 78A6683DB31BD)
Jun 08 12:23:44 mailgw1 postfix/qmgr[372611]: 4LJ1rd2yxSzM58b: removed On vmail2.noa.gr:Jun 08 12:19:29 vmail2 postfix/smtpd[26530]: connect from mailgw1.noa.gr[83.212.5.27] Jun 08 12:19:29 vmail2 postfix/smtpd[26530]: Anonymous TLS connection established from mailgw1.noa.gr[83.212.5.27]: TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 Jun 08 12:19:29 vmail2 postfix/smtpd[26530]: 78A6683DB31BD: client=mailgw1.noa.gr[83.212.5.27] Jun 08 12:19:29 vmail2 postfix/cleanup[27372]: 78A6683DB31BD: message-id=<odspmicro-SpoShare-954c45a0-1091-4000-4bec-05ba5f269df9-f7c31e0d-0889-49e5-b58e-01972665e5e4-0378d1a3-0343-4ecc-8cc2-122acf4a9ea8@RD00155D58C96F> Jun 08 12:23:44 vmail2 postfix/qmgr[30346]: 78A6683DB31BD: from=<no-re...@sharepointonline.com>, size=30507, nrcpt=1 (queue active) Jun 08 12:23:44 vmail2 postfix/smtpd[26530]: disconnect from mailgw1.noa.gr[83.212.5.27] ehlo=2 starttls=1 mail=1 rcpt=1 data=1 quit=1 commands=7 Jun 08 12:23:44 vmail2 postfix/lmtp[26584]: 78A6683DB31BD: to=<us...@noa.gr>, relay=vmail2.noa.gr[private/dovecot-lmtp], delay=255, delays=255/0.006/0.001/0.15, dsn=2.0.0, status=sent (250 2.0.0 <us...@noa.gr> ACWEJKBqoGL1cAAAcV+qjQ Saved)
Jun 08 12:23:44 vmail2 postfix/qmgr[30346]: 78A6683DB31BD: removed =============================================================================================================================================== I list below the configurations and some performance data.------------------------------------------------------------------------------------------------
postconf -n on mailgw1.noa.gr: # postconf -n allowed_list1 = reject allowed_list2 = reject command_directory = /usr/sbin compatibility_level = 3.6 content_filter = smtp-amavis:[127.0.0.1]:10024 daemon_directory = /usr/libexec/postfix data_directory = /var/lib/postfixdebugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin xxgdb $daemon_directory/$process_name $process_id & sleep 5
default_process_limit = 100 disable_vrfy_command = yes enable_long_queue_ids = yes header_checks = pcre:/etc/postfix/blacklisted_maillists html_directory = no inet_interfaces = all inet_protocols = ipv4, ipv6 local_recipient_maps = local_transport = error:local mail delivery is disabled mail_name = NOA MAIL ICXC-NIKA mail_owner = postfix maillog_file = /var/log/postfix.log mailq_path = /usr/bin/mailq.postfix manpage_directory = /usr/share/man message_size_limit = 15728640 meta_directory = /etc/postfix mydestination = mynetworks = 127.0.0.1/32 [::1]/128 myorigin = $mydomain newaliases_path = /usr/bin/newaliases.postfixpostscreen_access_list = permit_mynetworks, cidr:/etc/postfix/postscreen_exceptions.cidr
postscreen_blacklist_action = enforce postscreen_dnsbl_action = enforcepostscreen_dnsbl_sites = zen.spamhaus.org*3 b.barracudacentral.org*2 bl.spameatingmonkey.net*2 bl.spamcop.net dnsbl.sorbs.net psbl.surriel.com bl.mailspike.net list.dnswl.org=127.0.[0..255].0*-2 list.dnswl.org=127.0.[0..255].1*-3 list.dnswl.org=127.0.[0..255].[2..3]*-4
postscreen_dnsbl_threshold = 3 postscreen_dnsbl_whitelist_threshold = -1 postscreen_greet_action = enforce queue_directory = /var/spool/postfix readme_directory = /usr/share/doc/postfix3-3.7.2/README_FILES relay_domains = $transport_maps relay_recipient_maps = sample_directory = /usr/share/doc/postfix3-3.7.2/samples sendmail_path = /usr/sbin/sendmail.postfix setgid_group = postdrop shlib_directory = /usr/lib/postfix smtp_tls_security_level = may smtpd_helo_required = yessmtpd_recipient_restrictions = check_client_access hash:/etc/postfix/amavis_bypass check_sender_access hash:/etc/postfix/amavis_bypass_senders check_sender_access hash:/etc/postfix/blacklisted_senders check_sender_access pcre:/etc/postfix/blacklisted_maillists reject_unverified_recipient reject_unauth_destination check_recipient_access hash:/etc/postfix/protected_destinations permit_mynetworks reject_invalid_hostname reject_unauth_pipelining reject_non_fqdn_sender reject_unknown_sender_domain reject_non_fqdn_recipient reject_unknown_recipient_domain reject_rbl_client b.barracudacentral.org reject_rbl_client zen.spamhaus.org reject_rbl_client psbl.surriel.com reject_rbl_client bl.spamcop.net reject_rhsbl_client dbl.spamhaus.org reject_rhsbl_sender dbl.spamhaus.org reject_rhsbl_helo dbl.spamhaus.org permit
smtpd_restriction_classes = allowed_list1,allowed_list2 smtpd_tls_CAfile = /etc/pki/tls/certs/GeantChain.crt smtpd_tls_cert_file = /etc/pki/tls/certs/star_noa_gr_cert-754868755.crt smtpd_tls_exclude_ciphers = DES,3DES,MD5,aNULL,AES128,CAMELLIA128 smtpd_tls_key_file = /etc/pki/tls/private/star_noa_gr-1243437.key smtpd_tls_loglevel = 1 smtpd_tls_mandatory_ciphers = high smtpd_tls_mandatory_protocols = >=TLSv1.2 smtpd_tls_security_level = may smtpd_tls_session_cache_timeout = 3600s transport_maps = hash:/etc/postfix/transportmap unknown_local_recipient_reject_code = 550 unverified_recipient_reject_code = 550 unverified_sender_reject_code = 550 virtual_alias_maps = hash:/etc/postfix/virtualmap [root@mailgw1 ~]# cat /etc/postfix/master.cf # ========================================================================== # service type private unpriv chroot wakeup maxproc command + args # (yes) (yes) (yes) (never) (100) # ========================================================================== #smtp inet n - n - - smtpd -v smtp inet n - n - 1 postscreen smtpd pass - - n - - smtpd dnsblog unix - - n - 0 dnsblog tlsproxy unix - - n - 0 tlsproxy #submission inet n - n - - smtpd # -o smtpd_enforce_tls=yes # -o smtpd_sasl_auth_enable=yes # -o smtpd_client_restrictions=permit_sasl_authenticated,reject #smtps inet n - n - - smtpd # -o smtpd_tls_wrappermode=yes # -o smtpd_sasl_auth_enable=yes # -o smtpd_client_restrictions=permit_sasl_authenticated,reject #628 inet n - n - - qmqpd pickup fifo n - n 60 1 pickup cleanup unix n - n - 0 cleanup qmgr fifo n - n 300 1 qmgr #qmgr fifo n - n 300 1 oqmgr tlsmgr unix - - n 1000? 1 tlsmgr rewrite unix - - n - - trivial-rewrite bounce unix - - n - 0 bounce defer unix - - n - 0 bounce trace unix - - n - 0 bounce verify unix - - n - 1 verify flush unix n - n 1000? 0 flush proxymap unix - - n - - proxymap smtp unix - - n - - smtp # When relaying mail as backup MX, disable fallback_relay to avoid MX loops relay unix - - n - - smtp -o smtp_fallback_relay= # -o smtp_helo_timeout=5 -o smtp_connect_timeout=5 showq unix n - n - - showq error unix - - n - - error discard unix - - n - - discard local unix - n n - - local virtual unix - n n - - virtual lmtp unix - - n - - lmtp anvil unix - - n - 1 anvil scache unix - - n - 1 scache retry unix - - n - - error proxywrite unix - - n - 1 proxymap postlog unix-dgram n - n - 1 postlogd smtp-amavis unix - - n - 2 lmtp # -o smtp_data_done_timeout=1200 # -o smtp_send_xforward_command=yes -o disable_dns_lookups=yes -o max_use=20 127.0.0.1:10025 inet n - n - - smtpd -o content_filter= -o local_recipient_maps= -o relay_recipient_maps= -o smtpd_restriction_classes= -o smtpd_delay_reject=no -o smtpd_client_restrictions=permit_mynetworks,reject -o smtpd_helo_restrictions= -o smtpd_sender_restrictions= -o smtpd_recipient_restrictions=permit_mynetworks,reject -o smtpd_data_restrictions=reject_unauth_pipelining -o smtpd_end_of_data_restrictions= -o mynetworks=127.0.0.0/8 -o smtpd_error_sleep_time=0 -o smtpd_soft_error_limit=1001 -o smtpd_hard_error_limit=1000 -o smtpd_client_connection_count_limit=0 -o smtpd_client_connection_rate_limit=0-o receive_override_options=no_header_body_checks,no_unknown_recipient_checks,no_milters
# cat /etc/postfix/transportmap noa.gr relay:[vmail2.noa.gr] admin.noa.gr relay:[vmail2.noa.gr] nestor.noa.gr relay:[vmail2.noa.gr] space.noa.gr relay:[vmail2.noa.gr] meteo.noa.gr relay:[vmail2.noa.gr] gein.noa.gr relay:[vmail2.noa.gr] technet.noa.gr relay:[vmail2.noa.gr] astro.noa.gr relay:[vmail2.noa.gr] hesperia-space.eu relay:[vmail2.noa.gr] # mpstatLinux 4.18.0-372.9.1.el8.x86_64 (mailgw1.noa.gr) 06/08/2022 _x86_64_ (2 CPU)
02:49:25 PM CPU %usr %nice %sys %iowait %irq %soft %steal %guest %gnice %idle 02:49:25 PM all 5.67 0.01 0.23 0.44 0.09 0.05 0.05 0.00 0.00 93.46
------------------------------------------------------------------------------------------------
postconf -n on vmail2.noa.gr: # postconf -nalias_database = hash:/etc/postfix/aliases, hash:/etc/postfix/aliases.d/virtual_aliases
alias_maps = hash:/etc/aliasesallowed_list1 = check_sasl_access hash:/etc/postfix/allowed_groupmail_users,reject
allowed_list2 = permit_sasl_authenticated,reject broken_sasl_auth_clients = yes command_directory = /usr/sbin compatibility_level = 3.6 controlled_senders = check_sender_access hash:/etc/postfix/blocked_senders daemon_directory = /usr/libexec/postfix data_directory = /var/lib/postfix debug_peer_level = 2debugger_command = PATH=/bin:/usr/bin:/usr/local/bin; export PATH; (echo cont; echo where) | gdb $daemon_directory/$process_name $process_id 2>&1 >$config_directory/$process_name.$process_id.log & sleep 5
default_process_limit = 100 delay_logging_resolution_limit = 3 deliver_lock_attempts = 40 gwcheck = reject_unverified_recipient, reject_unauth_destination home_mailbox = Maildir/ html_directory = no inet_interfaces = all inet_protocols = ipv4, ipv6 local_header_rewrite_clients = static:all mail_name = Postfix IC-XC-NI-KA mail_owner = postfix maillog_file = /var/log/postfix.log mailq_path = /usr/bin/mailq.postfix manpage_directory = /usr/share/man message_size_limit = 41943040 meta_directory = /etc/postfix milter_default_action = accept mydestination = $myhostname, localhost.$mydomain, localhost mydomain = noa.gr myhostname = vmail2.noa.grmynetworks = 195.251.204.0/24, 195.251.202.0/23, 194.177.194.0/23, 127.0.0.0/8, 10.201.0.0/16, [2001:648:2011::]/48, 83.212.5.24/29, [2001:648:2ffc:1115::]/64, 62.217.124.0/29, [2001:648:2ffc:126::]/64, [::1]/128
myorigin = $mydomain newaliases_path = /usr/bin/newaliases.postfix non_smtpd_milters = $smtpd_milters parent_domain_matches_subdomains = postfwdcheck = check_policy_service inet:127.0.0.1:10040 queue_directory = /var/spool/postfix readme_directory = /usr/share/doc/postfix3-3.7.0/README_FILES recipient_canonical_maps = hash:/etc/postfix/domainrecipientmap relay_domains = $mydestination sample_directory = /usr/share/doc/postfix3-3.7.0/samples sender_canonical_maps = hash:/etc/postfix/domainsendermap sendmail_path = /usr/sbin/sendmail.postfix setgid_group = postdrop shlib_directory = /usr/lib/postfix smtp_tls_exclude_ciphers = MD5, aDSS, kECDH, kDH, SEED, IDEA, RC2, RC5 smtp_tls_security_level = maysmtpd_client_restrictions = check_client_access cidr:/etc/postfix/localhost.cidr check_client_access cidr:/etc/postfix/gwservers.cidr check_client_access cidr:/etc/postfix/non-tls-clients.cidr permit_sasl_authenticated reject
smtpd_delay_reject = yessmtpd_end_of_data_restrictions = check_client_access cidr:/etc/postfix/postfwdpolicy.cidr
smtpd_milters = inet:127.0.0.1:8891smtpd_recipient_restrictions = check_recipient_access hash:/etc/postfix/protected_destinations permit_mynetworks permit_sasl_authenticated reject_unverified_recipient reject_unauth_destination
smtpd_relay_restrictions =smtpd_restriction_classes = controlled_senders,allowed_list1,allowed_list2, postfwdcheck,gwcheck
smtpd_sasl_auth_enable = no smtpd_sasl_path = /var/spool/postfix/private/auth smtpd_sasl_security_options = noanonymous smtpd_sasl_type = dovecot smtpd_tls_CAfile = /etc/pki/tls/certs/GeantChain.crt smtpd_tls_auth_only = yes smtpd_tls_cert_file = /etc/pki/tls/certs/star_noa_gr_cert-754868755.crt smtpd_tls_key_file = /etc/pki/tls/private/star_noa_gr-1243437.key smtpd_tls_loglevel = 1 smtpd_tls_mandatory_ciphers = high smtpd_tls_mandatory_protocols = >=TLSv1.2 smtpd_tls_received_header = yes smtpd_tls_security_level = may smtpd_tls_session_cache_timeout = 3600s smtpd_use_tls = yes tls_preempt_cipherlist = yes tls_random_source = dev:/dev/urandom transport_maps = hash:/etc/postfix/transport unknown_local_recipient_reject_code = 550 unverified_recipient_reject_code = 550virtual_alias_maps = hash:/etc/postfix/aliases, hash:/etc/postfix/aliases.d/virtual_aliases, proxy:ldap:/etc/postfix/ldap-alias-vacation.cf, proxy:ldap:/etc/postfix/ldap-aliases.cf
virtual_gid_maps = static:500 virtual_mailbox_base = /home/vmail/virtual_mailbox_domains = $mydomain, space.$mydomain, admin.$mydomain, nestor.$mydomain, gein.$mydomain, meteo.$mydomain, technet.$mydomain, astro.$mydomain, hesperia-space.eu
virtual_mailbox_limit = 0 virtual_mailbox_maps = proxy:ldap:/etc/postfix/ldap-users.cf virtual_transport = lmtp:unix:private/dovecot-lmtp virtual_uid_maps = static:500postconf: warning: /etc/postfix/main.cf: unused parameter: 127.0.0.1:10040_time_limit=3600
[root@vmail2 postfix]# cat /etc/postfix/master.cf
#
# Postfix master process configuration file. For details on the format
# of the file, see the master(5) manual page (command: "man 5 master").
#
# ==========================================================================
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (yes) (never) (100)
# ==========================================================================
smtp inet n - n - - smtpd
submission inet n - n - - smtpd
-o smtpd_sasl_auth_enable=yes
-o syslog_name=postfix/submission
-o smtpd_client_restrictions=permit_sasl_authenticated,reject
#smtps inet n - n - - smtpd
# -o smtpd_tls_wrappermode=yes
# -o smtpd_sasl_auth_enable=yes
# -o smtpd_client_restrictions=permit_sasl_authenticated,reject
#628 inet n - n - - qmqpd
pickup fifo n - n 60 1 pickup
cleanup unix n - n - 0 cleanup
qmgr fifo n - n 300 1 qmgr
#qmgr fifo n - n 300 1 oqmgr
tlsmgr unix - - n 1000? 1 tlsmgr
rewrite unix - - n - - trivial-rewrite
bounce unix - - n - 0 bounce
defer unix - - n - 0 bounce
trace unix - - n - 0 bounce
verify unix - - n - 1 verify
flush unix n - n 1000? 0 flush
proxymap unix - - n - - proxymap
smtp unix - - n - - smtp
# When relaying mail as backup MX, disable fallback_relay to avoid MX loops
relay unix - - n - - smtp
-o smtp_fallback_relay=
# -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq unix n - n - - showq
error unix - - n - - error
discard unix - - n - - discard
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - n - - lmtp
anvil unix - - n - 1 anvil
scache unix - - n - 1 scache
#
# ====================================================================
# Interfaces to non-Postfix software. Be sure to examine the manual
# pages of the non-Postfix software to find out what options it wants.
#
# Many of the following services use the Postfix pipe(8) delivery
# agent. See the pipe(8) man page for information about ${recipient}
# and other message envelope options.
# ====================================================================
#
# maildrop. See the Postfix MAILDROP_README file for details.
# Also specify in main.cf: maildrop_destination_recipient_limit=1
#
maildrop unix - n n - - pipe
flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d ${recipient}
#
# The Cyrus deliver program has changed incompatibly, multiple times.
#
old-cyrus unix - n n - - pipe
flags=R user=cyrus argv=/usr/lib/cyrus-imapd/deliver -e -m
${extension} ${user}
# Cyrus 2.1.5 (Amos Gouaux) # Also specify in main.cf: cyrus_destination_recipient_limit=1 cyrus unix - n n - - pipeuser=cyrus argv=/usr/lib/cyrus-imapd/deliver -e -r ${sender} -m ${extension} ${user}
# # See the Postfix UUCP_README file for configuration details. # uucp unix - n n - - pipeflags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
# # Other external delivery methods. # ifmail unix - n n - - pipe flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient) bsmtp unix - n n - - pipeflags=Fq. user=foo argv=/usr/local/sbin/bsmtp -f $sender $nexthop $recipient
# gnarwl autoresponder gnarwl unix - n n - - pipeflags=F user=gnarwl argv=/usr/local/bin/gnarwl -a ${user}@${nexthop} -s ${sender}
# # The following part is only used for Dovecot LDA-based delivery # dovecot unix - n n - - pipeflags=DRhu user=vmail:vmail argv=/usr/libexec/dovecot/dovecot-lda -f ${sender} -d ${user}
retry unix - - n - - error proxywrite unix - - n - 1 proxymap postlog unix-dgram n - n - 1 postlogd #smtp inet n - n - 1 postscreen #smtpd pass - - n - - smtpd #dnsblog unix - - n - 0 dnsblog #tlsproxy unix - - n - 0 tlsproxy # mpstatLinux 3.10.0-1160.59.1.el7.x86_64 (vmail2.noa.gr) 06/08/2022 _x86_64_ (1 CPU)
02:46:45 PM CPU %usr %nice %sys %iowait %irq %soft %steal %guest %gnice %idle 02:46:45 PM all 6.22 0.00 2.34 2.42 0.00 0.12 0.25 0.00 0.00 88.65
------------------------------------------------------------------------------------------------
Please let me know for any additional data you may require. Thanks in advance, Nick
smime.p7s
Description: S/MIME Cryptographic Signature
