Re: log format (feature request)

On 17 avr. 2014, at 08:33, Robert Schetterer wrote: > perhaps off topic, with using postix and graylog2 i was advised to use > massive pre filter with syslog daemon before "inject" to graylog2 > so this may help you tmp too, but for sure ,its very complex I'm currently trying to adapt grok patter

Re: log format (feature request)

Am 17.04.2014 07:08, schrieb Patrick Proniewski: > On 16 avr. 2014, at 21:39, Wietse Venema wrote: > >> Patrick Proniewski: >>> That would be really awesome if Postfix could log into a structured >>> format. I'm thinking about JSON, because that's what >>> logstash/elasticsearch eats. But any key=

Re: postfix, use a custom mysql user table to reject messages

Andy, Should work just fine. Google "postfix relay_recipient_maps mysql”. I have a similar issue in that my two edge servers deliver email to an Exchange server which is where user account live. The only difference is that I’ve been using LDAP rather than mysql. I also depend heavily on LDA

Re: log format (feature request)

On 16 avr. 2014, at 21:39, Wietse Venema wrote: > Patrick Proniewski: >> That would be really awesome if Postfix could log into a structured >> format. I'm thinking about JSON, because that's what >> logstash/elasticsearch eats. But any key=value output is fine. >> >> Any plan about such a featur

Re: Almost working: I can send a mail, I can't get it via pop3 (no errors)

Am 17.04.2014 02:19, schrieb Ziv Barber: > On Thu, Apr 17, 2014 at 1:14 AM, Wietse Venema wrote: >> So you have two systems that expect mail to be in different places. >> You need to configure one or the other, or perhaps you need to >> configure Postfix that it should let Dovecot deliver the ma

Re: Almost working: I can send a mail, I can't get it via pop3 (no errors)

On Thu, Apr 17, 2014 at 1:14 AM, Wietse Venema wrote: > So you have two systems that expect mail to be in different places. > You need to configure one or the other, or perhaps you need to > configure Postfix that it should let Dovecot deliver the mail. > > This is the POSTFIX mailing list, not DO

Re: Almost working: I can send a mail, I can't get it via pop3 (no errors)

Ziv Barber: > I don't know how it should work but: > > postfix is saving the emails into /var/mail/ file. > I can see all the mails there - no problems. So you have configured Postfix to deliver mail, not Dovecot. > dovecot is reading the emails from the directory ~/mail So you have two systems

Re: Almost working: I can send a mail, I can't get it via pop3 (no errors)

Ziv Barber: > postfix saying that "mail delivered" but when I'm trying to check my > mail, dovecot saying that the mailbox is empty. What is the complete unabridged logfile record? You can replace the recipient address with XXX@YYY. > Please, I almost make it to work. > What is the secret configu

Re: postfix, use a custom mysql user table to reject messages

Andy Yen: > Hi postfixers, > To send fewer email bounce messages, I would like to reject > messages at the SMTP session if either the user doesn't exist, or the > user has exceeded their quota. My mail setup is a bit different in that > I only use postfix for receiving messages, user acc

Almost working: I can send a mail, I can't get it via pop3 (no errors)

postfix saying that "mail delivered" but when I'm trying to check my mail, dovecot saying that the mailbox is empty. I do set local_recipient_maps to noting (as I found out that I need to do). Now I get no errors but no mails. Please, I almost make it to work. What is the secret configuration to

Re: Need a main.cf file for virtual users

One small question, if you can answer me: For every user, do I have to create real unix user? So... for every user I have to: 1. Add it to the virtual file. 2. Create a unix user. 3. Add it to the dovecot user lists file. Right? On Wed, Apr 16, 2014 at 10:55 PM, Patrick Ben Koetter wrote: > *

postfix, use a custom mysql user table to reject messages

Hi postfixers, To send fewer email bounce messages, I would like to reject messages at the SMTP session if either the user doesn't exist, or the user has exceeded their quota. My mail setup is a bit different in that I only use postfix for receiving messages, user accounts and local sto

Re: Need a main.cf file for virtual users

* Ziv Barber : > OK > > I missed that out: > > postfix reporting a problem: > (connect to mydomain.com[/var/lib/imap/socket/lmtp]: No such file or > directory) > > How to fix that? Read documentation? -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 Mü

Re: Need a main.cf file for virtual users

OK I missed that out: postfix reporting a problem: (connect to mydomain.com[/var/lib/imap/socket/lmtp]: No such file or directory) How to fix that? thanks, Ziv

Re: timeout after ehlo

Viktor - you nailed it. Not certain why just yet, but for a certain subset of hosts, iptables is failing to pass packets containing the mail from: line. After a certain number of (TCP) retries, some will be successful. nf_conntrack isn’t hitting its limits or anything obvious (far from it), s

Re: Need a main.cf file for virtual users

OK Now there are no errors but 1. I can see on the log a strange post of some mail (I guess) from "double-bounce@" to "root@"! What's going on? 2. When I try to read emails via dovecot I got no mails. Why is that? 3. Where postfix storing the emails? 4. Do I have to add the domain name to

Re: Need a main.cf file for virtual users

On 4/16/2014 3:22 PM, Ziv Barber wrote: > OK, so now I don't get any errors and it looks like dovecot can login > into postifx (or something like that) because if I remove this line: > > virtual_transport=dovecot > > dovecot starting to report about auth errors, so I put it back (I > wonder that

Re: Need a main.cf file for virtual users

OK, so now I don't get any errors and it looks like dovecot can login into postifx (or something like that) because if I remove this line: virtual_transport=dovecot dovecot starting to report about auth errors, so I put it back (I wonder that this is the link between postfix and dovecot that I wo

Re: Need a main.cf file for virtual users

On 4/16/2014 2:52 PM, Ziv Barber wrote: > On Wed, Apr 16, 2014 at 8:43 PM, Brian Evans wrote: >> Well maybe you should read your own logs. Postfix is waiting for >> assistance. >> The warnings are pointers to reduce issues, but there is a fatal >> configuration error too. > yes: > warning: dict_n

Re: timeout after ehlo

There is a regular ol’ iptables/linux box in front of this doing nat and state matching, didn’t think to poke around there. Thanks for the tip. Brian On Apr 16, 2014, at 2:47 PM, Viktor Dukhovni wrote: >> > > Some firewall or load-balancer or similar device is losing connection > state on th

Re: timeout after ehlo

I am definitely seeing stress adaptives kick in, exactly as they should. So I do understand the reduction in postfix’ willingness to wait around for that next packet. The piece of the puzzle I’m still missing however, is what’s going on that certain mailers aren’t giving up the packet to begin

Re: Need a main.cf file for virtual users

On Wed, Apr 16, 2014 at 8:43 PM, Brian Evans wrote: > Well maybe you should read your own logs. Postfix is waiting for > assistance. > The warnings are pointers to reduce issues, but there is a fatal > configuration error too. yes: warning: dict_nis_init: NIS domain name not set - NIS lookups dis

Re: Default main.cf file?

On 4/16/2014 2:44 PM, Ziv Barber wrote: > Hi, > > I want to try again to setup my postfix but I need the default main.cf file. > Yes, I know, I had to save it before trying to play with it but... I > didn't do that. > Where can I download the default main.cf file? > > thanks, > Ziv > The "defau

Re: timeout after ehlo

On Wed, Apr 16, 2014 at 02:17:23PM -0500, Brian Grimal wrote: > 14:04:31.425682 IP 172.16.5.8.25 > 206.46.173.11.19129: Flags [P.], seq > 35:216, ack 32, win 46, options [nop,nop,TS val 386720906 ecr 1770681376], > length 181 > ..&.&mO-..J. > i.t 250-mail.A.com > 250-PIPELINI

Default main.cf file?

Hi, I want to try again to setup my postfix but I need the default main.cf file. Yes, I know, I had to save it before trying to play with it but... I didn't do that. Where can I download the default main.cf file? thanks, Ziv

Re: Need a main.cf file for virtual users

On 4/16/2014 3:31 PM, Ziv Barber wrote: > Well? Well maybe you should read your own logs. Postfix is waiting for assistance. The warnings are pointers to reduce issues, but there is a fatal configuration error too. > > On Wed, Apr 16, 2014 at 6:32 PM, Ziv Barber wrote: >> Apr 16 21:26:27 hosted

Re: Need a main.cf file for virtual users

On 4/16/2014 2:31 PM, Ziv Barber wrote: > Well? First, get rid of the obvious errors in your log. > On Wed, Apr 16, 2014 at 6:32 PM, Ziv Barber wrote: >> Apr 16 21:26:17 hosted-by dovecot: master: Dovecot v2.0.9 starting up >> (core dumps disabled) >> Apr 16 21:26:27 hosted-by postfix[26422]: w

Re: log format (feature request)

Patrick Proniewski: > Hi all, > > I love Postfix and I use it everywhere I can. At work, I now have > about 6 of them for different uses. My MX alone accepts about 1 > million messages per month. I must (forensic/support request/law) > keep logs from all these Postfix servers, and more importantly

Re: timeout after ehlo

Brian Grimal: > Apr 16 12:57:45 mail postfix/smtpd[18647]: connect from > vms173001pub.verizon.net[206.46.173.1] > Apr 16 13:02:45 mail postfix/smtpd[18647]: timeout after EHLO from > vms173001pub.verizon.net[206.46.173.1] Postfix works as expected. Postfix receives *NOTHING* for 5 minutes, and

Re: Need a main.cf file for virtual users

Well? On Wed, Apr 16, 2014 at 6:32 PM, Ziv Barber wrote: > Apr 16 21:26:17 hosted-by dovecot: master: Dovecot v2.0.9 starting up > (core dumps disabled) > Apr 16 21:26:27 hosted-by postfix[26422]: warning: inet_protocols: > IPv6 support is disabled: Address family not supported by protoc$ > Apr 1

aliasing root to a virtual user

I'm trying to alias mail to root to go to a user in a virtual domain. Local mail delivery is handled by dovecot. If I mail root, it gets transformed to r...@gamubaru.com. The mail then gets delivered by dovecot to r...@gamubaru.com. I can't figure out how to get aliases to work. I tried setting

log format (feature request)

Hi all, I love Postfix and I use it everywhere I can. At work, I now have about 6 of them for different uses. My MX alone accepts about 1 million messages per month. I must (forensic/support request/law) keep logs from all these Postfix servers, and more importantly I must be able to browse/sea

Re: timeout after ehlo

My apologies, Wietse. I’m having issues with timeouts after ehlo (or helo), before postfix responds with a 250 status. Some senders don’t have any issue at all (gmail). Some senders can’t get any mail through (verizon). Some are hit and miss, with a long (multiple minute) delay on the one

Re: smtp_bind_address not working through proxy

lists: While you were posting your response, I had just posted something right before. My postfix machine is the one doing the sending to external domains, bypassing the proxy somehow. -- View this message in context: http://postfix.1071664.n5.nabble.com/smtp-bind-address-not-working-through-p

Re: smtp_bind_address not working through proxy

I do understand how it works but isn't there a way to force all smtp connections through the proxy and make it send from there? I wouldnt think this is so difficult given the many customizations we can do with almost anything related to mail servers and proxying. Would an SNAT rule in iptables or s

Re: smtp_bind_address not working through proxy

Am 16.04.2014 19:52, schrieb sedandgrep: > The SPF record is defined only for the proxy machine and defining the actual > backend postfix would reveal the backend IP. Are you saying that in this > case SPF will not work unless I add a record for my backend postfix IP? you need to understand SPF,

Re: smtp_bind_address not working through proxy

Ok. I actually am mistaken. I am at a different location. I was testing the emails outbound from my actual postfix backend connected to my LAN (a machine within the LAN) so the public ip will always appear as the one mentioned. But the truth is, it isn't showing SPF failing based on the client, but

Cut over to another server

Hi, I've inherited a postfix/dovecot/postfixadmin/squirrelmail setup. I'm looking to cut over from the live mail server to this other server. I'm trying to figure out how to do this cut-over properly. I've installed and configured postfix/dovecot/postfixadmin/squirrelmail as best I could and wit

Re: smtp_bind_address not working through proxy

The SPF record is defined only for the proxy machine and defining the actual backend postfix would reveal the backend IP. Are you saying that in this case SPF will not work unless I add a record for my backend postfix IP? -- View this message in context: http://postfix.1071664.n5.nabble.com/smt

Re: Need a main.cf file for virtual users

On 4/16/2014 12:14 PM, Ziv Barber wrote: > Yes, sorry, I forgot to post the error: > > NOQUEUE: reject: RCPT from mail-ig0-f169.google.com > > Partial log snippets are not useful. Please provide the information requested. Please do not post in HTML. -- No

Re: Need a main.cf file for virtual users

Apr 16 21:26:17 hosted-by dovecot: master: Dovecot v2.0.9 starting up (core dumps disabled) Apr 16 21:26:27 hosted-by postfix[26422]: warning: inet_protocols: IPv6 support is disabled: Address family not supported by protoc$ Apr 16 21:26:27 hosted-by postfix[26422]: warning: inet_protocols: configu

Re: smtp_bind_address not working through proxy

Am 16.04.2014 19:07, schrieb sedandgrep: > Upon inspection of the headers to an external domain (an email address I have > at gmail), they show the SPF failing claiming that the ip of the client is > not designated to send emails for our domain (the domain of our postfix of > course) you need to

Re: timeout after ehlo

Brian Grimal: > after ehlo. I?ve telnetted into the box from off-site (regular > host, not a mail server), and it immediately connects, immediately > responds with the 220 mail..com ESMTP Postfix herald, and > immediately responds to the helo or ehlo. However, it will take > about two minutes

timeout after ehlo

I’m banging my head on the desk over this one. Some hosts, fly right on through - connect, ehlo, mail from, rcpt-to, data, quit .. done. All in maybe 1 second. Others, will consistently timeout after ehlo. I’ve telnetted into the box from off-site (regular host, not a mail server), and it im

Re: Need a main.cf file for virtual users

Yes, sorry, I forgot to post the error: NOQUEUE: reject: RCPT from mail-ig0-f169.google.com On Wed, Apr 16, 2014 at 6:09 PM, Noel Jones wrote: > On 4/16/2014 11:02 AM, Ziv Barber wrote: > > I need to setup: > > > > * postfix/dovecot mail server. > > * one domain - let's say mydomain.com

Try 2 to post: I need help setting a main.cf configuration file

I need to setup: * postfix/dovecot mail server. * one domain - let's say mydomain.com * text file that allowing me to configure the users and passwords. I tried this configuration but it's not working: # Global Postfix configuration file. This file lists only a subset # of all parameters. For th

Re: Need a main.cf file for virtual users

On 4/16/2014 11:02 AM, Ziv Barber wrote: > I need to setup: > > * postfix/dovecot mail server. > * one domain - let's say mydomain.com > * text file that allowing me to configure the users and passwords. > > I tried this configuration but it's not working: (please post in p

Re: smtp_bind_address not working through proxy

Upon inspection of the headers to an external domain (an email address I have at gmail), they show the SPF failing claiming that the ip of the client is not designated to send emails for our domain (the domain of our postfix of course) -- View this message in context: http://postfix.1071664.n5

Re: smtp_bind_address not working through proxy

sedandgrep: > Hello, > > I have an imap/smtp proxy in a remote location that handles everything for > the postfix backend. However, when sending to external domains such as > gmail, those headers show my SPF as failing since the email seems to be > coming from the actual client and not from the pr

smtp_bind_address not working through proxy

Hello, I have an imap/smtp proxy in a remote location that handles everything for the postfix backend. However, when sending to external domains such as gmail, those headers show my SPF as failing since the email seems to be coming from the actual client and not from the proxy. I already made modi

Need a main.cf file for virtual users

I need to setup: * postfix/dovecot mail server. * one domain - let's say mydomain.com * text file that allowing me to configure the users and passwords. I tried this configuration but it's not working: # Global Postfix configuration file. This file lists only a subset # of all parameters. For th

Re: Does it work on an air gapped intranet?

On Wed, Apr 16, 2014 at 11:56:51AM +0100, Marcus wrote: > Viktor Dukhovni: > > To disable DNS in Postfix 2.11.0 or later: > > > > smtp_dns_support_level = none > > Using "none" will throw a fatal error because the value is invalid. > The correct value to disable DNS lookups in Postfix 2.11+ i

Re: Regarding DNS lookup

On 04/16/2014 10:14 AM, Kris Deugau wrote: > > "In case some customer changes the MX records away from me, how can I > automatically stop accepting mail for that domain?" > > About the best you can do is probably a cron job that checks on MX > records for domains you supposedly host, that can lea

Re: Regarding DNS lookup

Kris Deugau: > I think the question is more along the lines of: > > "In case some customer changes the MX records away from me, how can I > automatically stop accepting mail for that domain?" That is my reading too. > About the best you can do is probably a cron job that checks on MX > records f

Re: Regarding DNS lookup

Mauricio Tavares wrote: > On Wed, Apr 16, 2014 at 8:40 AM, Joy wrote: >> Dear Expert, >> I have configured my postfix to lookup against LDAP >> server which hosts multiple domain all working fine but in case any domain >> moves from my mail server to another server like ya

Re: Regarding DNS lookup

On Wed, Apr 16, 2014 at 8:40 AM, Joy wrote: > Dear Expert, > I have configured my postfix to lookup against LDAP > server which hosts multiple domain all working fine but in case any domain > moves from my mail server to another server like yahoo or gmail by changing > onl

Regarding DNS lookup

Dear Expert, I have configured my postfix to lookup against LDAP server which hosts multiple domain all working fine but in case any domain moves from my mail server to another server like yahoo or gmail by changing only MX record my server still tries to deliver mail to th

Re: socketmap -vs- tcp_table

Marcus: > Wietse: > >> Marcus: > >> What are the benefits of socketmap (postfix 2.10+) vs tcp_table? > > > > tcp_table is Postfix-only. socketmap also works with Sendmail, > > and is a better protocol. > > Out of curiosity... when you say "better", are you talking about > performance and/or reliab

Re: Asking about heartbleed

On 4/10/2014 7:57 PM, postfix-us...@tja-server.de wrote: Wietse Venema wrote: OpenSSL versions prior to 1.0.1 don't have the hearbeat feature and have never been affected by this bug. ii openssl 0.9.8o-4squeeze14 Secure Socket Layer (SSL) binary and relat

Re: Does it work on an air gapped intranet?

Viktor Dukhovni: > To disable DNS in Postfix 2.11.0 or later: > > smtp_dns_support_level = none Using "none" will throw a fatal error because the value is invalid. The correct value to disable DNS lookups in Postfix 2.11+ is "disabled" i.e. smtp_dns_support_level = disabled and if lmtp

Re: socketmap -vs- tcp_table

Wietse: >> Marcus: >> What are the benefits of socketmap (postfix 2.10+) vs tcp_table? > > tcp_table is Postfix-only. socketmap also works with Sendmail, > and is a better protocol. Out of curiosity... when you say "better", are you talking about performance and/or reliability, or do you mean it's