Loading ...
Sorry, an error occurred while loading the content.

too many disconnects -- help

Expand Messages
  • Peter
    I am running an anti-spam/virus gateway built with postfix 2.2.5 and amavisd-new 2.3.3 running on OpenBSD 3.8. Everything was working well until several
    Message 1 of 3 , Jun 1, 2006
    • 0 Attachment
      I am running an anti-spam/virus gateway built with postfix 2.2.5 and
      amavisd-new 2.3.3 running on OpenBSD 3.8. Everything was working well
      until several domains had their MX records turned in the server's
      direction. I am now logging very many disconnections.


      Jun 1 08:33:54 host postfix/smtpd[4431]: connect from
      avk84-1-82-243-6-24.fbx.proxad.net[82.243.6.24]
      Jun 1 08:33:54 host postfix/smtpd[4431]: lost connection after CONNECT
      from avk84-1-82-243-6-24.fbx.proxad.net[82.243.6.24]
      Jun 1 08:33:54 host postfix/smtpd[4431]: disconnect from
      avk84-1-82-243-6-24.fbx.proxad.net[82.243.6.24]


      Why is it disconnecting so quickly?


      My onboard pf firewall is only showing occasional blocked ICMP (type 3,
      code 1).


      I also cannot locally send a simple mail out from the server. I get
      similar disconnect messages.


      Here is the output to 'postconf -n':

      biff = no
      command_directory = /usr/sbin
      config_directory = /etc/postfix
      daemon_directory = /usr/libexec/postfix
      debug_peer_level = 2
      empty_address_recipient = MAILER-DAEMON
      html_directory = no
      local_transport = local
      mail_owner = postfix
      mailbox_size_limit = 1000000000
      mailq_path = /usr/bin/mailq
      manpage_directory = /usr/local/man
      message_size_limit = 80000000
      mydestination = $myhostname, localhost.$mydomain, localhost
      mydomain = domain.com
      myhostname = host.domain.com
      mynetworks_style = subnet
      myorigin = $myhostname
      newaliases_path = /usr/bin/newaliases
      notify_classes = protocol,resource,software
      queue_directory = /var/spool/postfix
      queue_minfree = 120000000
      readme_directory = no
      relay_domains = hash:/etc/postfix/relay_domains
      sample_directory = /etc/postfix
      sendmail_path = /usr/sbin/sendmail
      setgid_group = postdrop
      smtpd_banner = $myhostname ESMTP
      smtpd_recipient_restrictions = permit_mynetworks,
      reject_unauth_destination,
      reject_non_fqdn_recipient,
      reject_rbl_client cbl.abuseat.org,
      reject_rbl_client bl.spamcop.net,
      reject_rbl_client sbl.spamhaus.org
      transport_maps = hash:/etc/postfix/transport
      unknown_local_recipient_reject_code = 550


      I tried restarting the server ('postfix relaod') and amavisd-new with
      no luck.

      I am accepting mail from other domnains using relay-domains, checking
      for spam/virus, and then redirecting with transport.

      The queue is quite full:

      # postqueue -p | grep MAILER | wc -l
      176


      I am running all software in chroot environment (/var/amavisd).


      Here is master.cf (without comments):


      smtp inet n - n - 5 smtpd
      -o content_filter=smtp-amavis:[127.0.0.1]:10024
      smtp-amavis unix - - n - 2 smtp
      -o smtp_data_done_timeout=1200
      -o disable_dns_lookups=yes
      127.0.0.1:10025 inet n - n - - smtpd
      -o local_recipient_maps=
      -o smtpd_restriction_classes=
      -o smtpd_client_restrictions=
      -o smtpd_helo_restrictions=
      -o smtpd_sender_restrictions=
      -o smtpd_recipient_restrictions=permit_mynetworks,reject
      -o strict_rfc821_envelopes=yes


      pickup fifo n - y 60 1 pickup
      cleanup unix n - y - 0 cleanup
      qmgr fifo n - y 300 1 qmgr
      tlsmgr unix - - y 1000? 1 tlsmgr
      rewrite unix - - y - - trivial-rewrite
      bounce unix - - y - 0 bounce
      defer unix - - y - 0 bounce
      trace unix - - y - 0 bounce
      verify unix - - y - 1 verify
      flush unix n - y 1000? 0 flush
      proxymap unix - - n - - proxymap
      smtp unix - - y - - smtp
      relay unix - - n - - smtp
      -o fallback_relay=
      showq unix n - n - - showq
      error unix - - n - - error
      discard unix - - n - - discard
      local unix - n n - - local
      virtual unix - n n - - virtual
      lmtp unix - - n - - lmtp
      anvil unix - - n - 1 anvil
      scache unix - - n - 1 scache
      maildrop unix - n n - - pipe
      flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d ${recipient}
      old-cyrus unix - n n - - pipe
      flags=R user=cyrus argv=/cyrus/bin/deliver -e -m ${extension} ${user}
      cyrus unix - n n - - pipe
      user=cyrus argv=/cyrus/bin/deliver -e -r ${sender} -m ${extension}
      ${user}
      uucp unix - n n - - pipe
      flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail
      ($recipient)
      ifmail unix - n n - - pipe
      flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
      bsmtp unix - n n - - pipe
      flags=Fq. user=foo argv=/usr/local/sbin/bsmtp -f $sender $nexthop
      $recipient


      Names are resolving fine.

      Thanks in advance to anyone who can help.

      Peter

      __________________________________________________
      Do You Yahoo!?
      Tired of spam? Yahoo! Mail has the best spam protection around
      http://mail.yahoo.com
    • Sandy Drobic
      ... Judging from the client name I wouldn t mind. (^-^) ... Now, that is a bit more serious. ... Not too serious, it should be send within a few minutes once
      Message 2 of 3 , Jun 1, 2006
      • 0 Attachment
        Peter wrote:
        > I am running an anti-spam/virus gateway built with postfix 2.2.5 and
        > amavisd-new 2.3.3 running on OpenBSD 3.8. Everything was working well
        > until several domains had their MX records turned in the server's
        > direction. I am now logging very many disconnections.
        >
        >
        > Jun 1 08:33:54 host postfix/smtpd[4431]: connect from
        > avk84-1-82-243-6-24.fbx.proxad.net[82.243.6.24]
        > Jun 1 08:33:54 host postfix/smtpd[4431]: lost connection after CONNECT
        > from avk84-1-82-243-6-24.fbx.proxad.net[82.243.6.24]
        > Jun 1 08:33:54 host postfix/smtpd[4431]: disconnect from
        > avk84-1-82-243-6-24.fbx.proxad.net[82.243.6.24]

        Judging from the client name I wouldn't mind. (^-^)

        >
        > Why is it disconnecting so quickly?
        >
        >
        > My onboard pf firewall is only showing occasional blocked ICMP (type 3,
        > code 1).
        >
        >
        > I also cannot locally send a simple mail out from the server. I get
        > similar disconnect messages.

        Now, that is a bit more serious.

        >
        > Here is the output to 'postconf -n':
        >
        > biff = no
        > command_directory = /usr/sbin
        > config_directory = /etc/postfix
        > daemon_directory = /usr/libexec/postfix
        > debug_peer_level = 2
        > empty_address_recipient = MAILER-DAEMON
        > html_directory = no
        > local_transport = local
        > mail_owner = postfix
        > mailbox_size_limit = 1000000000
        > mailq_path = /usr/bin/mailq
        > manpage_directory = /usr/local/man
        > message_size_limit = 80000000
        > mydestination = $myhostname, localhost.$mydomain, localhost
        > mydomain = domain.com
        > myhostname = host.domain.com
        > mynetworks_style = subnet
        > myorigin = $myhostname
        > newaliases_path = /usr/bin/newaliases
        > notify_classes = protocol,resource,software
        > queue_directory = /var/spool/postfix
        > queue_minfree = 120000000
        > readme_directory = no
        > relay_domains = hash:/etc/postfix/relay_domains
        > sample_directory = /etc/postfix
        > sendmail_path = /usr/sbin/sendmail
        > setgid_group = postdrop
        > smtpd_banner = $myhostname ESMTP
        > smtpd_recipient_restrictions = permit_mynetworks,
        > reject_unauth_destination,
        > reject_non_fqdn_recipient,
        > reject_rbl_client cbl.abuseat.org,
        > reject_rbl_client bl.spamcop.net,
        > reject_rbl_client sbl.spamhaus.org
        > transport_maps = hash:/etc/postfix/transport
        > unknown_local_recipient_reject_code = 550
        >
        >
        > I tried restarting the server ('postfix relaod') and amavisd-new with
        > no luck.
        >
        > I am accepting mail from other domnains using relay-domains, checking
        > for spam/virus, and then redirecting with transport.
        >
        > The queue is quite full:
        >
        > # postqueue -p | grep MAILER | wc -l
        > 176

        Not too serious, it should be send within a few minutes once you solve
        your problem.

        >
        > I am running all software in chroot environment (/var/amavisd).
        >
        >
        > Here is master.cf (without comments):
        >
        >
        > smtp inet n - n - 5 smtpd

        This is your problem: you only have 5 concurrent smtpd processes. The
        default is 100 for a reason. (^-^)

        Change and issue "reload postfix". Then watch your mail log and the queue.

        Sandy

        > -o content_filter=smtp-amavis:[127.0.0.1]:10024
        > smtp-amavis unix - - n - 2 smtp
        > -o smtp_data_done_timeout=1200
        > -o disable_dns_lookups=yes
        > 127.0.0.1:10025 inet n - n - - smtpd
        > -o local_recipient_maps=
        > -o smtpd_restriction_classes=
        > -o smtpd_client_restrictions=
        > -o smtpd_helo_restrictions=
        > -o smtpd_sender_restrictions=
        > -o smtpd_recipient_restrictions=permit_mynetworks,reject
        > -o strict_rfc821_envelopes=yes
        >
        >
        > pickup fifo n - y 60 1 pickup
        > cleanup unix n - y - 0 cleanup
        > qmgr fifo n - y 300 1 qmgr
        > tlsmgr unix - - y 1000? 1 tlsmgr
        > rewrite unix - - y - - trivial-rewrite
        > bounce unix - - y - 0 bounce
        > defer unix - - y - 0 bounce
        > trace unix - - y - 0 bounce
        > verify unix - - y - 1 verify
        > flush unix n - y 1000? 0 flush
        > proxymap unix - - n - - proxymap
        > smtp unix - - y - - smtp
        > relay unix - - n - - smtp
        > -o fallback_relay=
        > showq unix n - n - - showq
        > error unix - - n - - error
        > discard unix - - n - - discard
        > local unix - n n - - local
        > virtual unix - n n - - virtual
        > lmtp unix - - n - - lmtp
        > anvil unix - - n - 1 anvil
        > scache unix - - n - 1 scache
        > maildrop unix - n n - - pipe
        > flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d ${recipient}
        > old-cyrus unix - n n - - pipe
        > flags=R user=cyrus argv=/cyrus/bin/deliver -e -m ${extension} ${user}
        > cyrus unix - n n - - pipe
        > user=cyrus argv=/cyrus/bin/deliver -e -r ${sender} -m ${extension}
        > ${user}
        > uucp unix - n n - - pipe
        > flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail
        > ($recipient)
        > ifmail unix - n n - - pipe
        > flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
        > bsmtp unix - n n - - pipe
        > flags=Fq. user=foo argv=/usr/local/sbin/bsmtp -f $sender $nexthop
        > $recipient
        >
        >
        > Names are resolving fine.
        >
        > Thanks in advance to anyone who can help.
        >
        > Peter
        >
        > __________________________________________________
        > Do You Yahoo!?
        > Tired of spam? Yahoo! Mail has the best spam protection around
        > http://mail.yahoo.com
        >
      • Peter
        ... This helped. Thank you. __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around
        Message 3 of 3 , Jun 1, 2006
        • 0 Attachment
          --- Sandy Drobic <postfix-users@...> wrote:

          > Peter wrote:
          > > I am running an anti-spam/virus gateway built with postfix 2.2.5
          > and
          > > amavisd-new 2.3.3 running on OpenBSD 3.8. Everything was working
          > well
          > > until several domains had their MX records turned in the server's
          > > direction. I am now logging very many disconnections.


          > > Here is master.cf (without comments):
          > >
          > >
          > > smtp inet n - n - 5 smtpd
          >
          > This is your problem: you only have 5 concurrent smtpd processes. The
          >
          > default is 100 for a reason. (^-^)
          >
          > Change and issue "reload postfix". Then watch your mail log and the
          > queue.

          This helped. Thank you.

          __________________________________________________
          Do You Yahoo!?
          Tired of spam? Yahoo! Mail has the best spam protection around
          http://mail.yahoo.com
        Your message has been successfully submitted and would be delivered to recipients shortly.