Loading ...
Sorry, an error occurred while loading the content.

Re: too many disconnects -- help

Expand Messages
  • Sandy Drobic
    ... Judging from the client name I wouldn t mind. (^-^) ... Now, that is a bit more serious. ... Not too serious, it should be send within a few minutes once
    Message 1 of 3 , Jun 1 9:03 AM
    • 0 Attachment
      Peter wrote:
      > I am running an anti-spam/virus gateway built with postfix 2.2.5 and
      > amavisd-new 2.3.3 running on OpenBSD 3.8. Everything was working well
      > until several domains had their MX records turned in the server's
      > direction. I am now logging very many disconnections.
      >
      >
      > Jun 1 08:33:54 host postfix/smtpd[4431]: connect from
      > avk84-1-82-243-6-24.fbx.proxad.net[82.243.6.24]
      > Jun 1 08:33:54 host postfix/smtpd[4431]: lost connection after CONNECT
      > from avk84-1-82-243-6-24.fbx.proxad.net[82.243.6.24]
      > Jun 1 08:33:54 host postfix/smtpd[4431]: disconnect from
      > avk84-1-82-243-6-24.fbx.proxad.net[82.243.6.24]

      Judging from the client name I wouldn't mind. (^-^)

      >
      > Why is it disconnecting so quickly?
      >
      >
      > My onboard pf firewall is only showing occasional blocked ICMP (type 3,
      > code 1).
      >
      >
      > I also cannot locally send a simple mail out from the server. I get
      > similar disconnect messages.

      Now, that is a bit more serious.

      >
      > Here is the output to 'postconf -n':
      >
      > biff = no
      > command_directory = /usr/sbin
      > config_directory = /etc/postfix
      > daemon_directory = /usr/libexec/postfix
      > debug_peer_level = 2
      > empty_address_recipient = MAILER-DAEMON
      > html_directory = no
      > local_transport = local
      > mail_owner = postfix
      > mailbox_size_limit = 1000000000
      > mailq_path = /usr/bin/mailq
      > manpage_directory = /usr/local/man
      > message_size_limit = 80000000
      > mydestination = $myhostname, localhost.$mydomain, localhost
      > mydomain = domain.com
      > myhostname = host.domain.com
      > mynetworks_style = subnet
      > myorigin = $myhostname
      > newaliases_path = /usr/bin/newaliases
      > notify_classes = protocol,resource,software
      > queue_directory = /var/spool/postfix
      > queue_minfree = 120000000
      > readme_directory = no
      > relay_domains = hash:/etc/postfix/relay_domains
      > sample_directory = /etc/postfix
      > sendmail_path = /usr/sbin/sendmail
      > setgid_group = postdrop
      > smtpd_banner = $myhostname ESMTP
      > smtpd_recipient_restrictions = permit_mynetworks,
      > reject_unauth_destination,
      > reject_non_fqdn_recipient,
      > reject_rbl_client cbl.abuseat.org,
      > reject_rbl_client bl.spamcop.net,
      > reject_rbl_client sbl.spamhaus.org
      > transport_maps = hash:/etc/postfix/transport
      > unknown_local_recipient_reject_code = 550
      >
      >
      > I tried restarting the server ('postfix relaod') and amavisd-new with
      > no luck.
      >
      > I am accepting mail from other domnains using relay-domains, checking
      > for spam/virus, and then redirecting with transport.
      >
      > The queue is quite full:
      >
      > # postqueue -p | grep MAILER | wc -l
      > 176

      Not too serious, it should be send within a few minutes once you solve
      your problem.

      >
      > I am running all software in chroot environment (/var/amavisd).
      >
      >
      > Here is master.cf (without comments):
      >
      >
      > smtp inet n - n - 5 smtpd

      This is your problem: you only have 5 concurrent smtpd processes. The
      default is 100 for a reason. (^-^)

      Change and issue "reload postfix". Then watch your mail log and the queue.

      Sandy

      > -o content_filter=smtp-amavis:[127.0.0.1]:10024
      > smtp-amavis unix - - n - 2 smtp
      > -o smtp_data_done_timeout=1200
      > -o disable_dns_lookups=yes
      > 127.0.0.1:10025 inet n - n - - smtpd
      > -o local_recipient_maps=
      > -o smtpd_restriction_classes=
      > -o smtpd_client_restrictions=
      > -o smtpd_helo_restrictions=
      > -o smtpd_sender_restrictions=
      > -o smtpd_recipient_restrictions=permit_mynetworks,reject
      > -o strict_rfc821_envelopes=yes
      >
      >
      > pickup fifo n - y 60 1 pickup
      > cleanup unix n - y - 0 cleanup
      > qmgr fifo n - y 300 1 qmgr
      > tlsmgr unix - - y 1000? 1 tlsmgr
      > rewrite unix - - y - - trivial-rewrite
      > bounce unix - - y - 0 bounce
      > defer unix - - y - 0 bounce
      > trace unix - - y - 0 bounce
      > verify unix - - y - 1 verify
      > flush unix n - y 1000? 0 flush
      > proxymap unix - - n - - proxymap
      > smtp unix - - y - - smtp
      > relay unix - - n - - smtp
      > -o fallback_relay=
      > showq unix n - n - - showq
      > error unix - - n - - error
      > discard unix - - n - - discard
      > local unix - n n - - local
      > virtual unix - n n - - virtual
      > lmtp unix - - n - - lmtp
      > anvil unix - - n - 1 anvil
      > scache unix - - n - 1 scache
      > maildrop unix - n n - - pipe
      > flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d ${recipient}
      > old-cyrus unix - n n - - pipe
      > flags=R user=cyrus argv=/cyrus/bin/deliver -e -m ${extension} ${user}
      > cyrus unix - n n - - pipe
      > user=cyrus argv=/cyrus/bin/deliver -e -r ${sender} -m ${extension}
      > ${user}
      > uucp unix - n n - - pipe
      > flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail
      > ($recipient)
      > ifmail unix - n n - - pipe
      > flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
      > bsmtp unix - n n - - pipe
      > flags=Fq. user=foo argv=/usr/local/sbin/bsmtp -f $sender $nexthop
      > $recipient
      >
      >
      > Names are resolving fine.
      >
      > Thanks in advance to anyone who can help.
      >
      > Peter
      >
      > __________________________________________________
      > Do You Yahoo!?
      > Tired of spam? Yahoo! Mail has the best spam protection around
      > http://mail.yahoo.com
      >
    • Peter
      ... This helped. Thank you. __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around
      Message 2 of 3 , Jun 1 8:11 PM
      • 0 Attachment
        --- Sandy Drobic <postfix-users@...> wrote:

        > Peter wrote:
        > > I am running an anti-spam/virus gateway built with postfix 2.2.5
        > and
        > > amavisd-new 2.3.3 running on OpenBSD 3.8. Everything was working
        > well
        > > until several domains had their MX records turned in the server's
        > > direction. I am now logging very many disconnections.


        > > Here is master.cf (without comments):
        > >
        > >
        > > smtp inet n - n - 5 smtpd
        >
        > This is your problem: you only have 5 concurrent smtpd processes. The
        >
        > default is 100 for a reason. (^-^)
        >
        > Change and issue "reload postfix". Then watch your mail log and the
        > queue.

        This helped. Thank you.

        __________________________________________________
        Do You Yahoo!?
        Tired of spam? Yahoo! Mail has the best spam protection around
        http://mail.yahoo.com
      Your message has been successfully submitted and would be delivered to recipients shortly.