Loading ...
Sorry, an error occurred while loading the content.

postscreen errors

Expand Messages
  • Jeetu
    Hi, I m trying to use postscreen using postfix-2.8.4 on rhel-4 64 bit server My postconf is postscreen_access_list = permit_mynetworks,
    Message 1 of 7 , Aug 2, 2011
    • 0 Attachment
      Hi,

      I'm trying to use postscreen using postfix-2.8.4 on rhel-4 64 bit server

      My postconf is
      postscreen_access_list =
      permit_mynetworks,
      hash:/etc/postfix/whitelisted_clients,
      hash:/etc/postfix/blacklisted_clients,

      postscreen_dnsbl_sites = zen.spamhaus.org dnsbl.sorbs.net
      postscreen_dnsbl_reply_map = texthash:/etc/postfix/dnsbl_reply
      postscreen_dnsbl_action = enforce
      postscreen_greet_action = enforce

      Master.cf is
      smtp inet n - n - 1 postscreen
      tlsproxy unix - - n - 0 tlsproxy
      dnsblog unix - - n - 0 dnsblog
      smtp unix - - n - 1 postscreen
      ..
      ...

      The moment i start postfix i get an error

      Aug 2 13:29:32 in-1 postfix/postscreen[8846]: CONNECT from [localhost]:???
      Aug 2 13:29:32 in-1 postfix/postscreen[8846]: PASS OLD [localhost]:???
      Aug 2 13:29:32 in-1 postfix/postscreen[8846]: CONNECT from [localhost]:???
      Aug 2 13:29:32 in-1 postfix/postscreen[8846]: PASS OLD [localhost]:???
      Aug 2 13:29:32 in-1 postfix/smtpd[8847]: connect from localhost[127.0.0.1]
      Aug 2 13:29:32 in-1 postfix/smtpd[8848]: connect from localhost[127.0.0.1]
      Aug 2 13:29:34 in-1 postfix/postscreen[8851]: fatal:
      btree:/var/lib/postfix/postscreen_cache: unable to get exclusive lock:
      Resource temporarily unavailable
      Aug 2 13:29:35 in-1 postfix/master[8837]: warning: process
      /usr/libexec/postfix/postscreen pid 8851 exit status 1
      Aug 2 13:29:35 in-1 postfix/master[8837]: warning:
      /usr/libexec/postfix/postscreen: bad command startup -- throttling

      what could be wrong ?

      --
      -Jeetu
    • Driessen
      On Behalf Of Jeetu ... And where is smtpd pass - - n - - smtpd Mit freundlichen Grüßen Drießen -- Software & Computer Uwe
      Message 2 of 7 , Aug 2, 2011
      • 0 Attachment
        On Behalf Of Jeetu
        > Hi,
        >
        > I'm trying to use postscreen using postfix-2.8.4 on rhel-4 64 bit server
        >
        > My postconf is
        > postscreen_access_list =
        > permit_mynetworks,
        > hash:/etc/postfix/whitelisted_clients,
        > hash:/etc/postfix/blacklisted_clients,
        >
        > postscreen_dnsbl_sites = zen.spamhaus.org dnsbl.sorbs.net
        > postscreen_dnsbl_reply_map = texthash:/etc/postfix/dnsbl_reply
        > postscreen_dnsbl_action = enforce
        > postscreen_greet_action = enforce
        >
        > Master.cf is
        > smtp inet n - n - 1 postscreen
        > tlsproxy unix - - n - 0 tlsproxy
        > dnsblog unix - - n - 0 dnsblog
        > smtp unix - - n - 1 postscreen
        > ..
        > ...
        >

        And where is

        smtpd pass - - n - - smtpd


        Mit freundlichen Grüßen

        Drießen

        --
        Software & Computer
        Uwe Drießen
        Lembergstraße 33
        67824 Feilbingert
        Tel.: +49 06708 / 660045 Fax: +49 06708 / 661397
      • Jeetu
        ... oops forgot to mention it...its there in master.cf # commenting out for postscreen: #smtp inet n - n - 250 smtpd smtp
        Message 3 of 7 , Aug 2, 2011
        • 0 Attachment
          On 02/08/11 3:48 PM, Driessen wrote:
          > And where is
          >
          > smtpd pass - - n - - smtpd

          oops forgot to mention it...its there in master.cf

          # commenting out for postscreen:
          #smtp inet n - n - 250 smtpd
          smtp inet n - n - 1 postscreen
          tlsproxy unix - - n - 0 tlsproxy
          dnsblog unix - - n - 0 dnsblog
          # and add a smptd pass line:
          smtpd pass - - n - - smtpd
          smtp unix - - n - 1 postscreen
          ...
          ..

          --
          -Jeetu
        • Driessen
          ... ^^^^^^^^^^ this line is twice, why? ... Mit freundlichen Grüßen Drießen -- Software & Computer Uwe Drießen Lembergstraße 33 67824 Feilbingert Tel.:
          Message 4 of 7 , Aug 2, 2011
          • 0 Attachment
            > -----Original Message-----
            > From: owner-postfix-users@... [mailto:owner-postfix-
            > users@...] On Behalf Of Jeetu
            > Sent: Tuesday, August 02, 2011 12:24 PM
            > To: Driessen
            > Cc: postfix-users@...
            > Subject: Re: postscreen errors
            >
            > On 02/08/11 3:48 PM, Driessen wrote:
            > > And where is
            > >
            > > smtpd pass - - n - - smtpd
            >
            > oops forgot to mention it...its there in master.cf
            >
            > # commenting out for postscreen:
            > #smtp inet n - n - 250 smtpd
            > smtp inet n - n - 1 postscreen
            ^^^^^^^^^^^^^^^^


            > tlsproxy unix - - n - 0 tlsproxy
            > dnsblog unix - - n - 0 dnsblog
            > # and add a smptd pass line:
            > smtpd pass - - n - - smtpd
            > smtp unix - - n - 1 postscreen
            ^^^^^^^^^^
            this line is twice, why?

            > ...
            > ..
            >
            > --
            > -Jeetu


            Mit freundlichen Grüßen

            Drießen

            --
            Software & Computer
            Uwe Drießen
            Lembergstraße 33
            67824 Feilbingert
            Tel.: +49 06708 / 660045 Fax: +49 06708 / 661397
          • Jeetu
            ... OK i found the issue. i shudnt have added postscreen for smtp unix socket. Thanks for the help Driessen. -- -Jeetu
            Message 5 of 7 , Aug 2, 2011
            • 0 Attachment
              On 02/08/11 4:06 PM, Driessen wrote:
              >> smtp inet n - n - 1 postscreen
              > ^^^^^^^^^^^^^^^^
              >> > smtp unix - - n - 1 postscreen
              > ^^^^^^^^^^
              > this line is twice, why?
              >

              OK i found the issue.
              i shudnt have added postscreen for smtp unix socket.
              Thanks for the help Driessen.

              --
              -Jeetu
            • Benny Pedersen
              ... dual stacked with ipv4 and ipv6 ?, this was my problem as well if so, postscreen is only working if there is one smtpd listner using it, so i disabled it
              Message 6 of 7 , Aug 2, 2011
              • 0 Attachment
                On Tue, 02 Aug 2011 15:24:24 +0530, Jeetu wrote:

                > Aug 2 13:29:32 in-1 postfix/postscreen[8846]: CONNECT from
                > [localhost]:???
                > Aug 2 13:29:32 in-1 postfix/postscreen[8846]: PASS OLD
                > [localhost]:???
                > Aug 2 13:29:32 in-1 postfix/postscreen[8846]: CONNECT from
                > [localhost]:???
                > Aug 2 13:29:32 in-1 postfix/postscreen[8846]: PASS OLD
                > [localhost]:???
                > Aug 2 13:29:32 in-1 postfix/smtpd[8847]: connect from
                > localhost[127.0.0.1]
                > Aug 2 13:29:32 in-1 postfix/smtpd[8848]: connect from
                > localhost[127.0.0.1]
                > Aug 2 13:29:34 in-1 postfix/postscreen[8851]: fatal:
                > btree:/var/lib/postfix/postscreen_cache: unable to get exclusive
                > lock:
                > Resource temporarily unavailable
                > Aug 2 13:29:35 in-1 postfix/master[8837]: warning: process
                > /usr/libexec/postfix/postscreen pid 8851 exit status 1
                > Aug 2 13:29:35 in-1 postfix/master[8837]: warning:
                > /usr/libexec/postfix/postscreen: bad command startup -- throttling
                >
                > what could be wrong ?


                dual stacked with ipv4 and ipv6 ?, this was my problem as well if so,
                postscreen is only working if there is one smtpd listner using it, so i
                disabled it for now

                if there is a master.cf fix for this please show it, after thinking
                more about it have ipv6 and ipv4 db seperately would solve it ?
              • Wietse Venema
                ... .. ... You MUST NOT run more than one postscreen process per postscreen cache file. This file cannot be shared. To turn on postscreen for SMTP mail, see
                Message 7 of 7 , Aug 2, 2011
                • 0 Attachment
                  Jeetu:
                  > Master.cf is
                  > smtp inet n - n - 1 postscreen
                  ..
                  > smtp unix - - n - 1 postscreen
                  ....
                  > Aug 2 13:29:34 in-1 postfix/postscreen[8851]: fatal:
                  > btree:/var/lib/postfix/postscreen_cache: unable to get exclusive lock:
                  > Resource temporarily unavailable

                  You MUST NOT run more than one postscreen process per
                  postscreen cache file. This file cannot be shared.

                  To turn on postscreen for SMTP mail, see the configuration instructions
                  in http://www.postfix.org/POSTSCREEN_README.html

                  Wietse
                Your message has been successfully submitted and would be delivered to recipients shortly.