Trouble with postfix

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
13 messages Options
Reply | Threaded
Open this post in threaded view
|

Trouble with postfix

Adrian Stoica-2
I have a problem :
I use debian 8 x32 , assp 2.4.8 build 16005 , postfix 2.11.3 (default)

internet->assp(lanip)->postfix(localhost)->internal email server
1) I observed that a few mails , are logged in assp as ok and delivered,
but in the postfix i have the error "lost connection after DATA".
If i resend the mail from assp then it gets delivered. (i have set assp
to keep all mail)
I was confident in assp logs , but after one colleague tell me that the
mail is not in his inbox i start to look behind assp logs and find that
he was right.
At the end of mail is an example log.

2) After a lot of modifying and testing , now i have a big error :
info: send '250-STARTTLS' - injected for 127.0.0.1
Jan-13-16 17:40:52 [Worker_1] x.x.x.x info: got STARTTLS request from
y.y.y.y
Jan-13-16 17:40:52 [Worker_1] y.y.y.y error: Couldn't upgrade to TLS for
client y.y.y.y: SSL accept attempt failed error:1408F10B:SSL routines:
SSL3_GET_RECORD:wrong version number
Jan-13-16 17:40:52 [Worker_1] y.y.y.y info: no (more) data readable from
y.y.y.y (connection closed by peer) - Connection reset by peer - last
command was 'STARTTLS'
IO::Socket::SSL     2.002
Net::SSLeay     1.65

Please advise me what to do, i'm stuck.
Thank you.

Example of such email that is not received in assp :
Jan-11-16 08:42:41 [Worker_2] Info: try to connect to server at 127.0.0.1:25
Jan-11-16 08:42:41 [Worker_2] Info: connected to server at 127.0.0.1:25
Jan-11-16 08:42:41 [Worker_2] Connected: session:8D5879E8
xx.xx.xx.xx:60065 > LANIP:25 > 127.0.0.1:53363 > 127.0.0.1:25 , 1096-1097
Jan-11-16 08:42:41 [Worker_2] xx.xx.xx.xx info: send '250-STARTTLS' -
injected for 127.0.0.1
Jan-11-16 08:42:41 [Worker_2] xx.xx.xx.xx info: injected STARTTLS
request to 127.0.0.1
Jan-11-16 08:42:41 [Worker_2] [TLS-in] info: started TLS-SSL session for
server 127.0.0.1
Jan-11-16 08:42:41 [Worker_2] [TLS-in] info: sent EHLO again to 127.0.0.1
Jan-11-16 08:42:41 [Worker_2] [TLS-in] info: TLSQUEUE processed and
cleared for 127.0.0.1:25
Jan-11-16 08:42:41 [Worker_2] Info: VRFY added someemail@address to LDAPlist
Jan-11-16 08:42:41 m1-94561-07013 [Worker_2] [TLS-out] xx.xx.xx.xx
<[hidden email]> to: someemail@address recipient accepted:
someemail@address
Jan-11-16 08:42:41 m1-94561-07013 [Worker_2] [TLS-out] xx.xx.xx.xx
<[hidden email]> to: someemail@address DKIM-Signature found
Jan-11-16 08:42:41 m1-94561-07013 [Worker_2] [TLS-out] xx.xx.xx.xx
<[hidden email]> to: someemail@address Message-ID found:
[hidden email]
Jan-11-16 08:42:42 [Worker_2] Info: got valid DNS NON-DATA answer
'NXDOMAIN' from nameserver 127.0.0.1 ID 28386
Jan-11-16 08:42:42 [Worker_2] Info: got valid DNS NON-DATA answer
'NOERROR' from nameserver 127.0.0.1 ID 11086
Jan-11-16 08:42:42 m1-94561-07013 [Worker_2] [TLS-out] xx.xx.xx.xx
<[hidden email]> to: someemail@address [scoring] DKIM
signature verified-OK - header-passed - sender policy is: neutral -
author policy is: neutral
Jan-11-16 08:42:42 [Worker_2] Info: got valid DNS NON-DATA answer
'NXDOMAIN' from nameserver 127.0.0.1 ID 62909
Jan-11-16 08:42:42 m1-94561-07013 [Worker_2] [TLS-out] xx.xx.xx.xx
<[hidden email]> to: someemail@address Message-Score:
added -10 (spfpValencePB) for SPF pass, total score for this message is
now -10
Jan-11-16 08:42:42 m1-94561-07013 [Worker_2] [TLS-out] xx.xx.xx.xx
<[hidden email]> to: someemail@address [monitoring]
SenderBase -- Blocked IP-Country RO (NEXT HOST SRL)
Jan-11-16 08:42:42 m1-94561-07013 [Worker_2] [TLS-out] xx.xx.xx.xx
<[hidden email]> to: someemail@address [scoring]
(URIBLcache: neutral, perfectransaction.biz listed in multi.surbl.org
Jan-11-16 08:42:42 m1-94561-07013 [Worker_2] [TLS-out] xx.xx.xx.xx
<[hidden email]> to: someemail@address Message-Score:
added 25 for URIBLcache: neutral, perfectransaction.biz listed in
multi.surbl.org, total score for this message is now 15
Jan-11-16 08:42:42 m1-94561-07013 [Worker_2] [TLS-out] xx.xx.xx.xx
<[hidden email]> to: someemail@address info: received all
data - all data moved to send queue (5)
Jan-11-16 08:42:42 m1-94561-07013 [Worker_2] [TLS-out] [MessageOK]
xx.xx.xx.xx <[hidden email]> to: someemail@address message
ok [1 posta in arrivo un messaggio] ->
/srv/assp/okmail/1_posta_in_arrivo_un_messaggio--11549.eml
Jan-11-16 08:42:42 m1-94561-07013 [Worker_2] [TLS-out] [MessageOK]
xx.xx.xx.xx <[hidden email]> to: someemail@address info:
all DATA written to server - sent [CR][LF].[CR][LF]

and in the postfix:
Jan 11 08:42:41 antispam postfix/smtpd[14627]: connect from
localhost[127.0.0.1]
Jan 11 08:42:41 antispam postfix/smtpd[14627]: CF3CF24CC3:
client=localhost[127.0.0.1]
Jan 11 08:42:42 antispam postfix/cleanup[14765]: CF3CF24CC3:
message-id=<[hidden email]>
after 3 min - postfix timeout:
Jan 11 08:45:51 antispam postfix/smtpd[14627]: lost connection after
DATA (5305 bytes) from localhost[127.0.0.1]
Jan 11 08:45:51 antispam postfix/smtpd[14627]: disconnect from
localhost[127.0.0.1]

------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user
Reply | Threaded
Open this post in threaded view
|

Re: Trouble with postfix

Thomas Eckardt/eck
>assp 2.4.8 build 16005

This is a dev version - please post the assp-test list.
The issue may solved in the latest dev build 16013.

I remember a similar (possibly the same) problem with
postfix+amavis+dkimmilter - the solution was to include 127.0.0.1 in to
'noTLSIP'.
Does it make sense to encrypt  and decrypt data sent within the localhost?

Thomas



DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally
privileged and protected in law and are intended solely for the use of the

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no
known virus in this email!
*******************************************************


------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user
Reply | Threaded
Open this post in threaded view
|

Re: Trouble with postfix

Adrian Stoica-2
In reply to this post by Adrian Stoica-2
Hello

1)
I had testing all the stable versions (2.4.5 15334
<http://sourceforge.net/projects/assp/files/ASSP%20V2%20multithreading/2.4.5%2015334/>,2.4.7 16004
<http://sourceforge.net/projects/assp/files/ASSP%20V2%20multithreading/2.4.7%2016004/>) and the dev versions (2.4.7 16005
<http://sourceforge.net/projects/assp/files/ASSP%20V2%20multithreading/2.4.7%2016004/>,2.4.7 16009)
<http://sourceforge.net/projects/assp/files/ASSP%20V2%20multithreading/2.4.7%2016004/>  and my example was with the dev running , but the behavior is the same.
I have seen that some mails time out , and if i set the sending ip in noprocessing ip , then the mail gets delivered ok.
Strange is that 99.9% of mails getting in are ok.

2)
I have tryied  to set 127.0.0.1 in noTLSIP , but then assp cannot connect , perhaps because is set to 'dotls' , and assp does not know to handle incoming tls and forward as non tls.


I have set a debug for one of this mails i have this in debug log:
(i have changed the real addresses)

Jan-18-16 11:09:21 Worker_1
Jan-18-16 11:09:21 client filenumber = 803
Jan-18-16 11:09:21 server filenumber = 804
Jan-18-16 11:09:21 client  = IO::Socket::INET=GLOB(0xb0075194)
Jan-18-16 11:09:21 client IP  = 216.27.22.166
Jan-18-16 11:09:21 server  = IO::Socket::INET=GLOB(0xdf85950)
Jan-18-16 11:09:21 server unpoll from main sub main::ThreadMain 166
Jan-18-16 11:09:21 client unpoll from main sub main::ThreadMain 166
read from server = 220 mail.mydomain.com ESMTP Postfix (Debian/GNU)
Jan-18-16 11:09:21 client wrote = 220 mail.mydomain.com ESMTP Service ready
Jan-18-16 11:09:21 client unpoll from main sub main::ThreadMain 166
read from client = EHLO mail57.ecasend.com
Jan-18-16 11:09:21 server wrote = EHLO mail57.ecasend.com
Jan-18-16 11:09:21 server unpoll from main sub main::ThreadMain 166
read from server = 250-mail.mydomain.com
250-PIPELINING
250-SIZE 20480000
250-VRFY
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
Jan-18-16 11:09:21 client wrote = 250-mail.mydomain.com
250-STARTTLS
250-SIZE 20480000
250-ENHANCEDSTATUSCODES
250 DSN
Jan-18-16 11:09:21 client unpoll from main sub main::ThreadMain 166
read from client = MAIL FROM:<[hidden email]>
Jan-18-16 11:09:22 server unpoll from main sub main::NoLoopSyswrite 94
read from server = 220 2.0.0 Ready to start TLS
Jan-18-16 11:09:22 server unpoll from main sub main::replyTLS 19
Jan-18-16 11:09:22 server unpoll from main sub main::replyTLS 20
Jan-18-16 11:09:22 server unpoll from main sub main::NoLoopSyswrite 94
Jan-18-16 11:09:22 server unpoll from main sub main::ThreadMain 166
read from server = 250-mail.mydomain.com
250-PIPELINING
250-SIZE 20480000
250-VRFY
250-ETRN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
Jan-18-16 11:09:22 server wrote = MAIL FROM:<[hidden email]>
Jan-18-16 11:09:22 server unpoll from main sub main::ThreadMain 166
read from server = 250 2.1.0 Ok
Jan-18-16 11:09:23 client wrote = 250 2.1.0 Ok
Jan-18-16 11:09:23 client unpoll from main sub main::ThreadMain 166
read from client = RCPT TO:<xyz.domain.com>
Jan-18-16 11:09:24 server wrote = RCPT TO:<xyz.domain.com>
Jan-18-16 11:09:24 server unpoll from main sub main::ThreadMain 166
read from server = 250 2.1.5 Ok
Jan-18-16 11:09:24 client wrote = 250 2.1.5 Ok
Jan-18-16 11:09:24 client unpoll from main sub main::ThreadMain 166
read from client = DATA
Jan-18-16 11:09:24 server wrote = DATA
Jan-18-16 11:09:24 server unpoll from main sub main::ThreadMain 166
read from server = 354 End data with <CR><LF>.<CR><LF>
Jan-18-16 11:09:24 client wrote = 354 End data with <CR><LF>.<CR><LF>
Jan-18-16 11:09:24 client unpoll from main sub main::ThreadMain 166
read from client = DKIM-Signature: .....

etc etc etc- the mail is long and ok, then end with:

</address>
..
<img src="http://click.skem1.com/open?9l1fy--18czkrh2" width="0" height="0" alt="">
------=_Part_1766774214.1453107600669--
.
Jan-18-16 11:09:27 server unpoll from main sub main::ThreadMain 166
Jan-18-16 11:12:35 client Timeout after 180 secs
Jan-18-16 11:12:35 client was readable
Jan-18-16 11:12:35 client was not writable


------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user
Reply | Threaded
Open this post in threaded view
|

Re: Trouble with postfix

Thomas Eckardt/eck
>2)
>I have tryied  to set 127.0.0.1 in noTLSIP , but then assp cannot connect
, perhaps because is set to 'dotls' , and assp does not know to >handle
incoming tls and forward as non tls.

This is not true.

If you set 127.0.0.1 in noTLSIP, all connection from and to 127.0.0.1 will
skip TLS - all other connections (in and out) will do TLS.

Thomas





Von:    Adrian Stoica <[hidden email]>
An:     [hidden email]
Datum:  18.01.2016 11:03
Betreff:        Re: [Assp-user] Trouble with postfix



Hello

1)
I had testing all the stable versions (2.4.5 15334
<
http://sourceforge.net/projects/assp/files/ASSP%20V2%20multithreading/2.4.5%2015334/
>,2.4.7 16004
<
http://sourceforge.net/projects/assp/files/ASSP%20V2%20multithreading/2.4.7%2016004/
>) and the dev versions (2.4.7 16005
<
http://sourceforge.net/projects/assp/files/ASSP%20V2%20multithreading/2.4.7%2016004/
>,2.4.7 16009)
<
http://sourceforge.net/projects/assp/files/ASSP%20V2%20multithreading/2.4.7%2016004/
>  and my example was with the dev running , but the behavior is the same.
I have seen that some mails time out , and if i set the sending ip in
noprocessing ip , then the mail gets delivered ok.
Strange is that 99.9% of mails getting in are ok.

2)
I have tryied  to set 127.0.0.1 in noTLSIP , but then assp cannot connect
, perhaps because is set to 'dotls' , and assp does not know to handle
incoming tls and forward as non tls.


I have set a debug for one of this mails i have this in debug log:
(i have changed the real addresses)

Jan-18-16 11:09:21 Worker_1
Jan-18-16 11:09:21 client filenumber = 803
Jan-18-16 11:09:21 server filenumber = 804
Jan-18-16 11:09:21 client  = IO::Socket::INET=GLOB(0xb0075194)
Jan-18-16 11:09:21 client IP  = 216.27.22.166
Jan-18-16 11:09:21 server  = IO::Socket::INET=GLOB(0xdf85950)
Jan-18-16 11:09:21 server unpoll from main sub main::ThreadMain 166
Jan-18-16 11:09:21 client unpoll from main sub main::ThreadMain 166
read from server = 220 mail.mydomain.com ESMTP Postfix (Debian/GNU)
Jan-18-16 11:09:21 client wrote = 220 mail.mydomain.com ESMTP Service
ready
Jan-18-16 11:09:21 client unpoll from main sub main::ThreadMain 166
read from client = EHLO mail57.ecasend.com
Jan-18-16 11:09:21 server wrote = EHLO mail57.ecasend.com
Jan-18-16 11:09:21 server unpoll from main sub main::ThreadMain 166
read from server = 250-mail.mydomain.com
250-PIPELINING
250-SIZE 20480000
250-VRFY
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
Jan-18-16 11:09:21 client wrote = 250-mail.mydomain.com
250-STARTTLS
250-SIZE 20480000
250-ENHANCEDSTATUSCODES
250 DSN
Jan-18-16 11:09:21 client unpoll from main sub main::ThreadMain 166
read from client = MAIL FROM:<[hidden email]>
Jan-18-16 11:09:22 server unpoll from main sub main::NoLoopSyswrite 94
read from server = 220 2.0.0 Ready to start TLS
Jan-18-16 11:09:22 server unpoll from main sub main::replyTLS 19
Jan-18-16 11:09:22 server unpoll from main sub main::replyTLS 20
Jan-18-16 11:09:22 server unpoll from main sub main::NoLoopSyswrite 94
Jan-18-16 11:09:22 server unpoll from main sub main::ThreadMain 166
read from server = 250-mail.mydomain.com
250-PIPELINING
250-SIZE 20480000
250-VRFY
250-ETRN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
Jan-18-16 11:09:22 server wrote = MAIL
FROM:<[hidden email]>
Jan-18-16 11:09:22 server unpoll from main sub main::ThreadMain 166
read from server = 250 2.1.0 Ok
Jan-18-16 11:09:23 client wrote = 250 2.1.0 Ok
Jan-18-16 11:09:23 client unpoll from main sub main::ThreadMain 166
read from client = RCPT TO:<xyz.domain.com>
Jan-18-16 11:09:24 server wrote = RCPT TO:<xyz.domain.com>
Jan-18-16 11:09:24 server unpoll from main sub main::ThreadMain 166
read from server = 250 2.1.5 Ok
Jan-18-16 11:09:24 client wrote = 250 2.1.5 Ok
Jan-18-16 11:09:24 client unpoll from main sub main::ThreadMain 166
read from client = DATA
Jan-18-16 11:09:24 server wrote = DATA
Jan-18-16 11:09:24 server unpoll from main sub main::ThreadMain 166
read from server = 354 End data with <CR><LF>.<CR><LF>
Jan-18-16 11:09:24 client wrote = 354 End data with <CR><LF>.<CR><LF>
Jan-18-16 11:09:24 client unpoll from main sub main::ThreadMain 166
read from client = DKIM-Signature: .....

etc etc etc- the mail is long and ok, then end with:

</address>
..
<img src="http://click.skem1.com/open?9l1fy--18czkrh2" width="0"
height="0" alt="">
------=_Part_1766774214.1453107600669--
.
Jan-18-16 11:09:27 server unpoll from main sub main::ThreadMain 166
Jan-18-16 11:12:35 client Timeout after 180 secs
Jan-18-16 11:12:35 client was readable
Jan-18-16 11:12:35 client was not writable

------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user




DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally
privileged and protected in law and are intended solely for the use of the

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no
known virus in this email!
*******************************************************


------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user
Reply | Threaded
Open this post in threaded view
|

Re: Trouble with postfix

Adrian Stoica-2
In reply to this post by Adrian Stoica-2
Hello

You are right, i check the mta end it was forcing the tls.
I had corrected and add in assp 127.0.0.1 in noTLSIP and now it's working as expected.

About my first problem , do you have any ideas (about timeout)?

I saw one discussion of a similar issue has been worn in the past, but
without a solution:
"[Assp-test] Timeout issues
  From: Colin<colin.waring@gm...>  - 2014-07-08 14:50:27"

The only different thing is that in my case the connection between sender and assp is closed ,
but not between assp and my mta.
Right now , after setting notls ,iwill wait until tomorrow to see if the problem reoccurs...

Adrian

>2)
>This is not true.

>If you set 127.0.0.1 in noTLSIP, all connection from and to 127.0.0.1 will
>skip TLS - all other connections (in and out) will do TLS.

>Thomas


------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user
Reply | Threaded
Open this post in threaded view
|

Re: Trouble with postfix

Adrian Stoica-2
In reply to this post by Adrian Stoica-2
Hello
I have again the timeout , it seems that this mail can't go in , it is
resend over and over by google.
The version running is ASSP version 2.4.7(16004)
Any idea ?
Below are the logs from assp and debug connection timeout.

Adrian

a) assp log:
Jan-19-16 17:32:34 [Worker_1] Connected: session:952E8ECC
209.85.223.182:35331 > 192.168.1.200:25 > 127.0.0.1:25
Jan-19-16 17:32:34 [Worker_1] 209.85.223.182 info: got STARTTLS request
from 209.85.223.182
Jan-19-16 17:32:35 m1-17555-12186 [Worker_1] [TLS-in] 209.85.223.182
<oneuser0+caf_=oneuser=[hidden email]> info: found message size
announcement: 131.25 kByte
Jan-19-16 17:32:35 m1-17555-12186 [Worker_1] [TLS-in] 209.85.223.182
<oneuser0+caf_=oneuser=[hidden email]> Message-Score: added -10
(tlsValencePB) for SSL-TLS-connection-OK, total score for this message
is now -10
Jan-19-16 17:32:36 m1-17555-12186 [Worker_1] [TLS-in] 209.85.223.182
<oneuser0+caf_=oneuser=[hidden email]> to: oneuser@mydomain
DKIM-Signature found
Jan-19-16 17:32:36 m1-17555-12186 [Worker_1] [TLS-in] 209.85.223.182
<oneuser0+caf_=oneuser=[hidden email]> to: oneuser@mydomain
Message-Score: added -1 for 209.85.223.0 in griplist (0.24), total score
for this message is now -11
Jan-19-16 17:32:36 m1-17555-12186 [Worker_1] [TLS-in] 209.85.223.182
<oneuser0+caf_=oneuser=[hidden email]> to: oneuser@mydomain
[scoring] DKIM signature verified-OK - header-passed - sender policy is:
neutral - author policy is: neutral
Jan-19-16 17:32:36 m1-17555-12186 [Worker_1] [TLS-in] 209.85.223.182
<oneuser0+caf_=oneuser=[hidden email]> to: oneuser@mydomain
strictspf Regex: strictSPFRe '@gmail.com'
Jan-19-16 17:32:36 m1-17555-12186 [Worker_1] [TLS-in] 209.85.223.182
<oneuser0+caf_=oneuser=[hidden email]> to: oneuser@mydomain
Message-Score: added -10 (spfpValencePB) for SPF pass, total score for
this message is now -21
Jan-19-16 17:35:56 m1-17555-12186 [Worker_1] [TLS-in] 209.85.223.182
<oneuser0+caf_=oneuser=[hidden email]> to: oneuser@mydomain
TLS-Connection idle for 180 secs - timeout
Jan-19-16 17:35:56 m1-17555-12186 [Worker_1] [TLS-in] 209.85.223.182
<oneuser0+caf_=oneuser=[hidden email]> to: oneuser@mydomain [SMTP
Status] 451 Connection timeout, try later
Jan-19-16 17:35:56 m1-17555-12186 [Worker_1] [TLS-in] 209.85.223.182
<oneuser0+caf_=oneuser=[hidden email]> to: oneuser@mydomain info:
PB-IP-Score for '209.85.223.0' is 0, added -10 in this session
Jan-19-16 17:35:56 [Worker_1] Finished message - received DATA size:
131.44 kByte - sent DATA size: 0 Byte
Jan-19-16 17:35:56 [Worker_1] Disconnected: session:952E8ECC
209.85.223.182 - processing time 0 seconds


b) debug:
Jan-19-16 17:32:34 Worker_1
Jan-19-16 17:32:34 client filenumber = 1220
Jan-19-16 17:32:34 server filenumber = 1221
Jan-19-16 17:32:34 client  = IO::Socket::INET=GLOB(0x952e8ecc)
Jan-19-16 17:32:34 client IP  = 209.85.223.182
Jan-19-16 17:32:34 server  = IO::Socket::INET=GLOB(0x944ec354)
Jan-19-16 17:32:34 client unpoll from main sub main::ThreadMain 118
Jan-19-16 17:32:34 server unpoll from main sub main::ThreadMain 118
read from server = 220 mail.mydomain ESMTP Postfix (Debian/GNU)
Jan-19-16 17:32:34 client wrote = 220 mail.mydomain ESMTP Service ready
Jan-19-16 17:32:34 client unpoll from main sub main::ThreadMain 118
read from client = EHLO mail-io0-f182.google.com
Jan-19-16 17:32:34 server wrote = EHLO mail-io0-f182.google.com
Jan-19-16 17:32:34 server unpoll from main sub main::ThreadMain 118
read from server = 250-mail.mydomain
250-PIPELINING
250-SIZE 20480000
250-ETRN
250-ENHANCEDSTATUSCODES
250 DSN
Jan-19-16 17:32:34 client wrote = 250-mail.mydomain
250-STARTTLS
250-SIZE 20480000
250-ENHANCEDSTATUSCODES
250 DSN
Jan-19-16 17:32:34 client unpoll from main sub main::ThreadMain 118
read from client = STARTTLS
Jan-19-16 17:32:34 server wrote = NOOP
Jan-19-16 17:32:34 server unpoll from main sub main::ThreadMain 118
read from server = 250 2.0.0 Ok
Jan-19-16 17:32:34 client unpoll from main sub main::NoLoopSyswrite 106
Jan-19-16 17:32:34 client unpoll from main sub main::reply 269
Jan-19-16 17:32:34 client unpoll from main sub main::reply 270
Jan-19-16 17:32:34 client unpoll from main sub main::ThreadMain 118
Jan-19-16 17:32:34 server unpoll from main sub main::ThreadMain 118
read from client = EHLO mail-io0-f182.google.com
Jan-19-16 17:32:34 server wrote = EHLO mail-io0-f182.google.com
Jan-19-16 17:32:34 server unpoll from main sub main::ThreadMain 118
read from server = 250-mail.mydomain
250-PIPELINING
250-SIZE 20480000
250-ETRN
250-ENHANCEDSTATUSCODES
250 DSN
Jan-19-16 17:32:34 client wrote = 250-mail.mydomain
250-SIZE 20480000
250-ENHANCEDSTATUSCODES
250 DSN
Jan-19-16 17:32:34 client unpoll from main sub main::ThreadMain 118
read from client = MAIL FROM:<oneuser0+caf_=oneuser=[hidden email]>
SIZE=134398
Jan-19-16 17:32:35 server wrote = MAIL
FROM:<oneuser0+caf_=oneuser=[hidden email]> SIZE=134398
Jan-19-16 17:32:35 server unpoll from main sub main::ThreadMain 118
read from server = 250 2.1.0 Ok
Jan-19-16 17:32:35 client wrote = 250 2.1.0 Ok
Jan-19-16 17:32:35 client unpoll from main sub main::ThreadMain 118
read from client = RCPT TO:<oneuser@mydomain>
Jan-19-16 17:32:35 server wrote = RCPT TO:<oneuser@mydomain>
Jan-19-16 17:32:35 server unpoll from main sub main::ThreadMain 118
read from server = 250 2.1.5 Ok
Jan-19-16 17:32:35 client wrote = 250 2.1.5 Ok
Jan-19-16 17:32:35 client unpoll from main sub main::ThreadMain 118
read from client = DATA
Jan-19-16 17:32:35 server wrote = DATA
Jan-19-16 17:32:35 server unpoll from main sub main::ThreadMain 118
read from server = 354 End data with <CR><LF>.<CR><LF>
Jan-19-16 17:32:35 client wrote = 354 End data with <CR><LF>.<CR><LF>
Jan-19-16 17:32:35 client unpoll from main sub main::ThreadMain 118
read from client = Received: by mail-io0-f182.google.com with SMTP id

etc etc .. mail is ok end the end part:

</html>
--_----------=_MCPart_1857316900--
.
read from client =
Jan-19-16 17:35:56 client Timeout after 180 secs
Jan-19-16 17:35:56 client was readable
Jan-19-16 17:35:56 client was not writable

------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user
Reply | Threaded
Open this post in threaded view
|

Re: Trouble with postfix

Thomas Eckardt/eck
In reply to this post by Adrian Stoica-2
The MTA sends no reply to the [CR][LF].[CR][LF].

If you set ConnectionLog to verbose or diagnostic you should see the
following lines in the maillog.txt

......Info: received all data - all data moved to send queue
.....Info: all DATA written to server - sent [CR][LF].[CR][LF]

If both lines are written - assp and the sender are waiting for a reply
from the MTA.

As long as I remember, the problem was related to the spam detection in
postfix (amavis). If SSL/TLS was used on localhost and a spam is detected
by amavis, the reply was missing, which causes the connection to timeout.
If amavis is used, assp connects to the amavis listener, amavis itself
connects to the postfix smtpd internaly.

the postfix debug log level 4 shows something like

Dec 19 14:05:17 web postfix/amavisd/smtpd[20135]: initializing the
server-side TLS engine
....
Dec 19 14:05:17 web postfix/smtpd[20135]: NOQUEUE: filter: RCPT from
assp.....[10.10.10.10]: <..............>: Sender address triggers FILTER
smtp-amavis:[127.0.0.1]:10026; from=<....................>
to=<.........................> proto=SMTP helo=<..................>
.....
Dec 19 14:08:18 web postfix/smtpd[20135]: lost connection after DATA
(24571 bytes) from ..........[10.10.10.10]
Dec 19 14:08:18 web postfix/smtpd[20135]: disconnect from
assp.drdos.info[10.10.10.10]

I've no clue what I can do in assp to get rid of this problem. This is the
second time the problems occurs - and only with postfix. If SSL/TLS was
disabled for the localhost connection, the problem was gone last time.

Thomas





Von:    Adrian Stoica <[hidden email]>
An:     [hidden email]
Datum:  19.01.2016 16:36
Betreff:        Re: [Assp-user] Trouble with postfix



Hello

You are right, i check the mta end it was forcing the tls.
I had corrected and add in assp 127.0.0.1 in noTLSIP and now it's working
as expected.

About my first problem , do you have any ideas (about timeout)?

I saw one discussion of a similar issue has been worn in the past, but
without a solution:
"[Assp-test] Timeout issues
  From: Colin<colin.waring@gm...>  - 2014-07-08 14:50:27"

The only different thing is that in my case the connection between sender
and assp is closed ,
but not between assp and my mta.
Right now , after setting notls ,iwill wait until tomorrow to see if the
problem reoccurs...

Adrian

>2)
>This is not true.

>If you set 127.0.0.1 in noTLSIP, all connection from and to 127.0.0.1
will
>skip TLS - all other connections (in and out) will do TLS.

>Thomas


------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user






DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally
privileged and protected in law and are intended solely for the use of the

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no
known virus in this email!
*******************************************************


------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user
Reply | Threaded
Open this post in threaded view
|

Re: Trouble with postfix

Adrian Stoica-2
In reply to this post by Adrian Stoica-2
Hello

I can confirm that after setting no tls , the number of email problems
is almost gone .
Could be a possible workaround to send a QUIT at timeout, before closing
connection ?

Adrian


------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user
Reply | Threaded
Open this post in threaded view
|

Re: Trouble with postfix

Thomas Eckardt/eck
>Could be a possible workaround to send a QUIT at timeout, before closing
>connection ?

Who should send a QUIT? First postfix has to send a reply - '250 queued'
or '5xx mail not accepted' or '4xx temporary error' or '421 closing
transmission' or what ever.
The client has sent all data, assp has received and sent all data - both
are waiting for a reply what happens with the mail.

looking at goole for 'amavis postfix timeout' or 'postfix timeout' there
are tons of problems

- postfix and/or amavis timeout setting in the config
- MTU problems
- ............................. no end

>workaround

There is no workaround required in any case. This is IMHO caused by a
configuration issue at the postfix and/or the installed postfix plugins.

Thomas





Von:    Adrian Stoica <[hidden email]>
An:     [hidden email]
Datum:  20.01.2016 10:06
Betreff:        Re: [Assp-user] Trouble with postfix



Hello

I can confirm that after setting no tls , the number of email problems
is almost gone .
Could be a possible workaround to send a QUIT at timeout, before closing
connection ?

Adrian


------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user






DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally
privileged and protected in law and are intended solely for the use of the

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no
known virus in this email!
*******************************************************


------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user
Reply | Threaded
Open this post in threaded view
|

ASSP Support Domain-based Email Routing?

nangthang
Dear all,

I'm wondering if ASSP has a feature called "domain-based email routing".
My goal is below:
Internet mails -> ASSP (SMTP Proxy) -> Email Server1 -> User ([hidden email])
Note: The Email Server1 manages the domain @domain1.com.
or:
Internet mails -> ASSP (SMTP Proxy) -> Email Server2 -> User ([hidden email])
Note: The Email Server2 manages the domain @domain2.com.

Note: I use ASSP as an Email Gateway for 2 Email Server in Backend that manage multi-domain.

Regards,
N. Thang

------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user
Reply | Threaded
Open this post in threaded view
|

Re: ASSP Support Domain-based Email Routing?

Thomas Eckardt/eck
>I'm wondering if ASSP has a feature called "domain-based email routing".

in short - NO.

Why? Because ASSP is a proxy not a mail server.

Internet mails <-> ASSP (SMTP Proxy) <-> Email Server

This not only shows the mail flow - it also shows the IP connections. How
should switch assp the IP connection to another mail server in the middle
of the SMTP handshake (after RCPT TO) or even more hard to do - after the
mail header (TO:) is received? In this example the "Email Server" has to
do the "domain-based email routing" to "Email Server1","Email Server2","
Email ServerX".

Thomas




Von:    Nguyen Nang Thang <[hidden email]>
An:     For Users of ASSP <[hidden email]>
Datum:  24.01.2016 12:23
Betreff:        [Assp-user] ASSP Support Domain-based Email Routing?



Dear all,

I'm wondering if ASSP has a feature called "domain-based email routing".
My goal is below:
Internet mails -> ASSP (SMTP Proxy) -> Email Server1 -> User
([hidden email])
Note: The Email Server1 manages the domain @domain1.com.
or:
Internet mails -> ASSP (SMTP Proxy) -> Email Server2 -> User
([hidden email])
Note: The Email Server2 manages the domain @domain2.com.

Note: I use ASSP as an Email Gateway for 2 Email Server in Backend that
manage multi-domain.

Regards,
N. Thang

------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user






DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally
privileged and protected in law and are intended solely for the use of the

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no
known virus in this email!
*******************************************************


------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user
Reply | Threaded
Open this post in threaded view
|

Re: ASSP Support Domain-based Email Routing?

nangthang
----- Original Message -----
> From: "Thomas Eckardt" <[hidden email]>
> To: "For Users of ASSP" <[hidden email]>
> Sent: Monday, January 25, 2016 12:30:11 PM
> Subject: Re: [Assp-user] ASSP Support Domain-based Email Routing?

>>I'm wondering if ASSP has a feature called "domain-based email routing".
>
> in short - NO.
>
> Why? Because ASSP is a proxy not a mail server.
>
> Internet mails <-> ASSP (SMTP Proxy) <-> Email Server
>
> This not only shows the mail flow - it also shows the IP connections. How
> should switch assp the IP connection to another mail server in the middle
> of the SMTP handshake (after RCPT TO) or even more hard to do - after the
> mail header (TO:) is received? In this example the "Email Server" has to
> do the "domain-based email routing" to "Email Server1","Email Server2","
> Email ServerX".

Thomas:
Thanks for your detailed explanation.

I'd like to share my success ASSP deployment that has the feature "domain-based email routing":
Inbound Connection:
Internet mails -> Postfix-1 (SMTP Gateway) -> ASSP (SMTP Proxy) -> Postfix-2 (domain-based email routing enabled) -> Email Server1/2
=> I use the feature "multi instance" of Postfix for the feature "domain-based email routing", where as:
* Postfix-1 (primary instance): Accept all incoming messages from the Internet, then route them to ASSP
* Postfix-2 (secondary instance): Used for ASSP as the SMTP destination configured in ASSP
* Postfix and ASSP are running on same host on my System

Regards,
N. Thang

------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user
Reply | Threaded
Open this post in threaded view
|

Re: ASSP Support Domain-based Email Routing?

Thomas Eckardt/eck
>Internet mails -> Postfix-1 (SMTP Gateway) -> ASSP (SMTP Proxy) ->
Postfix-2

This is a NOT recommended mail flow. Why? Because Postfix-1 has to
generate at least one (possibly more) NDR for every mail that is blocked
by ASSP.
Such a mail flow may be used, if ALL mails are delivered and are only
tagged by assp.

If a company uses such a mail flow and the company is commited to keep
conversations for revisioning, the company has to archive and to keep all
mails received be "postfix-1"! Because this host has accepted the mail.
Generating a NDR, because a mail was blocked by assp (in this mail flow)
does not extricate the company from archiving the mail - even it is 100%
spam!
Only if the company does NOT accept (means reject using 5xx 4xx) a mail at
the first entry point, it is extricated from archiving, because the mail
was never received.

Because this sounds logic - there will be a similar regulation in nearly
every country (don't know about Vietnam).
BUT ALL germans are warned - this is LAW in Germany!

Instead use:

Internet mails -> ASSP (SMTP Proxy) -> Postfix

This flow uses the advantage of assp's proxy mode. If ASSP blocks a mail
and drops a connection - nobody and no system at local location has to
care about NDR's and bounces beause of NDR's.

Thomas






Von:    Nguyen Nang Thang <[hidden email]>
An:     For Users of ASSP <[hidden email]>
Datum:  25.01.2016 08:26
Betreff:        Re: [Assp-user] ASSP Support Domain-based Email Routing?



----- Original Message -----
> From: "Thomas Eckardt" <[hidden email]>
> To: "For Users of ASSP" <[hidden email]>
> Sent: Monday, January 25, 2016 12:30:11 PM
> Subject: Re: [Assp-user] ASSP Support Domain-based Email Routing?

>>I'm wondering if ASSP has a feature called "domain-based email routing".
>
> in short - NO.
>
> Why? Because ASSP is a proxy not a mail server.
>
> Internet mails <-> ASSP (SMTP Proxy) <-> Email Server
>
> This not only shows the mail flow - it also shows the IP connections.
How
> should switch assp the IP connection to another mail server in the
middle
> of the SMTP handshake (after RCPT TO) or even more hard to do - after
the
> mail header (TO:) is received? In this example the "Email Server" has to
> do the "domain-based email routing" to "Email Server1","Email Server2","
> Email ServerX".

Thomas:
Thanks for your detailed explanation.

I'd like to share my success ASSP deployment that has the feature
"domain-based email routing":
Inbound Connection:
Internet mails -> Postfix-1 (SMTP Gateway) -> ASSP (SMTP Proxy) ->
Postfix-2 (domain-based email routing enabled) -> Email Server1/2
=> I use the feature "multi instance" of Postfix for the feature
"domain-based email routing", where as:
* Postfix-1 (primary instance): Accept all incoming messages from the
Internet, then route them to ASSP
* Postfix-2 (secondary instance): Used for ASSP as the SMTP destination
configured in ASSP
* Postfix and ASSP are running on same host on my System

Regards,
N. Thang

------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user






DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally
privileged and protected in law and are intended solely for the use of the

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no
known virus in this email!
*******************************************************


------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
Assp-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/assp-user