| View previous topic :: View next topic |
| Author |
Message |
shakti
Guru
Joined: 15 May 2002
Posts: 358
Location: omnipresent
|
 Posted: Tue Apr 18, 2006 11:45 pm Post subject: postfix stopped working for external mail |
 |
|
I am perplexed at this problem. From one day to the next my all my mails going to other than my internal addresses never arrive. They do not bounce and i get status sent in my logs. What i dont get is that i did not do anything, my server was humming away for months, then i forwarded two mails, the first one got there the second did not and from then on no more outgoing external mail... here is a log output when i send something, but i dont see anything wrong... any help appreciated
| Code: | Apr 18 16:24:21 serv postfix/cleanup[31228]: 5F8C36BCB2: message-id=<200604181624.20098.alex@liquidmooncafe.o
rg>
Apr 18 16:24:21 serv postfix/qmgr[31221]: 5F8C36BCB2: from=<alex@liquidmooncafe.org>, size=582, nrcpt=2 (queu
e active)
Apr 18 16:24:21 serv postfix/smtpd[31223]: input attribute name: status
Apr 18 16:24:21 serv postfix/smtpd[31223]: input attribute value: 0
Apr 18 16:24:21 serv postfix/smtpd[31223]: public/cleanup socket: wanted attribute: reason
Apr 18 16:24:21 serv postfix/smtpd[31223]: input attribute name: reason
Apr 18 16:24:21 serv postfix/smtpd[31223]: input attribute value: (end)
Apr 18 16:24:21 serv postfix/smtpd[31223]: public/cleanup socket: wanted attribute: (list terminator)
Apr 18 16:24:21 serv postfix/smtpd[31223]: input attribute name: (end)
Apr 18 16:24:21 serv postfix/smtpd[31223]: > wrkstn.qisland.net[192.168.1.151]: 250 Ok: queued as 5F8C36BCB2
Apr 18 16:24:21 serv postfix/smtpd[31223]: watchdog_pat: 0x80a5b68
Apr 18 16:24:21 serv postfix/smtpd[31223]: < wrkstn.qisland.net[192.168.1.151]: QUIT
Apr 18 16:24:21 serv postfix/smtpd[31223]: > wrkstn.qisland.net[192.168.1.151]: 221 Bye
Apr 18 16:24:21 serv postfix/smtpd[31223]: disconnect from wrkstn.qisland.net[192.168.1.151]
Apr 18 16:24:21 serv postfix/smtpd[31223]: master_notify: status 1
Apr 18 16:24:21 serv postfix/smtpd[31223]: connection closed
Apr 18 16:24:21 serv postfix/smtpd[31223]: watchdog_stop: 0x80a5b68
Apr 18 16:24:21 serv postfix/smtpd[31223]: watchdog_start: 0x80a5b68
Apr 18 16:24:54 serv postfix/smtp[31230]: connect to mx3.hotmail.com[64.4.50.179]: Connection timed out (port
25)
Apr 18 16:24:55 serv postfix/smtp[31230]: 5F8C36BCB2: to=<starfishhands@hotmail.com>, relay=mx2.hotmail.com[6
5.54.244.168], delay=34, status=sent (250 <200604181624.20098.alex@liquidmooncafe.org> Queued mail for deliv
ery)
Apr 18 16:24:55 serv postfix/smtp[31230]: 5F8C36BCB2: to=<zetauser@hotmail.com>, relay=mx2.hotmail.com[65.54.
244.168], delay=34, status=sent (250 <200604181624.20098.alex@liquidmooncafe.org> Queued mail for delivery)
Apr 18 16:24:55 serv postfix/qmgr[31221]: 5F8C36BCB2: removed
Apr 18 16:25:21 serv postfix/smtpd[31223]: watchdog_stop: 0x80a5b68
Apr 18 16:25:21 serv postfix/smtpd[31223]: watchdog_start: 0x80a5b68
Apr 18 16:26:01 serv postfix/smtpd[31223]: rewrite stream disconnect
Apr 18 16:26:01 serv postfix/smtpd[31223]: idle timeout -- exiting
|
_________________
Using Gentoo since 2002. |
|
| Back to top |
|
 |
f.meltzer
n00b
Joined: 01 Jun 2003
Posts: 38
Location: Norway
|
| Posted: Thu Apr 20, 2006 1:11 am Post subject: |
|
|
you should say something about what your external IP is. maybe the receiving server silently drops your messages as spam (if your IP is known to the internet as "dial-up"). if you use some sort of commercial isp, they probably offer you a sort of smtp service. try to use such service in relayhost = [mailserver.isp.tld] in /etc/postfix/main.cf (remember to restart postfix).
btw: if your isp transparently drops your mails, and it looks like this in your logs - they're cool and mean at the same time... 
_________________
fm |
|
| Back to top |
|
|
shakti
Guru
Joined: 15 May 2002
Posts: 358
Location: omnipresent
|
| Posted: Thu Apr 20, 2006 1:18 am Post subject: |
|
|
| I have a fixed ip and an account with my isp wich allows me to run my own servers. It has worked without a problem for almost 2 1/2 years.... |
|
| Back to top |
|
|
f.meltzer
n00b
Joined: 01 Jun 2003
Posts: 38
Location: Norway
|
| Posted: Thu Apr 20, 2006 1:31 am Post subject: |
|
|
ok. well, i would recommend to test the relayhost = [mailserver.isp.tld] as suggested, and send off testmessages to your own accounts at gmail, hotmail, yahoo and other externals..
good luck...
_________________
fm |
|
| Back to top |
|
|
shakti
Guru
Joined: 15 May 2002
Posts: 358
Location: omnipresent
|
| Posted: Thu Apr 20, 2006 6:14 am Post subject: works with isp relay |
|
|
| Well I can send mails using relayhost=myisp, so far so good, but i would like to know what made my server stop from being able to send mails directly. Comparing logs there is no difference between the two (with and without relayhost). |
|
| Back to top |
|
|
DaveArb
Guru
Joined: 29 Apr 2004
Posts: 510
Location: Texas, USA
|
| Posted: Thu Apr 20, 2006 2:05 pm Post subject: Re: postfix stopped working for external mail |
|
|
| shakti wrote: | | Code: | Apr 18 16:24:54 serv postfix/smtp[31230]: connect to mx3.hotmail.com[64.4.50.179]: Connection timed out (port
25) |
|
I agree with f.meltzer that outgoing port blocking is the most likely cause of this failure. If it were an anti-spam RBL blocking, you wouldn't see all messages fail (since not all MTAs use the same RBLs) and you would get reject messages (as in 550 5.7.1 <starfishhands@hotmail.com>... Rejected: YOUR.IP.ADD.RESS listed at dul.dnsbl.sorbs.net).
OK, so I wrote all the above before checking something. Both the machines you've listed, mx2.hotmail.com and mx3.hotmail.com, are at least _verrrrry_ slow to respond, if they respond at all (I only gave them about a minute each.) Is it safe to assume that other MTAs are similarly not responding to you?
I tested with mx4.hotmail.com, and it responded very quickly:
| Code: | mail2 mail # telnet mx4.hotmail.com 25
Trying 65.54.244.232...
Connected to mx4.hotmail.com.
Escape character is '^]'.
220 bay0-mc8-f13.bay0.hotmail.com Sending unsolicited commercial or bulk e-mail to Microsoft's computer network is prohibited. Other restrictions are found at http://privacy.msn.com/Anti-spam/. Violations will result in use of equipment located in California and other states. Thu, 20 Apr 2006 07:00:33 -0700
QUIT
221 bay0-mc8-f13.bay0.hotmail.com Service closing transmission channel
Connection closed by foreign host.
|
That first line shows how you can see by hand if something odd is happening during your connection. The only commands I typed were the one starting `telnet`, and `QUIT`.
I'd recommend trying this with a less complex mailserver as recipient as well, in case you are just running into problems with the hotmail server farm. My bet, though, is that someone at your ISP has accidentally included your network in a port 25 block.
Dave |
|
| Back to top |
|
|
shakti
Guru
Joined: 15 May 2002
Posts: 358
Location: omnipresent
|
| Posted: Thu Apr 20, 2006 4:44 pm Post subject: Re: postfix stopped working for external mail |
|
|
| DaveArb wrote: |
I'd recommend trying this with a less complex mailserver as recipient as well, in case you are just running into problems with the hotmail server farm. My bet, though, is that someone at your ISP has accidentally included your network in a port 25 block.
Dave |
Thanks for your reply, but if port 25 where blocked would i still be able to connect to other servers on this port as i can now? I have this problem with all mailservers i am trying to reach.
_________________
Using Gentoo since 2002. |
|
| Back to top |
|
|
langthang
Retired Dev
Joined: 27 Nov 2003
Posts: 620
|
| Posted: Thu Apr 20, 2006 5:08 pm Post subject: |
|
|
gather from your email address, a quick check here ( http://www.five-ten-sg.com/blackhole.php) shows your IP has been blacklist. May be that is one of the reason hotmail silently discard mail from your domain.
_________________
Gentoo users' map |
|
| Back to top |
|
|
magic919
Advocate
Joined: 17 Jun 2005
Posts: 2182
Location: Berkshire, UK
|
| Posted: Thu Apr 20, 2006 5:31 pm Post subject: |
|
|
| Have you got any devices between your server and the Internet that perform NAT, perhaps? |
|
| Back to top |
|
|
DaveArb
Guru
Joined: 29 Apr 2004
Posts: 510
Location: Texas, USA
|
| Posted: Thu Apr 20, 2006 5:42 pm Post subject: Re: postfix stopped working for external mail |
|
|
| shakti wrote: | but if port 25 where blocked would i still be able to connect to other servers on this port as i can now?
I have this problem with all mailservers i am trying to reach. |
The two sentences I've quoted contradict each other. Either you can connect to other mailservers on port 25, or you cannot. I suppose you could mean you can connect to non-mailservers on port 25, but I cannot image why anything but a mailserver would be listening on the SMTP port.
@ langthang, five-ten is extremely aggressive, I'd say there is zero chance that hotmail would reject on that blacklist, much less drop on it. Judging by what I get in my hotmail box, they don't block on much.
Dave |
|
| Back to top |
|
|
shakti
Guru
Joined: 15 May 2002
Posts: 358
Location: omnipresent
|
| Posted: Thu Apr 20, 2006 5:49 pm Post subject: |
|
|
Well i am on the 5-10 black list, strange, checked for their reason and got this:
| Code: |
IP address 142.179.102.241 is listed here as 142.179.120.166.telus.net misc.spam.
The misc.spam group is mostly (but not entirely) composed of entire addresses blocks that have a) sent spam here, b) have consecutive or missing reverse dns, and c) have no customer sub-delegation via either the controlling RIR (ARIN, RIPE, LACNIC, APNIC, etc) or an rwhois server referenced in the main RIR records.
In particular, 142.179.102.241 has reverse dns of www.qisland.net. If your domain name does not appear as the last components in any of those reverse dns names, that needs to be fixed first. Also, either the PTR or A record has a TTL of 60 which is less than 3600 seconds. That needs to be fixed. Any email sent to the address at the top of this page will be ignored until that is fixed.
In my opinion, the following comment also applies to static ip addresses, where the provider does not actually identify the user of that ip address by domain name.
As Bill Cole points out: "The problem with people on dynamic addresses doing that otherwise perfectly reasonable and normal thing (sending mail directly from their ip address) is not that it violates a service contract (in itself it usually does not) but rather that the dynamic nature of the addresses and the sloppiness/laziness/cheapness of their providers makes it impossible for anyone who gets the mail to have anything useful as an audit trail for where the mail came from beyond identifying an IP address. ISP's historically have claimed that they cannot identify the guilty party and more often today fall back to amorphous and grotesquely unethical 'privacy' standards decreeing that they will not identify abusive users. By racing to the bottom on price and service quality, they have also managed to create an environment where it is impossible for them to remain economically viable and police their networks in any but the most coarse and restrictive ways. We have people shunning port 25 traffic from such networks not because it is inherently bad, but because those networks have no overall competent authority and no way for outsiders to determine a competent authority for any specific address at any particular time." |
_________________
Using Gentoo since 2002. |
|
| Back to top |
|
|
langthang
Retired Dev
Joined: 27 Nov 2003
Posts: 620
|
| Posted: Thu Apr 20, 2006 6:13 pm Post subject: |
|
|
DaveArb,
may be he didn't phrase it clear enough. I think he means that he can connect to other mail servers on port 25 either from postfix or telnet. it means his IPS doesn't block outgoing port 25. But he has problem sending mail to other mail server ( mail lost ).
shakti,
did you try send an email to some other domain ? You can try send me an email <lang.thang at gmail> and post your mail log.
_________________
Gentoo users' map |
|
| Back to top |
|
|
DaveArb
Guru
Joined: 29 Apr 2004
Posts: 510
Location: Texas, USA
|
| Posted: Thu Apr 20, 2006 6:18 pm Post subject: |
|
|
| langthang wrote: | | I think he means that he can connect to other mail servers on port 25 either from postfix or telnet. it means his IPS doesn't block outgoing port 25. But he has problem sending mail to other mail server ( mail lost ). |
It may be, I don't discount a language difficulty (I promise that if we had to have this discussion in any language but English, I wouldn't be here), but in the original post he wrote "From one day to the next my all my mails going to other than my internal addresses never arrive", which seems very explicit that no mail delivery at all succeeds.
Dave |
|
| Back to top |
|
|
shakti
Guru
Joined: 15 May 2002
Posts: 358
Location: omnipresent
|
| Posted: Thu Apr 20, 2006 7:56 pm Post subject: |
|
|
| langthang wrote: | DaveArb,
may be he didn't phrase it clear enough. I think he means that he can connect to other mail servers on port 25 either from postfix or telnet. it means his IPS doesn't block outgoing port 25. But he has problem sending mail to other mail server ( mail lost ).
shakti,
did you try send an email to some other domain ? You can try send me an email <lang.thang at gmail> and post your mail log. |
To clarify, my port25 is NOT blocked 
langthang, i just send you a mail to your gmail account, log is following:
i left out all the sql querries as the are not relevant,
| Code: | Apr 20 12:53:03 serv postfix/smtpd[21407]: > wrkstn.qisland.net[192.168.1.151]: 250 Ok: queued as 4F9306BCB1
Apr 20 12:53:03 serv postfix/qmgr[21405]: 4F9306BCB1: from=<alex@liquidmooncafe.org>, size=619, nrcpt=1 (queue active)
Apr 20 12:53:03 serv postfix/smtpd[21407]: < wrkstn.qisland.net[192.168.1.151]: QUIT
Apr 20 12:53:03 serv postfix/smtpd[21407]: > wrkstn.qisland.net[192.168.1.151]: 221 Bye
Apr 20 12:53:03 serv postfix/smtpd[21407]: match_hostname: wrkstn.qisland.net ~? 192.168.1.0/24
Apr 20 12:53:03 serv postfix/smtpd[21407]: match_hostaddr: 192.168.1.151 ~? 192.168.1.0/24
Apr 20 12:53:03 serv postfix/smtpd[21407]: disconnect from wrkstn.qisland.net[192.168.1.151]
Apr 20 12:53:03 serv postfix/smtpd[21407]: master_notify: status 1
Apr 20 12:53:03 serv postfix/smtpd[21407]: connection closed
Apr 20 12:53:09 serv postfix/smtp[21414]: 4F9306BCB1: to=<lang.thang@gmail.com>, relay=gmail-smtp-in.l.google.com[64.233.167.114], delay=6, status=sent (250 2.0.0 OK 1145562788 f75si65700pye)
Apr 20 12:53:09 serv postfix/qmgr[21405]: 4F9306BCB1: removed
|
_________________
Using Gentoo since 2002. |
|
| Back to top |
|
|
DaveArb
Guru
Joined: 29 Apr 2004
Posts: 510
Location: Texas, USA
|
| Posted: Thu Apr 20, 2006 8:13 pm Post subject: |
|
|
| shakti wrote: | | To clarify, my port25 is NOT blocked |
Thanks, that's clear enough even for me. 
You can send to gmail. So, are you actually having a problem, other than that some of Hotmail's MXs are sporadically not responding? Testing right now, I can get an answer from mx2, but not mx3 or mx4. |
|
| Back to top |
|
|
langthang
Retired Dev
Joined: 27 Nov 2003
Posts: 620
|
| Posted: Thu Apr 20, 2006 8:21 pm Post subject: |
|
|
| shakti wrote: |
langthang, i just send you a mail to your gmail account, log is following:
i left out all the sql querries as the are not relevant, |
and I get the mail. blame it on hotmail then
_________________
Gentoo users' map |
|
| Back to top |
|
|
shakti
Guru
Joined: 15 May 2002
Posts: 358
Location: omnipresent
|
| Posted: Thu Apr 20, 2006 8:30 pm Post subject: |
|
|
 now thats weird.... thanks for all the help, i am going to try to get of the blacklist and see if that helps....
_________________
Using Gentoo since 2002. |
|
| Back to top |
|
|
f.meltzer
n00b
Joined: 01 Jun 2003
Posts: 38
Location: Norway
|
| Posted: Thu Apr 20, 2006 9:18 pm Post subject: |
|
|
| shakti wrote: | | now thats weird.... thanks for all the help, i am going to try to get of the blacklist and see if that helps.... |
until your unlisted, i think you should consider using the relayhost option to send all outbound mail through your provider's smtp service. after all you probably pay them good money for this service. why not use it?
_________________
fm |
|
| Back to top |
|
|
DaveArb
Guru
Joined: 29 Apr 2004
Posts: 510
Location: Texas, USA
|
| Posted: Fri Apr 21, 2006 2:34 am Post subject: |
|
|
Honest, folks, being on five-ten is not much to be worried about. You're likely to -never- see a rejection based on that RBL. For a chuckle, use www.dnsstuff.com to look up your blocklist status, and notice the text they place under FIVETENSRC.
Dave |
|
| Back to top |
|
|
shakti
Guru
Joined: 15 May 2002
Posts: 358
Location: omnipresent
|
| Posted: Fri Apr 21, 2006 2:46 am Post subject: |
|
|
OK so fiveten is the only place i am black-listed so i dont think thats my problem. What was strange is that when the problem started it was when i forwarded two mails to the same hotmail address and only one got there (instantly). Also its not only hotmail but also yahoo, gmail works and i dont know about others. I will use my isp as an relay for now, so everything works, but i would like to know what the root of all this is. Again thank you all for the input given and the patience to decipher my English
_________________
Using Gentoo since 2002. |
|
| Back to top |
|
|
langthang
Retired Dev
Joined: 27 Nov 2003
Posts: 620
|
| Posted: Fri Apr 21, 2006 3:25 pm Post subject: |
|
|
| shakti wrote: | | What was strange is that when the problem started it was when i forwarded two mails to the same hotmail address and only one got there (instantly). Also its not only hotmail but also yahoo, gmail works and i dont know about others. |
forwarding to hotmail problem is very much like http://article.gmane.org/gmane.mail.postfix.user/140286
_________________
Gentoo users' map |
|
| Back to top |
|
|
baak6
Tux's lil' helper
Joined: 30 Aug 2003
Posts: 141
|
| Posted: Tue May 23, 2006 1:47 am Post subject: |
|
|
Hi.
I have the very same problem...although, my emails ALWAYS get delivered to hotmail if I send a mail from the hotmail address and reply to it, when I send a new message it doesn't get delivered.
| Code: |
New message line:
May 23 01:36:19 rain postfix/smtp[13878]: 718671DD5E: to=<ofgameri@hotmail.com>, relay=mx2.hotmail.com[65.54.244.40], delay=31, status=sent (250 <447266F7.4030200@MYDOMAIN.org> Queued mail for delivery)
Reply line:
May 23 01:37:27 rain postfix/smtp[13882]: B2CF91DD5E: to=<ofgameri@hotmail.com>, relay=mx2.hotmail.com[65.54.245.40], delay=2, status=sent (250 <44726758.5090209@MYDOMAIN.org> Queued mail for delivery)
|
The 2 lines are exactly the same...they even used the same server.
I don't know if this is just so with hotmail, I don't have any others E-mails to test this with but it doesn't look like any of the messages I've sent lately have gotten delivered, I was starting to think if people hated me. >.>
Anyone have an idea about what the hell is going on here? :S |
|
| Back to top |
|
|
baak6
Tux's lil' helper
Joined: 30 Aug 2003
Posts: 141
|
| Posted: Tue May 23, 2006 1:50 am Post subject: |
|
|
| Hmm, works fine when sending with mutt, not with Thunderbird though. :S |
|
| Back to top |
|
|
|
Networking & Security
