From: Sandy Drobic (postfix-usersjapantest.homelinux.com)
Date: Tue Nov 28 2006 - 08:36:43 CST

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

matt zaglin wrote:
> smtp-amavis unix - - y - 2 smtp
> -o smtp_data_done_timeout=1600
> -o disable_dns_lookups=yes

This is one bottleneck, you only have two content_filter processes.
Depending on your hardware you should be able to use more amavisd-new
processes simultaneously.

> 127.0.0.1:10025 inet n - y - - smtpd
> -o content_filter=
> -o local_recipient_maps=
> -o relay_recipient_maps=
> -o smtpd_restriction_classes=
> -o smtpd_helo_restrictions=
> -o smtpd_sender_restrictions=
> -o smtpd_recipient_restrictions=permit_mynetworks,reject
> -o mynetworks=127.0.0.0/8
> -o strict_rfc821_envelopes=yes
>
> -- end of postfinger output --
>
> Here is the output of postconf -n
>
> biff = no
> body_checks = pcre:/etc/postfix/pcre- body.cf
> bounce_queue_lifetime = 8h
> command_directory = /usr/sbin
> config_directory = /etc/postfix
> content_filter = smtp-amavis:[127.0.0.1]:10024
> daemon_directory = /usr/lib/postfix
> debug_peer_level = 2
> header_checks = pcre:/etc/postfix/pcre-header.cf
> home_mailbox = .maildir/
> html_directory = /usr/share/doc/postfix-2.2.10/html
> local_recipient_maps =
> local_transport = no local mail delivery

local_transport = error: no local mail delivery

> mail_owner = postfix
> mailq_path = /usr/bin/mailq
> manpage_directory = /usr/share/man
> maximal_queue_lifetime = 24h
> message_size_limit = 10240000
> mydestination = mail.domain.com

mydestination =

You have disabled the lookup for local_recipients and the local_transport,
so do not accept mails for mail.domain.com!

> myhostname = mail.domain.com
> mynetworks = 0.0.0.0/25; 0.0.0.1/32
> myorigin = mail3.consulvation.com
> newaliases_path = /usr/bin/newaliases
> queue_directory = /var/spool/postfix
> queue_run_delay = 6h
> readme_directory = /usr/share/doc/postfix-2.2.10/readme
> relay_domains = hash:/etc/postfix/relay_domains

You have relay_domains enabled but do not validate the recipients, you
need to set up relay_recipient_maps.

At the moment you are a backscatter source and probably listed on some
blacklists already.

> sample_directory = /etc/postfix
> sendmail_path = /usr/sbin/sendmail
> setgid_group = postdrop
> smtpd_banner = Do you want your business to be better?
> smtpd_client_restrictions = reject_unauth_pipelining
> smtpd_helo_required = yes
> smtpd_recipient_restrictions = reject_non_fqdn_recipient,
> permit_mynetworks,
> \ reject_unlisted_recipient, reject_invalid_hostname,
> reject_non_fqdn_sender, \ reject_unauth_destination, permit
> transport_maps = hash:/etc/postfix/transport
> unknown_local_recipient_reject_code = 550

This will never be used, you disabled recipient validation! This is the
cause of your huge queue. It is filled with spam and backscatter.

> Here is a snippet of the output of:
>
> *egrep '(warning|error|fatal|panic):' /some/log/file | more*
>
>
> Nov 28 08:47:37 mail3 postfix/smtpd[21638]: warning: 62.25.98.35: address
> not listed for hostname mail2.haymarketbusinessinteractive.com
> Nov 28 08:48:05 mail3 postfix/qmgr[21614]: warning: connect to transport no
> local mail delivery: No such file or directory

See above.

Sandy
--
List replies only please!
Please address PMs to: news-reply2 () japantest (.) homelinux (.) com

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]