|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Active Queue Keeps Growing
From: matt zaglin (zagman76
gmail.com)
Date: Tue Nov 28 2006 - 09:05:04 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Thanks for the quick reply!
I have increased the number of smtp-amavis processes from 2 to 8 (just
moving cautiously for now), and e-mail has started to move a little faster.
I also fixed the local_transport.
This box is a spam/virus filtering box (primarily), and for our domain, it
forwards to exchange, and the other domains forward to either their
exchange, or their postfix / zimbra / scalix devices (which we also manage).
I am not sure that the relay_recipient_maps will help (but, please let me
know if I am wrong!!) since the recipients exist on their own mail servers.
Is there a way of using the relay_recipient_maps without having a hard-coded
list of recipients? I ask because some of our clients have a high turnover,
and it would be a extremely difficult to maintain that list on a regular
basis.
Thanks again!
-Matt
On 11/28/06, Sandy Drobic <postfix-usersjapantest.homelinux.com> wrote:
>
> matt zaglin wrote:
> > smtp-amavis unix - - y - 2 smtp
> > -o smtp_data_done_timeout=1600
> > -o disable_dns_lookups=yes
>
> This is one bottleneck, you only have two content_filter processes.
> Depending on your hardware you should be able to use more amavisd-new
> processes simultaneously.
>
> > 127.0.0.1:10025 inet n - y - - smtpd
> > -o content_filter=
> > -o local_recipient_maps=
> > -o relay_recipient_maps=
> > -o smtpd_restriction_classes=
> > -o smtpd_helo_restrictions=
> > -o smtpd_sender_restrictions=
> > -o smtpd_recipient_restrictions=permit_mynetworks,reject
> > -o mynetworks=127.0.0.0/8
> > -o strict_rfc821_envelopes=yes
> >
> > -- end of postfinger output --
> >
> > Here is the output of postconf -n
> >
> > biff = no
> > body_checks = pcre:/etc/postfix/pcre- body.cf
> > bounce_queue_lifetime = 8h
> > command_directory = /usr/sbin
> > config_directory = /etc/postfix
> > content_filter = smtp-amavis:[127.0.0.1]:10024
> > daemon_directory = /usr/lib/postfix
> > debug_peer_level = 2
> > header_checks = pcre:/etc/postfix/pcre-header.cf
> > home_mailbox = .maildir/
> > html_directory = /usr/share/doc/postfix-2.2.10/html
> > local_recipient_maps =
> > local_transport = no local mail delivery
>
> local_transport = error: no local mail delivery
>
> > mail_owner = postfix
> > mailq_path = /usr/bin/mailq
> > manpage_directory = /usr/share/man
> > maximal_queue_lifetime = 24h
> > message_size_limit = 10240000
> > mydestination = mail.domain.com
>
> mydestination =
>
> You have disabled the lookup for local_recipients and the local_transport,
> so do not accept mails for mail.domain.com!
>
>
> > myhostname = mail.domain.com
> > mynetworks = 0.0.0.0/25; 0.0.0.1/32
> > myorigin = mail3.consulvation.com
> > newaliases_path = /usr/bin/newaliases
> > queue_directory = /var/spool/postfix
> > queue_run_delay = 6h
> > readme_directory = /usr/share/doc/postfix-2.2.10/readme
> > relay_domains = hash:/etc/postfix/relay_domains
>
> You have relay_domains enabled but do not validate the recipients, you
> need to set up relay_recipient_maps.
>
> At the moment you are a backscatter source and probably listed on some
> blacklists already.
>
> > sample_directory = /etc/postfix
> > sendmail_path = /usr/sbin/sendmail
> > setgid_group = postdrop
> > smtpd_banner = Do you want your business to be better?
> > smtpd_client_restrictions = reject_unauth_pipelining
> > smtpd_helo_required = yes
> > smtpd_recipient_restrictions = reject_non_fqdn_recipient,
> > permit_mynetworks,
> > \ reject_unlisted_recipient, reject_invalid_hostname,
> > reject_non_fqdn_sender, \ reject_unauth_destination, permit
> > transport_maps = hash:/etc/postfix/transport
> > unknown_local_recipient_reject_code = 550
>
> This will never be used, you disabled recipient validation! This is the
> cause of your huge queue. It is filled with spam and backscatter.
>
> > Here is a snippet of the output of:
> >
> > *egrep '(warning|error|fatal|panic):' /some/log/file | more*
> >
> >
> > Nov 28 08:47:37 mail3 postfix/smtpd[21638]: warning: 62.25.98.35:
> address
> > not listed for hostname mail2.haymarketbusinessinteractive.com
> > Nov 28 08:48:05 mail3 postfix/qmgr[21614]: warning: connect to transport
> no
> > local mail delivery: No such file or directory
>
> See above.
>
> Sandy
> --
> List replies only please!
> Please address PMs to: news-reply2 () japantest (.) homelinux (.) com
>
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]