OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
Re: [Old box, Newbie] Undelivered Mail Returned to Sender

From: Victor Duchovni (Victor.DuchovniMorganStanley.com)
Date: Wed Dec 12 2007 - 11:14:56 CST

On Wed, Dec 12, 2007 at 09:09:56AM -0800, Paul Rogers wrote:

> --- Wietse Venema <wietseporcupine.org> wrote:
> > Remove the chroot settings from Postfix.
> >
> > http://www.postfix.org/DEBUG_README.html#no_chroot
>
> Per this suggestion from mouss I did try that, with the following
> result. (I guess I'm confused about what my postfix and my ISP's
> postfix are each doing. I thought mine should be handing it off to him
> to deliver. Not sure why my resolver is involved, why my postfix seems
> to be bouncing it.)
>
> > remove all chroot things and try again. This will show whether the
> > problem is chroot related or resolver related.
>
> Dec 11 10:01:26 dexter postfix-script: starting the Postfix mail system
> Dec 11 10:01:27 dexter postfix/master[496]: daemon started
>
> <changing all "y" to "n" in chroot column. Restarted postfix.>
>
> Dec 11 10:03:44 dexter postfix-script: stopping the Postfix mail system
> Dec 11 10:03:44 dexter postfix/master[496]: terminating on signal 15
> Dec 11 10:03:53 dexter postfix-script: starting the Postfix mail system
> Dec 11 10:03:53 dexter postfix/master[662]: daemon started
> Dec 11 10:07:19 dexter postfix/pickup[664]: 84DF61A932: uid=500
> from=<paul>
> Dec 11 10:07:19 dexter postfix/cleanup[689]: 84DF61A932:
> message-id=<20071211180719.84DF61A932dexter.lan>
> Dec 11 10:07:20 dexter postfix/qmgr[665]: 84DF61A932:
> from=<pgrogersxprt.net>, size=3596, nrcpt=1 (queue active)
> Dec 11 10:08:01 dexter postfix/smtp[691]: 84DF61A932:
> to=<paulgrogersyahoo.com>, relay=none, delay=42, status=bounced (Name
> service error for yahoo.com: Host found but no data record of requested
> type)

You have a toy DNS proxy-server in your firewall. You need to not point
/etc/resolv.conf at the firewall and use a real DNS server instead. At
low volume point /etc/resolv.conf at the ISP's DNS servers, but it is best
to run your own caching server on an MTA.

--
        Viktor.

Disclaimer: off-list followups get on-list replies or get ignored.
Please do not ignore the "Reply-To" header.

To unsubscribe from the postfix-users list, visit
http://www.postfix.org/lists.html or click the link below:
<mailto:majordomopostfix.org?body=unsubscribe%20postfix-users>

If my response solves your problem, the best way to thank me is to not
send an "it worked, thanks" follow-up. If you must respond, please put
"It worked, thanks" in the "Subject" so I can delete these quickly.