NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Postfix Discussion> 2008-01

Re: "Blocked MTA-BLOCKED", fwd-connect error with amavisd<->postfix

oskar-postfixeyb.de
Date: Mon Jan 07 2008 - 04:01:48 CST

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

hi,

in the meantime I've set up on another machine postfix with amavisd-new
and there it works!

Now I 've copied the workig configuration back to the first server and I
till have the same problem! I dont know, why. Maytbe there's some perl
module missing on this system? strange!

here is the verbose log from amavisd-new

Received: from chuck.ath.cx ([172.16.0.2]) by localhost
(srv.intra.eyb.de [172.16.0.2]) (amavisd-new, port 10024) with LMTP for
<oskareyb.de>; Mon, 7 Jan 2008 10:49:32 +0100 (CET)
Jan 7 10:49:32 srv amavis[14325]: (14325-02) Checking: x7f-jzjU5-fL
<oskareyb.de> -> <oskareyb.de>
Jan 7 10:49:32 srv amavis[14325]: (14325-02) Cached virus check
expired, TTL = 180 s
Jan 7 10:49:32 srv amavis[14325]: (14325-02) cached
133f6a9ec4ae6716266e3f077998d093 from <oskareyb.de> (0,0)
Jan 7 10:49:32 srv amavis[14325]: (14325-02) p001 1 Content-Type:
text/plain, size: 11 B, name:
Jan 7 10:49:34 srv amavis[14325]: (14325-02) mail_via_smtp: session
failed: errno=Invalid argument
Jan 7 10:49:34 srv amavis[14325]: (14325-02) (!)FWD via SMTP:
<oskareyb.de> -> <oskareyb.de>, 451 4.5.0 From
MTA([[[172.16.0.2]]]:10026) during fwd-connect (errno=Invalid argument):
id=14325-02
Jan 7 10:49:34 srv amavis[14325]: (14325-02) Blocked MTA-BLOCKED,
[172.16.0.2] <oskareyb.de> -> <oskareyb.de>, Message-ID:
<20080107092953.097A211853E0chuck.ath.cx>, mail_id: x7f-jzjU5-fL, Hits:
1.97, size: 330, 2438 ms
Jan 7 10:49:34 srv amavis[14325]: (14325-02) TIMING [total 2449 ms] -
SMTP greeting: 6 (0%)0, SMTP LHLO: 2 (0%)0, SMTP pre-MAIL: 1 (0%)0, SMTP
pre-DATA-flush: 8 (0%)1, SMTP DATA: 96 (4%)5, check_init: 2 (0%)5,
digest_hdr: 1 (0%)5, digest_body: 1 (0%)5, gen_mail_id: 2 (0%)5,
mime_decode: 21 (1%)6, get-file-type1: 70 (3%)9, decompose_part: 3
(0%)9, parts_decode: 0 (0%)9, check_header: 4 (0%)9, AV-scan-1: 10
(0%)9, spam-wb-list: 5 (0%)9, SA parse: 6 (0%)10, SA check: 2142
(87%)97, update_cache: 16 (1%)98, decide_mail_destiny: 2 (0%)98,
fwd-end-chkpnt: 17 (1%)99, prepare-dsn: 3 (0%)99, main_log_entry: 22
(1%)100, update_snmp: 5 (0%)100, SMTP pre-response: 1 (0%)100, SMTP
response: 1 (0%)100, unlink-1-files: 1 (0%)100, rundown: 1 (0%)100

of course, the inject by telnet to 172.16.0.2:10026 (back to postfix)
causes no problem! So, its really strange to me.

Maybe some of you have had the same error and have an idea..

Cheers,
Oskar

Ronald MacDonald schrieb am 26.12.2007 14:18:
> Hi Oskar,
>
> postconf -n output would be useful.
>
> I'm not absolutely brilliant at this, but I think the problem is as follows:
>
> I *think* it might be that postfix is rejecting the mail being injected back
> - what have you specified in mynetworks, for example?
>
> Ronald.
>
> On 26/12/2007, Oskar Eyb <oskar-postfixeyb.de> wrote:
>> Hi!
>>
>> I have worked a lot on postfix - amavisd but I have still an failure
>> which I cant solve.
>>
>> inject a mail by $ telnet 127.0.0.2 10025
>>
>>
>> // so, the message is forwarded by postfix successfully to amavisd-new.
>>
>> Dec 26 13:13:25 srv postfix/qmgr[8384]: 15B4A11852AA:
>> from=<(mysenderadr)>, size=370, nrcpt=1 (queue active)
>> Dec 26 13:13:26 srv amavis[8427]: (08427-01) LMTP::10024
>> /var/amavis/tmp/amavis-20071226T131326-08427: <(mysenderadr)> ->
>> <echofu-berlin.de> SIZE=370 Received: from srv.intra.eyb.de
>> ([127.0.0.2]) by localhost (srv.intra.eyb.de [127.0.0.2]) (amavisd-new,
>> port 10024) with LMTP for <echofu-berlin.de>; Wed, 26 Dec 2007 13:13:26
>> +0100 (CET)
>>
>>
>> // Here amavisd gets into trouble
>>
>> Dec 26 13:13:26 srv amavis[8427]: (08427-01) Checking: NJZugHtZUXfN
>> [127.0.0.2] <(mysenderadr)> -> <echofu-berlin.de>
>> Dec 26 13:13:26 srv amavis[8427]: (08427-01) (!)FWD via SMTP:
>> <(mysenderadr)> -> <echofu-berlin.de>, 451 4.5.0 From
>> MTA([[[127.0.0.2]]]:10025) during fwd-connect (errno=Invalid argument):
>> id=08427-01
>>
>>
>> // and explained why.. but I dont understand this. Â„BLOCKED MTAÂ"...
>> // I have injected by telnet on 127.0.0.2:10025 from 127.0.0.2 to
>> // postfix successfully a mail. Why amavisd-new fails here??
>> // I guess, that 'fwd-connect' means, that amavis is trying to send back
>> // the mail to postfix.
>>
>>
>> Dec 26 13:13:26 srv amavis[8427]: (08427-01) Blocked MTA-BLOCKED, LOCAL
>> [127.0.0.2] [127.0.0.2] <(mysenderadr)> -> <echofu-berlin.de>,
>> Message-ID: <20071226121319.15B4A11852AAsrv.intra.eyb.de>, mail_id:
>> NJZugHtZUXfN, Hits: -, size: 370, 750 ms
>>
>>
>> Dec 26 13:13:26 srv postfix/lmtp[8470]: 15B4A11852AA:
>> to=<echofu-berlin.de>, relay=127.0.0.2[127.0.0.2]:10024, delay=14,
>> delays=13/0.06/0.05/0.73, dsn=4.5.0, status=deferred (host
>> 127.0.0.2[127.0.0.2] said: 451 4.5.0 From MTA([[[127.0.0.2]]]:10025)
>> during fwd-connect (errno=Invalid argument): id=08427-01 (in reply to
>> end of DATA command))
>>
>>
>>
>>
>>
>> Regards,
>> Oskar
>>
>>
>>
>>
>> masteer.cf
>> ==========================================================================
>> # service type private unpriv chroot wakeup maxproc command + args
>> # (yes) (yes) (yes) (never) (100)
>> #
>> ==========================================================================
>>
>> #628 inet n - n - - qmqpd
>> #pickup fifo n - n 60 1 pickup
>> #cleanup unix n - n - 0 cleanup
>> qmgr fifo n - n 300 1 qmgr
>> #qmgr fifo n - n 300 1 oqmgr
>> tlsmgr unix - - n 1000? 1 tlsmgr
>> rewrite unix - - n - - trivial-rewrite
>> bounce unix - - n - 0 bounce
>> defer unix - - n - 0 bounce
>> trace unix - - n - 0 bounce
>> verify unix - - n - 1 verify
>> flush unix n - n 1000? 0 flush
>> proxymap unix - - n - - proxymap
>> smtp unix - - n - - smtp
>> # When relaying mail as backup MX, disable fallback_relay to avoid MX
>> loops
>> relay unix - - n - - smtp
>> -o fallback_relay=
>> # -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
>> showq unix n - n - - showq
>> error unix - - n - - error
>> retry unix - - n - - error
>> discard unix - - n - - discard
>> #local unix - n n - - local
>> virtual unix - n n - - virtual
>> lmtp unix - - n - - lmtp
>> anvil unix - - n - 1 anvil
>> scache unix - - n - 1 scache
>> #
>>
>>
>>
>> pickup fifo n - n 60 1 pickup
>> -o cleanup_service_name=pre-cleanup
>>
>>
>> smtp inet n - n - - smtpd
>> -o cleanup_service_name=pre-cleanup
>> -o content_filter=amavis-lmtp:[127.0.0.2]:10024
>>
>>
>>
>> amavis-lmtp unix - - n - 2 lmtp
>> -o lmtp_data_done_timeout=1200
>> -o lmtp_send_xforward_command=yes
>> -o disable_dns_lookups=yes
>> -o max_use=20
>>
>> 127.0.0.1:10025 inet n - n - - smtpd
>> -o content_filter=
>> -o local_recipient_maps=
>> -o relay_recipient_maps=
>> -o smtpd_delay_reject=no
>> -o smtpd_restriction_classes=
>> -o smtpd_client_restrictions=
>> -o smtpd_helo_restrictions=
>> -o smtpd_sender_restrictions=
>> -o smtpd_recipient_restrictions=permit_mynetworks,reject
>> -o smtpd_data_restrictions=reject_unauth_pipelining
>> -o smtpd_end_of_data_restrictions=
>> -o mynetworks=127.0.0.0/8
>> -o smtpd_error_sleep_time=0
>> -o smtpd_soft_error_limit=1001
>> -o smtpd_hard_error_limit=1000
>> -o smtpd_client_connection_count_limit=0
>> -o smtpd_client_connection_rate_limit=0
>> -o
>> receive_override_options=no_header_body_checks,no_unknown_recipient_checks
>>
>>
>> dspam unix - n n - - pipe
>> flags=Rhq user=dspam argv=/usr/local/bin/dspam --mode=teft --user
>> global \
>> --deliver=innocent,spam --feature=chained,noise -i -f ${sender} --
>> ${recipient}
>>
>> dspam-spam unix - n n - - pipe
>> flags=Rhq user=dspam argv=/usr/local/bin/dspam --mode=teft --user
>> global \
>> --class=spam --source=error ${sender} --deliver=spam
>>
>> dspam-notspam unix - n n - - pipe
>> flags=Rhq user=dspam argv=/usr/local/bin/dspam --mode=teft --user
>> global \
>> --class=innocent --source=error ${sender} --deliver=innocent
>>
>> cleanup unix n - n - 0 cleanup
>> -o header_checks=
>> -o mime_header_checks=
>> -o nested_header_checks=
>> -o body_checks=
>>
>> pre-cleanup unix n - n - 0 cleanup
>> -o canonical_maps=
>> -o sender_canonical_maps=
>> -o recipient_canonical_maps=
>> -o masquerade_domains=
>> -o always_bcc=
>> -o sender_bcc_maps=
>> -o recipient_bcc_maps=
>>
>> local unix - n n - - local
>> -o content_filter=
>> -o myhostname=HOSTNAME
>> -o local_recipient_maps=
>> -o relay_recipient_maps=
>> -o mynetworks=127.0.0.0/8
>> -o mynetworks_style=host
>> -o smtpd_restriction_classes=
>> -o smtpd_client_restrictions=
>> -o smtpd_helo_restrictions=
>> -o smtpd_sender_restrictions=
>> -o smtpd_recipient_restrictions=permit_mynetworks,reject
>>
>>
>>
>>
>
>

--
If I don't reply your mail in an appropriate duration, your mail gets
lost in my SPAM folder.

In this case, see http://www.Eyb.de/ for further information.

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]