Not receiving from given domain

[jrefl5]

I don't think that should be the problem. We have no problems sending mail. A I know that mail from yahoo, gmail, and cox accounts can get in. It looks like the only problem is with the domain of our soon-to-be-bosses/coworkers on the same class b network.

Heck I'll attach a somewhat less edited version of the dig reports

[Bill Brock]

DNS looks right.

I know there is a log that will tell you exactly why the mail is being rejected. I use webmin to view logs so I'm not sure which log file in the Zimbra/logs folder it is.

[jrefl5]

Bill, thanks for sticking with me on this.

Phoenix, if you are still looking in. as far as I could tell there were no problems with our setup (no split dns) as mail was working in both directions except for this one sender, which is part of the reason I'm confused.


This is from /var/log/zimbra.log

Code:

Incomming Email Rejects >>>> >>>> >>>>

Feb 24 04:13:31 email postfix/smtpd[21339]: connect from firewall.sb.state.State.us[10.168.30.1]
Feb 24 04:13:34 email postfix/smtpd[21339]: NOQUEUE: reject: RCPT from firewall.sb.state.State.us[10.168.30.1]: 450 4.7.1 <UsState-exch0.UsState.gov>: Helo command rejected: Host not found; from=<jpeterson@UsState.gov> to=<hpulido@sb.state.State.us> proto=ESMTP helo=<UsState-exch0.UsState.gov>
Feb 24 04:13:34 email postfix/smtpd[21339]: disconnect from firewall.sb.state.State.us[10.168.30.1]


Feb 24 04:28:34 email postfix/smtpd[13958]: connect from firewall.sb.state.State.us[10.168.30.1]
Feb 24 04:28:34 email postfix/smtpd[13958]: NOQUEUE: reject: RCPT from firewall.sb.state.State.us[10.168.30.1]: 450 4.7.1 <UsState-exch0.UsState.gov>: Helo command rejected: Host not found; from=<jpeterson@UsState.gov> to=<hpulido@sb.state.State.us> proto=ESMTP helo=<UsState-exch0.UsState.gov>
Feb 24 04:28:34 email postfix/smtpd[13958]: disconnect from firewall.sb.state.State.us[10.168.30.1]


Feb 24 06:29:13 email postfix/smtpd[17629]: connect from firewall.sb.state.State.us[10.168.30.1]
Feb 24 06:29:14 email postfix/smtpd[17629]: NOQUEUE: reject: RCPT from firewall.sb.state.State.us[10.168.30.1]: 450 4.7.1 <UsState-exch0.UsState.gov>: Helo command rejected: Host not found; from=<jpeterson@UsState.gov> to=<hpulido@sb.state.State.us> proto=ESMTP helo=<UsState-exch0.UsState.gov>
Feb 24 06:29:14 email postfix/smtpd[17629]: disconnect from firewall.sb.state.State.us[10.168.30.1]

<<<< <<<< <<<< <<<< end rejects

Outgoing email to different user on the server we were rejecting above >>>> >>>> >>>> >>>> >>>>

 
Feb 25 13:03:08 email postfix/smtpd[4163]: connect from sb.state.State.us[10.168.30.60]
Feb 25 13:03:08 email postfix/smtpd[4163]: 474BD4E018C8: client=sb.state.State.us[10.168.30.60]
Feb 25 13:03:08 email postfix/cleanup[6887]: 474BD4E018C8: message-id=<9803968.571203969787789.JavaMail.root@email>
Feb 25 13:03:08 email postfix/qmgr[4704]: 474BD4E018C8: from=<hpulido@sb.state.State.us>, size=1878, nrcpt=1 (queue active)
Feb 25 13:03:08 email postfix/smtpd[4163]: disconnect from sb.state.State.us[10.168.30.60]
Feb 25 13:03:08 email amavis[4840]: (04840-05) ESMTP::10024 /opt/zimbra/amavisd/tmp/amavis-20080225T113524-04840: <hpulido@sb.state.State.us> -> <datkinson@UsState.gov> SIZE=1878 Received: from email.sb.state.State.us ([127.0.0.1]) by localhost (email.sb.state.State.us [127.0.0.1]) (amavisd-new, port 10024) with ESMTP for <datkinson@UsState.gov>; Mon, 25 Feb 2008 13:03:08 -0700 (MST)
Feb 25 13:03:08 email amavis[4840]: (04840-05) Checking: eSNgxh+Nj1mc [10.168.30.60] <hpulido@sb.state.State.us> -> <datkinson@UsState.gov>
Feb 25 13:03:08 email postfix/smtpd[6891]: connect from localhost.localdomain[127.0.0.1]
Feb 25 13:03:08 email postfix/smtpd[6891]: DC79B4E018DD: client=localhost.localdomain[127.0.0.1]
Feb 25 13:03:08 email postfix/cleanup[6887]: DC79B4E018DD: message-id=<9803968.571203969787789.JavaMail.root@email>
Feb 25 13:03:09 email postfix/smtpd[6891]: disconnect from localhost.localdomain[127.0.0.1]
Feb 25 13:03:09 email postfix/qmgr[4704]: DC79B4E018DD: from=<hpulido@sb.state.State.us>, size=2495, nrcpt=1 (queue active)
Feb 25 13:03:09 email amavis[4840]: (04840-05) FWD via SMTP: <hpulido@sb.state.State.us> -> <datkinson@UsState.gov>,BODY=7BIT 250 2.6.0 Ok, id=04840-05, from MTA([127.0.0.1]:10025): 250 2.0.0 Ok: queued as DC79B4E018DD
Feb 25 13:03:09 email amavis[4840]: (04840-05) Passed CLEAN, LOCAL [10.168.30.60] [10.168.30.60] <hpulido@sb.state.State.us> -> <datkinson@UsState.gov>, Message-ID: <9803968.571203969787789.JavaMail.root@email>, mail_id: eSNgxh+Nj1mc, Hits: -0.195, size: 1878, queued_as: DC79B4E018DD, 661 ms
Feb 25 13:03:09 email postfix/smtp[6888]: 474BD4E018C8: to=<datkinson@UsState.gov>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.75, delays=0.08/0/0.01/0.66, dsn=2.0.0, status=sent (250 2.0.0 Ok: queued as DC79B4E018DD)
Feb 25 13:03:09 email postfix/qmgr[4704]: 474BD4E018C8: removed
Feb 25 13:03:09 email postfix/smtp[7385]: DC79B4E018DD: enabling PIX workarounds: disable_esmtp delay_dotcrlf for mail.UsState.gov[???.87.64.241]:25
Feb 25 13:03:09 email postfix/smtp[7385]: DC79B4E018DD: to=<datkinson@UsState.gov>, relay=mail.UsState.gov[???.87.64.241]:25, delay=0.22, delays=0.11/0.01/0.04/0.04, dsn=2.0.0, status=sent (250 UsState-imss1.UsState.gov: Message accepted for delivery)
Feb 25 13:03:09 email postfix/qmgr[4704]: DC79B4E018DD: removed

<<< <<<< <<<< <<<< <<<< End of outgoing message I think <<<<

I Can't seam to find any additional information in the /opt/zimbra/log/ dir

James

[Bill Brock]

firewall.sb.state.State.us - if this is the rejected server you are talking about, the name doesn't match the records from the DNS info you posted earlier.

In the above, "firewall" is the host and "sb.state.State.us" is the domain. Plus the domain in your prior post is "state.UsState.us".

Thus these records aren't being found.

[jrefl5]

Bill,

What is rejecting is either "UsState-exch0.UsState.gov" or "user@UsState.gov", I can't tell from the message.

firewall.sb.>>>>> is the firewall between zimbra and public internet and is doing NAT.

I have an entry for it in my /etc/hosts file on zimbra

10.168.30.1 firewall.sb...... firewall

ALL e-mail passed through that server to get to the DMZ servers which are all on the 10.168.30.0/24 network

JAmes

[Bill Brock]

I don't see an A record in the DNS info that you posted for that host. That is why it is being rejected.

If they can't setup an A record add that IP to your trusted networks in the Admin GUI.

[jrefl5]

Quote:

Originally Posted by Bill Brock

I don't see an A record in the DNS info that you posted for that host. That is why it is being rejected.

If they can't setup an A record add that IP to your trusted networks in the Admin GUI.

Do they need an a record for the *-exch? servers?

[Bill Brock]

If it is sending mail as a mail server then it needs an MX record and an A record.

It looks like the MX record for that domain is pointing to "mail" and "mail" also has an A record. If they are using another mail server "exch" or what ever then it needs an MX record as well as an A record.

Or I think you can ad the IP to the trusted networks parameter.

[Bill Brock]

You might even get away with adding the IP and host to your Hosts file. Not sure about that.

[jrefl5]

Bill,
I'm going to try to get the owners of UsState-exch0.UsState.gov to get it setup in dns

Thanks for your help. I'll update if I get them to make the change, and it works.

James