Zimbra offers Open Source email server software and shared calendar for Linux and the Mac
Go Back   Zimbra :: Forums > Zimbra Collaboration Suite > Administrators
Reload this Page lmtp delivery ignores hosts file

Welcome to the Zimbra :: Forums!
Welcome, if you would like to post a comment please register. We also encourage you to explore all things Zimbra with our team and members of the community.

Reply
 
LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 09-28-2010, 12:26 PM
Senior Member
  
Posts: 54
Default lmtp delivery ignores hosts file
We are running a single server instance of Release 6.0.5_GA_2213.RHEL5_64_20100203001950 CentOS5_64 FOSS edition. It is nat'd, and on top of that, we have an nginx proxy in front of it to help with migration from another server (it looks up the user and routes them to the old or the new server depending on if they've been migrated yet). We setup dns for the server's name to point to the proxy for the migration, and have the hosts file on the zimbra server set for that name to point to its internal network address.

When zimbra tried to deliver mail however, it tried to connect to the proxy, not the internal address, i.e. it's using dns instead of the hosts file, though nsswitch.conf has "files dns". I've manually reconfigured all the accounts to change zimbraMailTransport to use a name that points to the internal server address, but new accounts get the real name, and thus don't work until that tweak is made. I can reconfigure the proxy and firewalls so that port 7025 gets routed properly, but that's a lot of work that shouldn't be necessary... I'm also concerned that when we remove the proxy, it'll try to use the public address then, requiring the firewall to loopback the public address, which I'm not sure it does.

Ideally, it would use the hosts file properly, but failing that, if there's a simple setting that I can set to give the mailtransport the internal name without disrupting other things, that would make things work smoothly at least...
Attached Images
File Type: png zimbra-mailtransport-loop.png (24.2 KB, 18 views)
Reply With Quote
  #2 (permalink)  
Old 09-30-2010, 01:47 PM
Moderator
  
Posts: 1,209
Default
Many firewalls which do NAT create a series of NAT rules which rewrite traffic to go through the public IP, thereby insuring inter-zone traffic is examined by the firewall.

SonicWalls do this when you run the Public Server Wizard for example.

Since your diagram shows a firewall between the proxy and the Zimbra server, any chance that something like this is happening? If so, simply adding another rule set to the firewall to allow translated, NAT'd traffic just between those two servers should be fairly straightforward -- depending on which firewall you are using of course!

Hope that helps,
Mark
__________________
___________________________________
L. Mark Stone, CIO


"Uptime. All the time."

477 Congress Street | Portland, ME 04101-3431 | (207) 772-5678

proactive maintenance and monitoring | technology consulting
Zimbra groupware | EMR implementations | private cloud hosting
Reply With Quote
  #3 (permalink)  
Old 09-30-2010, 03:13 PM
Senior Member
  
Posts: 54
Default
No, this is strictly internal to zimbra - the mta is trying to deliver the mail to the mail store using lmtp. The mail store doesn't *have* to be on the same box (and in fact our main zimbra instance is just such a cluster)
Reply With Quote
Reply

« Previous Thread | Today's Posts or Week's Posts | Next Thread »

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode


Similar Threads

Product Information

Why Join?

Registering let's you ask questions, makes it easier to search, displays any files attached to posts, and notifies you about replies.

blog.zimbra.com


Home - Blog - Contact Us - Archive - Top


 

SEO by vBSEO ©2011, Crawlability, Inc.