MTA Network

[cartaysm]

I sent out about 7k emails yesterday and got this as a warning;
you may need to increase the master.cf smtp-amavis process limit

So I did a quick search and found an interesting thread that stated;
"If the MTA Networks includes the IP of your router then you have become a open relay"

I know this has nothing to do with my warning but I was curious if I have this problem, so I ran;
su -zimbra
zmprov gs 'zmhostname' zimbraMtaMyNetworks

And got this;
#name mysite.com
zimbraMtaMyNetworks: 127.0.0.0/8 myinternalip/24 myexternalip/30

Does anyone have any insight as to if I am running an open relay and if so how do I stop it?

[phoenix]

Quote:

Originally Posted by cartaysm

Does anyone have any insight as to if I am running an open relay and if so how do I stop it?

Search the internet for sites that offer an 'open relay' test service and try one (or more) of those. You can also go to the wiki and search (or search the forums) for "zimbraMtaMyNetworks" for details. You should not have your Public IP in that setting if you're behind a NAT router.

[cartaysm]

Thank you for the quick reply! So I need to do the following;
su -zimbra
zmprov modifyServer mysite.com zimbraMtaMyNetworks '127.0.0.0/8 internalip/24'

Correct?

Also do you know a good safe site to check for open relay?

[phoenix]

Quote:

Originally Posted by cartaysm

Thank you for the quick reply! So I need to do the following;
su -zimbra
zmprov modifyServer mysite.com zimbraMtaMyNetworks '127.0.0.0/8 internalip/24'

Correct?

Yes.

Quote:

Originally Posted by cartaysm

Also do you know a good safe site to check for open relay?

Any of them on the internet, none of them will be able to relay through your server.

[cartaysm]

Dont know why, but now I cant send emails with the external ip taken out

[cartaysm]

method: [unknown]
msg: system failure: Unable to send message
code: service.FAILURE
detail: soap:Receiver


Okay after a few minutes of panic I got it working again but it has my external ip in it.

so I have my server on 10.10.130.100, and I have this command currently;
zmprov modifyServer zimbra.example.com zimbraMtaMyNetworks '127.0.0.0/8 10.10.130.0/24 externalIP/30'

Any suggestions on proper format? Have reading http://wiki.zimbra.com/wiki/ZimbraMtaMyNetworks but again it doesnt work if I take out external...

[phoenix]

Do you have a Split DNS set-up on this LAN (you should)? If you have, go to the 'Verify....' section of the article run all the commands there and check the configuration is correct.

[cartaysm]

Thanks for your help phoenix. I followed the split DNS and got similar results on a test box but not exactly, and then I started thinking about what you said and went back to my production box and did a test for open relay with my current settings and everything was denied. So I am not sure if I have everything setup exactly the way its supposed to be but its been working for a year and my scare of a open relay was nothing more than a scare...

Thanks again.