Page 2 of 3 FirstFirst 123 LastLast
Results 11 to 20 of 24

Thread: Delivery Failure Notification

  1. #11
    phoenix is offline Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,201
    Rep Power
    56

    Default

    Quote Originally Posted by withanh View Post
    MTA Trusted Networks:
    Code:
    127.0.0.0/8 192.168.2.0/24 5.6.7.8/29
    Note the 5.6.7.8/29 is my public range (and is correct).
    That entry for the Public IP address is not necessary and shouldn't be in the Trusted Networks if you're behind a NAT router, you should remove it.
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

  2. #12
    withanh is offline Active Member
    Join Date
    Dec 2011
    Posts
    30
    Rep Power
    3

    Default

    Quote Originally Posted by Brad_C View Post
    Have you tried sending an email by hand? By this I mean telnet to your SMP server port 25 and feed it the required data?

    You could then have a look at the postfix logs to see why it might have rejected the mail.
    Doing it this way you can abort the process before it actually sends any mail and get greater control over the diagnostic process.

    Something like this :
    telnet 1.2.3.4 25
    helo blogs.com
    mail from: fred@bloggs.com
    rcpt to: test@user.com

    Here is where it will either give you ok or the 55x error. You can terminate from there with 'quit' or continue on to enter some data into the mail body and send it out. Grab the SMTP RFC. It's very easy and makes debugging mail problems like this very easy.

    Apologies if I'm teaching you how to suck eggs.
    No apology necessary. I have not tried that. I'll give it a go.

    Thanks for the idea!
    For every expert, there is an equal and opposite expert - Arthur C Clarke's Fourth Law

  3. #13
    withanh is offline Active Member
    Join Date
    Dec 2011
    Posts
    30
    Rep Power
    3

    Default

    Quote Originally Posted by phoenix View Post
    That entry for the Public IP address is not necessary and shouldn't be in the Trusted Networks if you're behind a NAT router, you should remove it.
    Will do. Could that be what's causing my problem?
    For every expert, there is an equal and opposite expert - Arthur C Clarke's Fourth Law

  4. #14
    withanh is offline Active Member
    Join Date
    Dec 2011
    Posts
    30
    Rep Power
    3

    Default

    Quote Originally Posted by phoenix View Post
    That entry for the Public IP address is not necessary and shouldn't be in the Trusted Networks if you're behind a NAT router, you should remove it.
    When I take the public IP out, it squawks about it. I'm guessing it's a Split-DNS issue, but it's using a local DNS server (Windows A/D DNS) that I believe does show things correctly. I'll run the Split-DNS tests and report those as well.



    Code:
    root@mail:~# dig mydomain.com mx
    
    ; <<>> DiG 9.4.2-P2.1 <<>> mydomain.com mx
    ;; global options:  printcmd
    ;; Got answer:
    ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 27729
    ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
    
    ;; QUESTION SECTION:
    ;mydomain.com.                   IN      MX
    
    ;; ANSWER SECTION:
    mydomain.com.            3600    IN      MX      10 mail.mydomain.com.
    
    ;; ADDITIONAL SECTION:
    mail.mydomain.com.       3600    IN      A       192.168.2.5
    
    ;; Query time: 3 msec
    ;; SERVER: 192.168.2.200#53(192.168.2.200)
    ;; WHEN: Thu May  3 19:19:09 2012
    ;; MSG SIZE  rcvd: 66
    Code:
    root@mail:~# dig mydomain.com any
    
    ; <<>> DiG 9.4.2-P2.1 <<>> mydomain.com any
    ;; global options:  printcmd
    ;; Got answer:
    ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 45663
    ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 6, AUTHORITY: 0, ADDITIONAL: 3
    
    ;; QUESTION SECTION:
    ;mydomain.com.                   IN      ANY
    
    ;; ANSWER SECTION:
    mydomain.com.            600     IN      A       192.168.2.199
    mydomain.com.            600     IN      A       192.168.2.200
    mydomain.com.            3600    IN      NS      dns2.mydomain.com.
    mydomain.com.            3600    IN      NS      dns1.mydomain.com.
    mydomain.com.            3600    IN      SOA     dns1.mydomain.com. hostmaster.mydomain.com. 6577 900 600 86400 3600
    mydomain.com.            3600    IN      MX      10 mail.mydomain.com.
    
    ;; ADDITIONAL SECTION:
    dns2.mydomain.com.  3600    IN      A       192.168.2.199
    dns1.mydomain.com.  3600    IN      A       192.168.2.200
    mail.mydomain.com.  3600    IN      A       192.168.2.5
    
    ;; Query time: 0 msec
    ;; SERVER: 192.168.2.200#53(192.168.2.200)
    ;; WHEN: Thu May  3 19:23:26 2012
    ;; MSG SIZE  rcvd: 222
    Code:
    root@mail:~# host mail.mydomain.com
    mail.mydomain.com has address 192.168.2.5
    mail.mydomain.com mail is handled by 10 mail.mydomain.com.
    Code:
    root@mail:~# cat /etc/resolv.conf 
    search mydomain.com
    nameserver 192.168.2.200
    nameserver 192.168.2.199
    Code:
    root@mail:~# cat /etc/hosts
    127.0.0.1 localhost.localdomain localhost
    192.168.2.5 3(NXDOMAIN 3(NXDOMAIN
    192.168.2.5 mail.mydomain.com
    For every expert, there is an equal and opposite expert - Arthur C Clarke's Fourth Law

  5. #15
    justdave is offline Trained Alumni
    Join Date
    Nov 2008
    Location
    Grand Rapids, MI
    Posts
    123
    Rep Power
    6

    Default

    Yeah, he was mistaken, you need those. Any IP addresses you actually own are fair game for inclusion there, as long as you trust them as a source of mail. Any IP addresses that actually belong to the machine you're running on are required.

  6. #16
    phoenix is offline Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,201
    Rep Power
    56

    Default

    Quote Originally Posted by justdave View Post
    Yeah, he was mistaken, you need those.
    No, he wasn't mistaken and you don't 'need' the Public IP in that field. The 'trust' of any public IP in that field is moot, if it gets compromised it can use your mail server as an open relay without authentication.

    What is the entry you have in this highlighted line of your hosts file?

    Quote Originally Posted by withanh View Post
    Code:
    root@mail:~# cat /etc/hosts
    127.0.0.1 localhost.localdomain localhost
    192.168.2.5 3(NXDOMAIN 3(NXDOMAIN
    192.168.2.5 mail.mydomain.com
    I'd suggest you remove that enrty completely, whatever it is.

    This entry in the hosts file is incorrect:

    Code:
    192.168.2.5 mail.mydomain.com
    It should look like this:

    Code:
    192.168.2.5 mail.mydomain.com mail
    The 'host' command should actually be used as shown in the Split DNS article:

    Code:
    host $(hostname)
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

  7. #17
    withanh is offline Active Member
    Join Date
    Dec 2011
    Posts
    30
    Rep Power
    3

    Default

    What is the entry you have in this highlighted line of your hosts file?
    Not sure, I didn't put it in. I will remove it.

    Code:
    192.168.2.5 mail.mydomain.com
    It should look like this:

    Code:
    192.168.2.5 mail.mydomain.com mail
    Done

    The 'host' command should actually be used as shown in the Split DNS article:

    Code:
    host $(hostname)
    Apologies, I must have miskeyed it when I first ran it because it gave me an error when I did it that way. I just did it again and it replied properly.
    Code:
    root@mail:~# host $(hostname)
    mail.mydomain.com has address 192.168.2.5
    mail.mydomain.com mail is handled by 10 mail.mydomain.com.
    For every expert, there is an equal and opposite expert - Arthur C Clarke's Fourth Law

  8. #18
    withanh is offline Active Member
    Join Date
    Dec 2011
    Posts
    30
    Rep Power
    3

    Default

    I was hoping that things were good, but after 3 days of no mail errors, the same thing happened again. I was in an email conversation with my parents and we went back and forth a couple of times, then I got a bounce, resent it a few times and it finally went.

    This is really strange, I don't really understand what is going on with this.

    Any other ideas on what to check?

    Thanks!

    h
    For every expert, there is an equal and opposite expert - Arthur C Clarke's Fourth Law

  9. #19
    phoenix is offline Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,201
    Rep Power
    56

    Default

    You're going to have to provide some information from the log files around the period when these errors are occurring.
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

  10. #20
    withanh is offline Active Member
    Join Date
    Dec 2011
    Posts
    30
    Rep Power
    3

    Default

    Will do. Which log files do you need info out of? Sorry I don't know and want to make sure I get the correct info so you can help me.
    For every expert, there is an equal and opposite expert - Arthur C Clarke's Fourth Law

Page 2 of 3 FirstFirst 123 LastLast

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Receiving failure delivery messages.
    By pradip in forum Administrators
    Replies: 3
    Last Post: 12-10-2011, 03:32 AM
  2. Replies: 1
    Last Post: 04-22-2011, 04:44 AM
  3. Replies: 0
    Last Post: 02-25-2011, 04:05 AM
  4. No notification of mail failure
    By Marc Wilson in forum Administrators
    Replies: 6
    Last Post: 02-04-2011, 07:01 AM
  5. Temporary message delivery failure
    By goetzi in forum Administrators
    Replies: 40
    Last Post: 06-25-2007, 10:41 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •