I can't send large email messages from exim 3.12 (debian) to an Exchange
server when passing packets through a CISCO PIX Firewall.
It seems the CISCO PIX firewall doesn't like large packets:
ping -s 2000 <mailserver ip> results in an addional 30ms latency,
ping -s 3000 <mailserver ip> results in no packets being returned
(the mail server is on an unloaded T1)
Any clue into what I can do to fix this on my end would be helpful,
hopefully without having to ditch the debian package and compile it
myself. Not that it's a problem compiling things myself, it's just nice
to have debian's backported security updates and whatever.
Is it just because exim likes to use large packets if at all
possible maybe? And other mailer daemons don't do this or what? I know
the mail server on the other end can recieve large attachements from
other people.
Here's the log errors:
2001-07-30 17:24:58 SMTP timeout while connected to mail.instantdx.com
[64.244.1
58.226] after end of data (2285 bytes written): Connection timed out
2001-07-30 17:24:58 someone@???: remote_smtp transport deferred:
Conne
ction timed out: SMTP timeout while connected to mail.instantdx.com
[64.244.158.
226] after end of data (2285 bytes written)
etc etc etc, the offending message can get stuck in the queue for days
Here's lots of debug info from exim, tcpdump, pings, etc:
dexter:/var/log/exim# exim -d9 -M 15RKNO-0005SA-00
Exim version 3.12 debug level 9 uid=0 gid=0
probably Berkeley DB version 1.8x (native mode)
Caller is an admin user
Caller is a trusted user
set_process_info: 13258 3.12 delivering specified messages
delivering message 15RKNO-0005SA-00
set_process_info: 13258 3.12 delivering 15RKNO-0005SA-00
Opened spool file 15RKNO-0005SA-00-H
user=root uid=0 gid=0 sender=someone@???
sender_fullhost = paradise.steem.com [216.4.165.11]
sender_rcvhost = paradise.steem.com ([216.4.165.11] ident=gid)
sender_local=0 resent=no ident=gid
Non-recipients:
Empty Tree
---- End of tree ----
recipients_count=1
body_linecount=51 message_linecount=12
Writing spool header file
Size of headers = 530
running system filter as uid=0 gid=0 euid=8 egid=8
Filter: start of processing
Filter: end of processing
Delivery address list:
someone@???
locked /var/spool/exim/db/retry.lockfile
opened DB file /var/spool/exim/db/retry: flags=0
>>>>>>>>>>>>>>>>>>>>>>>>
Considering: someone@???
search_open: dbm "/etc/exim/dbfiles/virtual.db"
search_find: file="/etc/exim/dbfiles/virtual.db"
key="instantdx.com" partial=-1
LRU list:
1/etc/exim/dbfiles/virtual.db
End
internal_search_find: file="/etc/exim/dbfiles/virtual.db"
type=dbm key="instantdx.com"
file lookup required for instantdx.com
in /etc/exim/dbfiles/virtual.db
lookup failed
instantdx.com in local_domains? no (end of list)
unique = someone@???
dbfn_read: key=R:instantdx.com
dbfn_read: key=R:someone@???
someone@???: queued for routing
>>>>>>>>>>>>>>>>>>>>>>>>
After directing:
Local addresses:
Remote addresses:
Failed addresses:
Addresses to be routed:
someone@???
Deferred addresses:
>>>>>>>>>>>>>>>>>>>>>>>>
routing someone@???, domain instantdx.com
lookuphost router called for someone@???
dns lookup: route_domain = instantdx.com
DNS lookup of instantdx.com (MX) succeeded
Actual local interface address is 127.0.0.1
Actual local interface address is 216.4.165.254
Actual local interface address is 216.4.165.253
Actual local interface address is 216.4.165.252
Actual local interface address is 216.4.165.251
Actual local interface address is 216.4.165.250
Actual local interface address is 216.4.165.249
Actual local interface address is 216.4.165.248
Actual local interface address is 216.4.165.247
Actual local interface address is 216.4.165.246
Actual local interface address is 216.4.165.245
Actual local interface address is 216.4.165.244
Actual local interface address is 216.4.165.243
Actual local interface address is 216.4.165.242
Actual local interface address is 216.4.165.241
Actual local interface address is 216.4.165.240
fully qualified name = instantdx.com
host_find_bydns yield = HOST_FOUND (2); returned hosts:
mail.instantdx.com 64.244.158.226 1 179
queued for remote_smtp transport: local_part=someone domain=instantdx.com
routed by lookuphost router:
deliver to someone@???
transport: remote_smtp
host mail.instantdx.com [64.244.158.226] MX=1
search_tidyup called
>>>>>> Remote deliveries >>>>>>
remote_smtp transport entered
someone@???
checking status of mail.instantdx.com
locked /var/spool/exim/db/retry.lockfile
opened DB file /var/spool/exim/db/retry: flags=0
dbfn_read: key=T:mail.instantdx.com:64.244.158.226
dbfn_read: key=T:mail.instantdx.com:64.244.158.226:15RKNO-0005SA-00
no host retry record
mail.instantdx.com [64.244.158.226] status = usable
host in ? no (option unset)
delivering 15RKNO-0005SA-00 to mail.instantdx.com [64.244.158.226]
(someone@???)
set_process_info: 13258 3.12 delivering 15RKNO-0005SA-00 to
mail.instantdx.com [64.244.158.226] (someone@???)
Connecting to mail.instantdx.com [64.244.158.226] ... connected
SMTP<< 220 ********************************************************************************2*************
SMTP>> HELO dexter.steem.com
SMTP<< 250 OK
SMTP>> MAIL FROM:<someone@???>
SMTP<< 250 OK - mail from <someone@???>
SMTP>> RCPT TO:<someone@???>
SMTP<< 250 OK - Recipient <someone@???>
SMTP>> DATA
SMTP<< 354 Send data. End with CRLF.CRLF
SMTP>> writing message and terminating "."
writing data block size=2285 timeout=300
dexter:~# tcpdump port 25 and host 64.244.158.226
tcpdump: listening on eth0
18:55:22.751957 dexter.steem.com.4752 > airdoc.instantdx.com.smtp: S 2265671710:2265671710(0) win 32120 <mss 1460,sackOK,timestamp 311475428[|tcp]> (DF)
18:55:22.761050 airdoc.instantdx.com.smtp > dexter.steem.com.4752: S 1354070525:1354070525(0) ack 2265671711 win 8280 <mss 1380> (DF)
18:55:22.761112 dexter.steem.com.4752 > airdoc.instantdx.com.smtp: . ack 1 win 32120 (DF)
18:55:22.773266 airdoc.instantdx.com.smtp > dexter.steem.com.4752: P 1:101(100) ack 1 win 8280 (DF)
18:55:22.773319 dexter.steem.com.4752 > airdoc.instantdx.com.smtp: . ack 101 win 32120 (DF)
18:55:22.773771 dexter.steem.com.4752 > airdoc.instantdx.com.smtp: P 1:24(23) ack 101 win 32120 (DF)
18:55:22.781209 airdoc.instantdx.com.smtp > dexter.steem.com.4752: P 101:109(8) ack 24 win 8257 (DF)
18:55:22.781566 dexter.steem.com.4752 > airdoc.instantdx.com.smtp: P 24:53(29) ack 109 win 32120 (DF)
18:55:22.789756 airdoc.instantdx.com.smtp > dexter.steem.com.4752: P 109:147(38) ack 53 win 8228 (DF)
18:55:22.790100 dexter.steem.com.4752 > airdoc.instantdx.com.smtp: P 53:86(33) ack 147 win 32120 (DF)
18:55:22.798178 airdoc.instantdx.com.smtp > dexter.steem.com.4752: P 147:191(44) ack 86 win 8195 (DF)
18:55:22.798464 dexter.steem.com.4752 > airdoc.instantdx.com.smtp: P 86:92(6) ack 191 win 32120 (DF)
18:55:22.806930 airdoc.instantdx.com.smtp > dexter.steem.com.4752: P 191:227(36) ack 92 win 8189 (DF)
18:55:22.807476 dexter.steem.com.4752 > airdoc.instantdx.com.smtp: P 92:1472(1380) ack 227 win 32120 (DF)
18:55:22.807512 dexter.steem.com.4752 > airdoc.instantdx.com.smtp: P 1472:2377(905) ack 227 win 32120 (DF)
18:55:22.827618 airdoc.instantdx.com.smtp > dexter.steem.com.4752: . ack 92 win 8189 (DF)
18:55:23.060741 dexter.steem.com.4752 > airdoc.instantdx.com.smtp: P 92:1472(1380) ack 227 win 32120 (DF)
18:55:23.210752 dexter.steem.com.4729 > airdoc.instantdx.com.smtp: P 2117857672:2117859052(1380) ack 1827647726 win 32120 (DF)
18:55:23.580739 dexter.steem.com.4752 > airdoc.instantdx.com.smtp: P 92:1472(1380) ack 227 win 32120 (DF)
18:55:24.280741 dexter.steem.com.4610 > airdoc.instantdx.com.smtp: P 1362921722:1362923102(1380) ack 399178071 win 32120 (DF)
18:55:24.620740 dexter.steem.com.4752 > airdoc.instantdx.com.smtp: P 92:1472(1380) ack 227 win 32120 (DF)
18:55:26.700759 dexter.steem.com.4752 > airdoc.instantdx.com.smtp: P 92:1472(1380) ack 227 win 32120 (DF)
18:55:30.860742 dexter.steem.com.4752 > airdoc.instantdx.com.smtp: P 92:1472(1380) ack 227 win 32120 (DF)
18:55:39.180744 dexter.steem.com.4752 > airdoc.instantdx.com.smtp: P 92:1472(1380) ack 227 win 32120 (DF)
18:55:55.820745 dexter.steem.com.4752 > airdoc.instantdx.com.smtp: P 92:1472(1380) ack 227 win 32120 (DF)
18:56:01.520738 dexter.steem.com.4740 > airdoc.instantdx.com.smtp: P 2153116905:2153118285(1380) ack 1381437712 win 32120 (DF)
26 packets received by filter
0 packets dropped by kernel
dexter:/var/log/exim# ping -s 3000 airdoc.instantdx.com
PING airdoc.instantdx.com (64.244.158.226): 3000 data bytes
--- airdoc.instantdx.com ping statistics ---
5 packets transmitted, 0 packets received, 100% packet loss
dexter:/var/log/exim# ping -s 2090 airdoc.instantdx.com
PING airdoc.instantdx.com (64.244.158.226): 2090 data bytes
2098 bytes from 64.244.158.226: icmp_seq=0 ttl=122 time=45.5 ms
2098 bytes from 64.244.158.226: icmp_seq=1 ttl=122 time=50.8 ms
2098 bytes from 64.244.158.226: icmp_seq=2 ttl=122 time=48.2 ms
2098 bytes from 64.244.158.226: icmp_seq=3 ttl=122 time=46.9 ms
2098 bytes from 64.244.158.226: icmp_seq=4 ttl=122 time=48.0 ms
2098 bytes from 64.244.158.226: icmp_seq=5 ttl=122 time=49.4 ms
2098 bytes from 64.244.158.226: icmp_seq=6 ttl=122 time=45.4 ms
2098 bytes from 64.244.158.226: icmp_seq=7 ttl=122 time=50.5 ms
2098 bytes from 64.244.158.226: icmp_seq=8 ttl=122 time=58.7 ms
2098 bytes from 64.244.158.226: icmp_seq=9 ttl=122 time=46.9 ms
2098 bytes from 64.244.158.226: icmp_seq=10 ttl=122 time=45.6 ms
2098 bytes from 64.244.158.226: icmp_seq=11 ttl=122 time=46.8 ms
--- airdoc.instantdx.com ping statistics ---
12 packets transmitted, 12 packets received, 0% packet loss
round-trip min/avg/max = 45.4/48.5/58.7 ms
+------------------------------------+-----------------------------+
| Stephen Grecni | /"\ |
| Hacker | \ / ASCII Ribbon Campaign |
| | X Against HTML E-Mail |
| Build your world. http://STEEM.com | / \ <!-- <HTML> --> |
+------------------------------------+-----------------------------+