Re: [Exim] sender verify failed, why?

Pàgina inicial
Delete this message
Reply to this message
Autor: Rejo Zenger
Data:  
A: exim-users
Assumpte: Re: [Exim] sender verify failed, why?
++ 23/12/03 12:56 -0600 - Edgar Lovecraft:
>> The server exim is running on is set up that it will do it's lookups
>> from another local machine. That one runs bind 9, and is configured to
>> look it up if it doesn't know the answer. If that fails, it'll try one
>> of two DNS servers from my ISP.
>[...]
>
>The ISP dns servers will not resolve the krikkit.local domain for which you
>are forwarding the email too (a guess, but propably a good one).


That's right. The DNS server I'm running locally does have the zone for
local. All other stuff is either cached or is taken from the ISP's DNS.

>What does the Routers section of the exim.conf file look like?


Here you go:

| begin routers

|
| [comments]

|
|   dnslookup:
|     driver = dnslookup
|     domains = ! +local_domains
|     transport = remote_smtp
|     ignore_target_hosts = 0.0.0.0 : 127.0.0.0/8
|     no_more

|
|   # virtual domains, match on local username
|   virdom_complete:
|     driver = redirect
|     domains = lsearch;/etc/exim/domains-virtual
|     data = ${lookup {$local_part} lsearch* {/etc/exim/aliases-$domain} }
|     pipe_transport = address_pipe

|
|   # virtual domains, match on local=* usernames
|   virdom_partial:
|     driver = redirect
|     domains = lsearch;/etc/exim/domains-virtual
|     local_part_prefix = *=
|     data = ${lookup {$local_part_prefix} lsearch {/etc/exim/aliases-$domain} }
|     pipe_transport = address_pipe

|
|   # virtual domains, match on local-* usernames
|   virdom_partial2:
|     driver = redirect
|     domains = lsearch;/etc/exim/domains-virtual
|     local_part_prefix = *-
|     data = ${lookup {$local_part_prefix} lsearch {/etc/exim/aliases-$domain} }
|     pipe_transport = address_pipe

|
|   # virtual domains, match all
|   virdom_catchall:
|     driver = redirect
|     domains = lsearch;/etc/exim/domains-virtual-ca
|     data = ${lookup {$domain} lsearch {/etc/exim/aliases-catchall} }
|     pipe_transport = address_pipe

|
| [comments]

|
|   #RZ ### RZ: mailman setup
|   mailman_router:
|     driver = accept
|     require_files = MAILMAN_HOME/lists/$local_part/config.pck
|     local_part_suffix_optional
|     local_part_suffix = -bounces : -bounces+* : \
|                         -confirm+* : -join : -leave : \
|                         -owner : -request : -admin
|     transport = mailman_transport
|   #RZ ### RZ

|
|   system_aliases:
|     driver = redirect
|     allow_fail
|     allow_defer
|     data = ${lookup{$local_part}lsearch{/etc/aliases}}
|     file_transport = address_file
|     pipe_transport = address_pipe

|
| [comments]

|
|   procmail:
|     driver = accept
|     check_local_user
|     transport = procmail_pipe

|
|   localuser:
|     driver = accept
|     check_local_user
|     transport = local_delivery
|     cannot_route_message = Unknown user


Complete file online at <http://rejo.zenger.nl/tmp/exim.conf>.

>Instead of passing the forward to a dnslookup router/transport, why not
>just pass the mailing host information directly to the transport?


I'm not completely sure what you propose here, but I guess the answer is
my virtual hosts and aliasing setup.

>> It looks reliabel to me and in fact, I have never had any problems only
>> until recently. On the local network, there's not that mucg traffic and
>> definatelly not so much that it'll cause timeouts.
>[...]
>
>Did anything 'change' recently? (updates, new software installs, add new
>servers/workstions to the network, change of hardware, etc.)


Yes and no. I have thought about that as well, but I couldn't find a
thing that actually has been influencing.

Recent stuff:

- entire mailserver has been migrated to a new box (better processor,
more memory, more discspace, etc), little bit later an extra disc and
more memory was added - most of configuration was taken over from old
machine, though os and most of the applications has been upgraded to
newer versions

- new laptop as workstation

- couple of days ago powercut of several hours, causing all systems to
crash - mailserver didn't seem to have any damage

- no changes to other servers, apart from the change of ip address in
iptables for forwarding smtp and http traffic and update of zonefile
to reflect new ip mailserver

It's a bit too much to pin down the problem I'm afraid. :(

>>Again, the nameserver to ask is one on the local network and which
>>doesn't have a lot more to do than being nameserver and firewall.
>
>Then I guess I am at a loss without some debugging information.
> Is the server heavily loaded when the errors occur?
> Can you recreate the problem at all?


Nope. Since I have moved exim (and mailman and apache) to this new box
loads were lowered definatelly. Current load average: 0.00, 0.00, 0.00.
I can't reproduce it, as I don't know where to start.

I just have the problem occasianly. Just like this afternoon:

  rejo@???
    (generated from rejo@???)
    Unrouteable address


With headers of bounce:

  Received: from damogran.local [10.0.0.1/34359] (helo=mail.rz.nl.eu.org)
          by krikkit.v6.rz.nl.eu.org with esmtp id 1AYpPN-0002H0-JF
          for rejo@???; Tue, 23 Dec 2003 17:29:21 +0100
  Envelope-to: rejo@???
  Received: from mxzilla3.xs4all.nl [194.109.6.49]:4205 (helo=mxzilla3.xs4all.nl)
          by mail.rz.nl.eu.org with esmtp id 1AYpPT-0004ni-KC
          for rejo@???; Tue, 23 Dec 2003 17:29:27 +0100


And the relevant log entries:

[...]
2003-12-23 17:29:20 1AYpPF-0004nO-K6 <= sister@??? H=mxzilla1.xs4all.nl [194.109.6.54] P=esmtp S=4482
id=7$r6$$2ds27976ce776cj-92$n3@5w2y870zp T="Protect your PC from viruses tty bang f ireboat conceive cexyy smkbla" from <sister@???> for rejo@??? 2003-12-23 17:29:20 SMTP connection from mxzilla1.xs4all.nl [194.109.6.54] closed by QUIT
2003-12-23 17:29:22 1AYpPM-0004nL-5g <= susanenruud@??? H=hnexfe10.hetnet.nl [195.121.6.176] P=esmtp S=145172 id=HNEXFE10WNoqiGAeGnO0000db22@??? T="Undelivered Message" from <susanenruud@???> for charter@??? 2003-12-23 17:29:22 1AYpPM-0004nL-5g => blackhole (DATA ACL discarded recipients)
2003-12-23 17:29:22 1AYpPM-0004nL-5g Completed
2003-12-23 17:29:22 SMTP connection from hnexfe10.hetnet.nl [195.121.6.176] closed by QUIT
2003-12-23 17:29:23 1AYpPM-0004nM-67 <= susanenruud@??? H=hnexfe10.hetnet.nl [195.121.6.176] P=esmtp S=145125 id=HNEXFE10WNoqiGAeGnO0000db22@??? T="Undelivered Message" from <susanenruud@???> for stembureau@???
2003-12-23 17:29:23 1AYpPM-0004nM-67 => blackhole (DATA ACL discarded recipients)
2003-12-23 17:29:23 1AYpPM-0004nM-67 Completed
2003-12-23 17:29:23 SMTP connection from hnexfe10.hetnet.nl [195.121.6.176] closed by QUIT
2003-12-23 17:29:25 1AYpPF-0004nO-K6 ** rejo@??? <rejo@???>: Unrouteable address
2003-12-23 17:29:25 1AYpPR-0004nd-C7 <= <> R=1AYpPF-0004nO-K6 U=mail P=local S=5315 T="Mail delivery failed: returning message to sender" from <> for sister@???
2003-12-23 17:29:25 1AYpPF-0004nO-K6 Completed
[...]

I just simply don't know where to look...

--
Rejo Zenger <rejo@???> - http://rejo.zenger.nl - PGP 0x75FC50F3