++ 23/12/03 12:56 -0600 - Edgar Lovecraft:
>> The server exim is running on is set up that it will do it's lookups
>> from another local machine. That one runs bind 9, and is configured to
>> look it up if it doesn't know the answer. If that fails, it'll try one
>> of two DNS servers from my ISP.
>[...]
>
>The ISP dns servers will not resolve the krikkit.local domain for which you
>are forwarding the email too (a guess, but propably a good one).
That's right. The DNS server I'm running locally does have the zone for
local. All other stuff is either cached or is taken from the ISP's DNS.
>What does the Routers section of the exim.conf file look like?
Here you go:
| begin routers
|
| [comments]
|
| dnslookup:
| driver = dnslookup
| domains = ! +local_domains
| transport = remote_smtp
| ignore_target_hosts = 0.0.0.0 : 127.0.0.0/8
| no_more
|
| # virtual domains, match on local username
| virdom_complete:
| driver = redirect
| domains = lsearch;/etc/exim/domains-virtual
| data = ${lookup {$local_part} lsearch* {/etc/exim/aliases-$domain} }
| pipe_transport = address_pipe
|
| # virtual domains, match on local=* usernames
| virdom_partial:
| driver = redirect
| domains = lsearch;/etc/exim/domains-virtual
| local_part_prefix = *=
| data = ${lookup {$local_part_prefix} lsearch {/etc/exim/aliases-$domain} }
| pipe_transport = address_pipe
|
| # virtual domains, match on local-* usernames
| virdom_partial2:
| driver = redirect
| domains = lsearch;/etc/exim/domains-virtual
| local_part_prefix = *-
| data = ${lookup {$local_part_prefix} lsearch {/etc/exim/aliases-$domain} }
| pipe_transport = address_pipe
|
| # virtual domains, match all
| virdom_catchall:
| driver = redirect
| domains = lsearch;/etc/exim/domains-virtual-ca
| data = ${lookup {$domain} lsearch {/etc/exim/aliases-catchall} }
| pipe_transport = address_pipe
|
| [comments]
|
| #RZ ### RZ: mailman setup
| mailman_router:
| driver = accept
| require_files = MAILMAN_HOME/lists/$local_part/config.pck
| local_part_suffix_optional
| local_part_suffix = -bounces : -bounces+* : \
| -confirm+* : -join : -leave : \
| -owner : -request : -admin
| transport = mailman_transport
| #RZ ### RZ
|
| system_aliases:
| driver = redirect
| allow_fail
| allow_defer
| data = ${lookup{$local_part}lsearch{/etc/aliases}}
| file_transport = address_file
| pipe_transport = address_pipe
|
| [comments]
|
| procmail:
| driver = accept
| check_local_user
| transport = procmail_pipe
|
| localuser:
| driver = accept
| check_local_user
| transport = local_delivery
| cannot_route_message = Unknown user
Complete file online at <
http://rejo.zenger.nl/tmp/exim.conf>.
>Instead of passing the forward to a dnslookup router/transport, why not
>just pass the mailing host information directly to the transport?
I'm not completely sure what you propose here, but I guess the answer is
my virtual hosts and aliasing setup.
>> It looks reliabel to me and in fact, I have never had any problems only
>> until recently. On the local network, there's not that mucg traffic and
>> definatelly not so much that it'll cause timeouts.
>[...]
>
>Did anything 'change' recently? (updates, new software installs, add new
>servers/workstions to the network, change of hardware, etc.)
Yes and no. I have thought about that as well, but I couldn't find a
thing that actually has been influencing.
Recent stuff:
- entire mailserver has been migrated to a new box (better processor,
more memory, more discspace, etc), little bit later an extra disc and
more memory was added - most of configuration was taken over from old
machine, though os and most of the applications has been upgraded to
newer versions
- new laptop as workstation
- couple of days ago powercut of several hours, causing all systems to
crash - mailserver didn't seem to have any damage
- no changes to other servers, apart from the change of ip address in
iptables for forwarding smtp and http traffic and update of zonefile
to reflect new ip mailserver
It's a bit too much to pin down the problem I'm afraid. :(
>>Again, the nameserver to ask is one on the local network and which
>>doesn't have a lot more to do than being nameserver and firewall.
>
>Then I guess I am at a loss without some debugging information.
> Is the server heavily loaded when the errors occur?
> Can you recreate the problem at all?
Nope. Since I have moved exim (and mailman and apache) to this new box
loads were lowered definatelly. Current load average: 0.00, 0.00, 0.00.
I can't reproduce it, as I don't know where to start.
I just have the problem occasianly. Just like this afternoon:
rejo@???
(generated from rejo@???)
Unrouteable address
With headers of bounce:
Received: from damogran.local [10.0.0.1/34359] (helo=mail.rz.nl.eu.org)
by krikkit.v6.rz.nl.eu.org with esmtp id 1AYpPN-0002H0-JF
for rejo@???; Tue, 23 Dec 2003 17:29:21 +0100
Envelope-to: rejo@???
Received: from mxzilla3.xs4all.nl [194.109.6.49]:4205 (helo=mxzilla3.xs4all.nl)
by mail.rz.nl.eu.org with esmtp id 1AYpPT-0004ni-KC
for rejo@???; Tue, 23 Dec 2003 17:29:27 +0100
And the relevant log entries:
[...]
2003-12-23 17:29:20 1AYpPF-0004nO-K6 <= sister@??? H=mxzilla1.xs4all.nl [194.109.6.54] P=esmtp S=4482
id=7$r6$$2ds27976ce776cj-92$n3@5w2y870zp T="Protect your PC from viruses tty bang f ireboat conceive cexyy smkbla" from <sister@???> for rejo@??? 2003-12-23 17:29:20 SMTP connection from mxzilla1.xs4all.nl [194.109.6.54] closed by QUIT
2003-12-23 17:29:22 1AYpPM-0004nL-5g <= susanenruud@??? H=hnexfe10.hetnet.nl [195.121.6.176] P=esmtp S=145172 id=HNEXFE10WNoqiGAeGnO0000db22@??? T="Undelivered Message" from <susanenruud@???> for charter@??? 2003-12-23 17:29:22 1AYpPM-0004nL-5g => blackhole (DATA ACL discarded recipients)
2003-12-23 17:29:22 1AYpPM-0004nL-5g Completed
2003-12-23 17:29:22 SMTP connection from hnexfe10.hetnet.nl [195.121.6.176] closed by QUIT
2003-12-23 17:29:23 1AYpPM-0004nM-67 <= susanenruud@??? H=hnexfe10.hetnet.nl [195.121.6.176] P=esmtp S=145125 id=HNEXFE10WNoqiGAeGnO0000db22@??? T="Undelivered Message" from <susanenruud@???> for stembureau@???
2003-12-23 17:29:23 1AYpPM-0004nM-67 => blackhole (DATA ACL discarded recipients)
2003-12-23 17:29:23 1AYpPM-0004nM-67 Completed
2003-12-23 17:29:23 SMTP connection from hnexfe10.hetnet.nl [195.121.6.176] closed by QUIT
2003-12-23 17:29:25 1AYpPF-0004nO-K6 ** rejo@??? <rejo@???>: Unrouteable address
2003-12-23 17:29:25 1AYpPR-0004nd-C7 <= <> R=1AYpPF-0004nO-K6 U=mail P=local S=5315 T="Mail delivery failed: returning message to sender" from <> for sister@???
2003-12-23 17:29:25 1AYpPF-0004nO-K6 Completed
[...]
I just simply don't know where to look...
--
Rejo Zenger <rejo@???> -
http://rejo.zenger.nl - PGP 0x75FC50F3