[exim] Virtual E-mail issues

Αρχική Σελίδα
Delete this message
Reply to this message
Συντάκτης: The Doctor
Ημερομηνία:  
Προς: exim-users
Αντικείμενο: [exim] Virtual E-mail issues
Right we are getting

/var/log/exim.in_mainlog:2012-11-05 09:28:42 H=idcmail-mo2no.shaw.ca [64.59.134.9] F=<aboo@???> rejected RCPT <bryan.kapitza@???>: failed_address_router router forced verify failure
/var/log/exim.in_rejectlog:2012-11-05 09:28:42 H=idcmail-mo2no.shaw.ca [64.59.134.9] F=<aboo@???> rejected RCPT <bryan.kapitza@???>: failed_address_router router forced verify failure

The configure file looks like



primary_hostname = doctor.nl2k.ab.ca

local_interfaces = 0.0.0.0.25 : 0.0.0.0.465 : 0.0.0.0.587

domainlist local_domains = @:secure.nl2k.ab.ca:mail.nl2k.ab.ca:mail.nk.ca:nk.ca:nl2k.ca:nl2k.ab.ca:doctor.nl2k.ab.ca:lsearch;/usr/exim/vdom3

domainlist relay_to_domains =
hostlist relay_from_hosts = 204.209.81.0/24 : 127.0.0.1 : 208.118.93.0/24: 208.118.94.0/24

trusted_users = exim : majordomo

acl_smtp_rcpt = acl_check_rcpt
acl_smtp_data = acl_check_data

av_scanner = clamd:127.0.0.1 3310

spamd_address = 127.0.0.1 783

tls_advertise_hosts = *

tls_certificate = /usr/exim/ca.crt
tls_privatekey = /usr/exim/ca.key

daemon_smtp_ports = 25 : 465 : 587
tls_on_connect_ports = 465

tls_require_ciphers = ${if == {$received_port} {25}\
{DEFAULT}{ ALL : !SSLv2 : !LOW : !aNULL : !eNULL : !3DES : @STRENGTH}}

never_users = root

host_lookup = *

rfc1413_hosts = *
rfc1413_query_timeout = 5s

ignore_bounce_errors_after = 2h

timeout_frozen_after = 6h

auto_thaw = 1m

#MailScanner

spool_directory = /var/spool/exim.in
log_file_path = /var/log/exim.in_%slog
process_log_path = /var/spool/exim.in/exim-process.info

queue_only = true

queue_only_override = false

begin acl

acl_check_rcpt:


  accept  hosts = :
          control = dkim_disable_verify



  deny    message       = Restricted characters in address
          domains       = +local_domains
          local_parts   = ^[.] : ^.*[@%!/|]



  deny    message       = Restricted characters in address
          domains       = !+local_domains
          local_parts   = ^[./|] : ^.*[@%!] : ^.*/\\.\\./


  accept  local_parts   = postmaster
          domains       = +local_domains



  require verify        = sender



deny
    condition = ${if eq{$sender_helo_name}{}}
    message   = HELO required before MAIL




drop  message   = "REJECTED - Bad HELO - Host impersonating [$sender_helo_name]"
      condition = ${if match{$sender_helo_name}{$primary_hostname}}




  drop condition = ${if eq{[$interface_address]}{$sender_helo_name}}
       message   = $interface_address is _my_ address


   drop    message     = Bad helo name
           condition   = ${if  \
                            and{    \
                                {isip {$sender_helo_name}}  \
                                {match_ip{$sender_helo_name}{@[]}}  \
                            }{yes}{no}  \
                        }



warn    domains = +local_domains
                !verify = recipient
                set acl_c0 = ${eval: $acl_c0+1}
                delay = ${eval: ($acl_c0 - 1) * 60}s



drop    message = Legitimate bounces are never sent to more than one recipient.
        senders = : postmaster@*
        condition = ${if >{$recipients_count}{0}{true}{false}}



  accept  hosts         = +relay_from_hosts
          control       = submission
          control       = dkim_disable_verify


  accept  authenticated = *
          control       = submission
          control       = dkim_disable_verify


  require message = relay not permitted
          domains = +local_domains : +relay_to_domains


# We also require all accepted addresses to be verifiable. This check will
# do local part verification for local domains, but only check the domain
# for remote domains. The only way to check local parts for the remote
# relay domains is to use a callout (add /callout), but please read the
# documentation about callouts before doing this.

# require verify = recipient



  deny    message       = Rejected sender
          domains       = dhl.com
          local_parts   = adminsu*


  deny    message       = Rejected sender
          domains       = *.com
          local_parts   = postmail-*


  deny    message       = Rejected sender
          domains       = usa.com
          local_parts   = express.deli*


  deny    message       = Rejected sender
          domains       = gmail.com
          local_parts   = emarketing2*




accept



acl_check_data:


  accept authenticated = *
     set acl_m_authenticated = 1  


accept hosts = :

   deny    malware    = *
           message    = This message contains a virus ($malware_name).


  # test reject spam at high scores (> 41)
  drop message = This message is denied by policy : $spam_score spam points
       spam = nobody:true
       condition = ${if > {$spam_score_int}{409}{1}{0}}



   warn    spam       = nobody
           message = Subject: {SPAM?} $rh_subject:
           add_header = X-Spam_score: $spam_score\n\
                        X-Spam_score_int: $spam_score_int\n\
                        X-Spam_bar: $spam_bar\n\
                        X-Spam_report: $spam_report



deny
    !hosts = +relay_from_hosts
    message = This message was considered to be spam
    spam = www:true
    condition = ${if >{$spam_score_int}{409}{1}{0}} 



# Accept the message.

accept


begin routers

check_dnslookup:
driver = dnslookup
domains = ! +local_domains
ignore_target_hosts = 0.0.0.0 : 127.0.0.0/8
verify_only
no_more

check_system_aliases:
driver = redirect
allow_fail
allow_defer
data = ${lookup{$local_part}lsearch{/etc/aliases}}
verify_only

check_localuser:
driver = accept
check_local_user
verify_only

failed_address_router:
driver = accept
verify_only
fail_verify

domains_virtual:
  domains       = +local_domains
  driver = redirect
  data=${lookup{$local_part@$domain}dbm{/usr/exim/virtemail}}


domains_virtual_others:
  domains       = +local_domains
  driver = redirect
  data=${lookup{@$domain}dbm{/usr/exim/virtemail}}


defer_router:
        driver = redirect
        allow_defer
        data = :defer: All deliveries are deferred
        verify = false


dnslookup:
driver = dnslookup
domains = ! +local_domains
transport = remote_smtp
ignore_target_hosts = 0.0.0.0 : 127.0.0.0/8
no_more

system_aliases:
driver = redirect
allow_fail
allow_defer
data = ${lookup{$local_part}lsearch{/etc/aliases}}
file_transport = address_file
pipe_transport = address_pipe

userforward:
driver = redirect
check_local_user
file = $home/.forward
allow_filter
no_verify
no_expn
check_ancestor
file_transport = address_file
pipe_transport = address_pipe
reply_transport = address_reply

localuser:
driver = accept
check_local_user
transport = local_delivery
cannot_route_message = Unknown user

procmail:
driver = accept
check_local_user
require_files = $home/.procmailrc
transport = procmail_pipe


lists:
driver = redirect
file = /usr/home/majordomo/lists/$local_part
forbid_pipe
forbid_file
errors_to = $local_part-request@???
user = majordomo
no_more

begin transports

remote_smtp:
driver = smtp
hosts_avoid_tls = *

procmail_pipe:
driver = pipe
command = /usr/bin/procmail -d $local_part
return_path_add
delivery_date_add
envelope_to_add
check_string = "From "
escape_string = ">From "
umask = 077
user = $local_part
group = mail

local_delivery:
driver = appendfile
file = /var/mail/$local_part
delivery_date_add
envelope_to_add
return_path_add
group = mail
mode = 0600

address_pipe:
driver = pipe
return_output

address_file:
driver = appendfile
delivery_date_add
envelope_to_add
return_path_add

address_reply:
driver = autoreply

begin retry


*                      *           F,1h,15m; G,10h,1h,1.5; F,7d,1h
127.0.0.1              *           F,1h,1m; G,2h,10m,1.5; F,5h,10m
204.209.81.1              *           F,1h,1m; G,2h,10m,1.5; F,3h,10m
204.209.81.3              *           F,1h,1m; G,2h,10m,1.5; F,5h,10m


begin rewrite

begin authenticators

PLAIN:
  driver                     = plaintext
  public_name                = PLAIN
  server_set_id              = $auth2
  server_prompts             = :
  server_condition           = ${if saslauthd{{$2}{$3}}{1}{0}}
  server_advertise_condition = ${if def:tls_cipher }



LOGIN:
  driver                     = plaintext
  public_name                = LOGIN
  server_set_id              = $auth1
 server_prompts             = <| Username: | Password:
 server_condition           = ${if saslauthd{{$1}{$2}}{1}{0}}
  server_advertise_condition = ${if def:tls_cipher }



The virtual entries are key!

In the vdom3 list

I list each domain 1 line at a time.

in the virtemail list


I have either

user@???       local_redirect


or

user@???         other@???



This is similar to Sendmail/Postfix Virtual Domain mmangement via BerkeleyDB .

What do I need to correct?

-- 
Member - Liberal International    This is doctor@??? Ici doctor@???
God,Queen and country!Never Satan President Republic!Beware AntiChrist rising! 
http://www.fullyfollow.me/rootnl2k  
USA petition to dissolve the Republic and vote to disoolve it in November 2012


--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.