On Wed, 5 Jul 2017, admin@??? wrote:
> https://bugs.exim.org/show_bug.cgi?id=2144
> --- Comment #1 from Heiko Schlittermann <hs@???> ---
> We should log when a delivery to a remote host was temp rejected. Currently we
> don't do. The failed attemps are just visible from some indications (TLS
> traces) and such.
>
> The following log except should(!) show that we had a 4xx when talking to
> mx00.hj-systems.de
>
>
> 2017-07-05 14:47:13 [19866] 1dSji4-0005AQ-GR <= hs@???
> H=(blade.schlittermann.de) [10.10.11.134] I=[84.19.194.3]:587 P=esmtpsa
> X=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256 CV=no A=plain:heiko@???
> S=1500 id=20170705124710.kxr4t27kzqvnllhu@??? T="testing"
> 2017-07-05 14:47:19 [19877] 1dSji4-0005AQ-GR [88.198.159.50] SSL verify error:
> certificate name mismatch: DN="/CN=smtp.netwichtig.de" H="mx00.hj-systems.de"
> 2017-07-05 14:47:24 [19877] 1dSji4-0005AQ-GR SMTP error from remote mail server
> after end of data: 451-Rejected due to site policy reasons. Contact postmaster
> in case of\n451 problems.
> 2017-07-05 14:47:24 [19877] 1dSji4-0005AQ-GR H=mx01.hj-systems.de
> [2a01:4f8:130:63e3::2] Connection refused
> 2017-07-05 14:47:29 [19877] 1dSji4-0005AQ-GR [213.133.111.59] SSL verify error:
> certificate name mismatch: DN="/CN=smtp.netwichtig.de" H="mx01.hj-systems.de"
> 2017-07-05 14:47:32 [19875] 1dSji4-0005AQ-GR => alfred@???
> F=<hs@???> R=dnslookup T=smtp S=2049 H=mx01.hj-systems.de
> [213.133.111.59] I=[84.19.194.3] X=TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128
> CV=no DN="/CN=smtp.netwichtig.de" C="250 OK id=1dSjiM-0004uQ-BC" QT=20s DT=7s
> 2017-07-05 14:47:32 [19875] 1dSji4-0005AQ-GR Completed QT=20s
The 14:47:24 entries are a multi-line log, but they do show the 4xx error
451-Rejected due to site policy reasons
reported by mx01.hj-systems.de
I see similar log entries on my home server
(although I only appear to have received 5xx errors).
--
Andrew C. Aitchison Cambridge, UK
andrew@???