Mailing List Archive: Qmail: users

[Click the star to watch this topic] I cannot send mail from one of my internal hosts to another one

Index | Next | Previous | View Threaded

dihewo at gmx

Oct 21, 2009, 1:51 PM

Post #1 of 6 (2068 views)
Permalink

[Click the star to watch this topic] I cannot send mail from one of my internal hosts to another one

Hi,

I have a running qmail installation on my internal mail-hub. That mail-
hub should forward internal mail to other internal hosts, and mail for
other domains to the relay of my ISP. The problem is, that the ISP
wants SMTP-Authentication, so I patched qmail-remote.
I had it working before, but then I changed something without
remembering what, and now I get all my mail delivered to my ISP's
relay, which for sure does not know about my internal host names.
The problem seems to be with smtproutes_users. If this file exists
with just the default entry ':my.isp.domain:user:password', everything
is routed to the ISP, if I move it away, then internal mail works
fine, but mail to outside does no longer work due to missing SMTP-
Auth.
Does anybody have an idea, what might have gone wrong? What config-
files do you need?
Thanks in advance.

Dieter

kyle-qmail at memoryhole

Oct 22, 2009, 7:25 AM

Post #2 of 6 (1931 views)
Permalink

Re: [Click the star to watch this topic] I cannot send mail from one of my internal hosts to another one [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

On Wednesday, October 21 at 10:51 PM, quoth dihewo [at] gmx:
> The problem seems to be with smtproutes_users. If this file exists
> with just the default entry ':my.isp.domain:user:password',
> everything is routed to the ISP, if I move it away, then internal
> mail works fine, but mail to outside does no longer work due to
> missing SMTP- Auth. Does anybody have an idea, what might have gone
> wrong? What config- files do you need? Thanks in advance.

Sounds like you removed your smtproutes file. You'd need an entry for
each internal host in that file.

~Kyle
- --
There are two ways of constructing a software design: One way is to
make it so simple that there are obviously no deficiencies, and the
other way is to make it so complicated that there are no obvious
deficiencies.
-- Charles Antony Richard Hoare
-----BEGIN PGP SIGNATURE-----
Comment: Thank you for using encryption!
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=DN6S
-----END PGP SIGNATURE-----

dihewo at gmx

Oct 24, 2009, 10:02 AM

Post #3 of 6 (1925 views)
Permalink

Re: [Click the star to watch this topic] I cannot send mail from one of my internal hosts to another one [In reply to]

Hello,

I have an entry for each host, that can receive mail, in this file. That is
why I don't understand, what the problem can be.

But thanks in advance for your answer.

Regards,

Dieter

>
> -------- Original-Nachricht --------
> Datum: Thu, 22 Oct 2009 09:25:44 -0500
> Von: Kyle Wheeler <kyle-qmail [at] memoryhole>
> An: qmail [at] list
> Betreff: Re: [Click the star to watch this topic] I cannot send mail
> from one of my internal hosts to another one
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA256
>
> On Wednesday, October 21 at 10:51 PM, quoth dihewo [at] gmx:
> > The problem seems to be with smtproutes_users. If this file exists
> > with just the default entry ':my.isp.domain:user:password',
> > everything is routed to the ISP, if I move it away, then internal
> > mail works fine, but mail to outside does no longer work due to
> > missing SMTP- Auth. Does anybody have an idea, what might have gone
> > wrong? What config- files do you need? Thanks in advance.
>
> Sounds like you removed your smtproutes file. You'd need an entry for
> each internal host in that file.
>
> ~Kyle
> - --
> There are two ways of constructing a software design: One way is to
> make it so simple that there are obviously no deficiencies, and the
> other way is to make it so complicated that there are no obvious
> deficiencies.
> -- Charles Antony Richard Hoare
> -----BEGIN PGP SIGNATURE-----
> Comment: Thank you for using encryption!
>
> iQIVAwUBSuBraCuveozR/AWeAQgB8Q/+PvUOPI2k4kDvSQW1GhyArR2RPcMPSoBc
> DCI342SyNyJTJrKMg9eHwz7Dl4VLXP1gSsO184tJJ9yU9ZYRd2LzDJ+pYvNlqncE
> jwJrNtWOPcerMlx7tcX84teJZDoLjAlyNRphu8JjG9uffmzjc28PUmQ2STPI49Kq
> tthmPFBEvYDUHcbr/xKbAwqOb4xAkX2kJvnx4AHfubr0vBHpUUMRmIGHtTc+kkqU
> WoeokgeUyCkmGMyLnu42MMSJduj8nbyxjWKSt3Zgo63Fgbkm1chaU5piP9mDOcNX
> hDb+rqpHHhc6ScU/FfpWUa4W24u891hC4XCEIV4dKgUtza5IV0czwJzmZdnfleBU
> JQ1w7QIvBcDLrZB2Q4JNJauDjLPkGI4fU+E05XiZMTzGMpVkQve+C4udiVHTWTxR
> fYNVu+8zLDV3ArZ4D5389wtvlvXkUhIgHmrbY2Z5ZxCadAwGvSU2YHJnCG+K6SFO
> EF/iD5z7LnCk6bqPP2osIEQn6fDw279RoYtB+z/xriEjGjIWKuH+k//9xNOum8Li
> e5jW86cWRJ3/yYFSH4Ur5ebzWjUc2AbXZr/3sJrNSGdW1jqUnEeveI485xL7mZNA
> 2dioIeNm4bW2u11zvIOPKov6VfL9IeCm+GR/c4soN+egLhfTsfB75bmqetwR59Wv
> IRMYzLuA8x0=
> =DN6S
> -----END PGP SIGNATURE-----
>

kyle-qmail at memoryhole

Oct 24, 2009, 11:40 PM

Post #4 of 6 (1906 views)
Permalink

Re: [Click the star to watch this topic] I cannot send mail from one of my internal hosts to another one [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

On Saturday, October 24 at 07:02 PM, quoth dihewo [at] gmx:
> I have an entry for each host, that can receive mail, in this file.
> That is why I don't understand, what the problem can be.

Well, what do your logs say?

My next guess would be that qmail is attempting to authenticate to the
internal hosts. Since those hosts do not understand the authentication
commands, perhaps those connections are being marked as errors. I
don't know which authentication patch you're using, but perhaps you
need to tell it to ignore authentication for your internal hosts.

If that's true, then your logs should indicate that delivery (to your
internal hosts) was attempted but failed.

~Kyle
- --
A lot of the truths we cling to depend greatly on our own point of
view.
-- Obi Wan Kenobi
-----BEGIN PGP SIGNATURE-----
Comment: Thank you for using encryption!
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=E/YT
-----END PGP SIGNATURE-----

dihewo at gmx

Nov 29, 2009, 11:26 AM

Post #5 of 6 (1494 views)
Permalink

Re: I cannot send mail from one of my internal hosts to another one [In reply to]

Hello Kyle,

>
> -------- Original-Nachricht --------
> Datum: Sun, 25 Oct 2009 01:40:34 -0500
> Von: Kyle Wheeler <kyle-qmail [at] memoryhole>
> An: dihewo [at] gmx
> CC: qmail [at] list
> Betreff: Re: [Click the star to watch this topic] I cannot send mail
> from one of my internal hosts to another one
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA256
>
> On Saturday, October 24 at 07:02 PM, quoth dihewo [at] gmx:
> > I have an entry for each host, that can receive mail, in this file.
> > That is why I don't understand, what the problem can be.
>
> Well, what do your logs say?
I just did a
qmail-inject -fsender [at] my recipient [at] remote
recipient [at] my < /dev/shm/testmail.eml

and the log is the following:
Nov 29 20:07:51 fw qmail: 1259521671.062669 new msg 3288
Nov 29 20:07:51 fw qmail: 1259521671.063845 info msg 3288: bytes 390 from
<sender [at] my> qp 13668 uid 0
Nov 29 20:07:51 fw qmail: 1259521671.232167 starting delivery 150: msg 3288
to local recipient [at] my
Nov 29 20:07:51 fw qmail: 1259521671.233688 status: local 1/10 remote 0/2
Nov 29 20:07:51 fw qmail: 1259521671.235445 starting delivery 151: msg 3288
to remote recpient [at] remote
Nov 29 20:07:51 fw qmail: 1259521671.236594 status: local 1/10 remote 1/20
Nov 29 20:07:51 fw qmail: 1259521671.776654 delivery 150: success:
did_1+0+0/
Nov 29 20:07:51 fw qmail: 1259521671.781868 status: local 0/10 remote 1/20
Nov 29 20:07:52 fw qmail: 1259521672.129374 delivery 151: success:
www.xxx.yyy.zzz./Remote_host_said:_250_2.0.0_Ok:_queued_as_03EC348067/
Nov 29 20:07:52 fw qmail: 1259521672.133025 status: local 0/10 remote 0/20
Nov 29 20:07:52 fw qmail: 1259521672.134493 end msg 3288

> My next guess would be that qmail is attempting to authenticate to the
> internal hosts. Since those hosts do not understand the authentication
> commands, perhaps those connections are being marked as errors. I
> don't know which authentication patch you're using, but perhaps you
> need to tell it to ignore authentication for your internal hosts.
Shouldn't there be any error message, if that occurs.
I have no password specified for the internal hosts. Currently my
smtproutes_users looks like this:
:host.my.domain
:smtp.relay.domain|user|password

> If that's true, then your logs should indicate that delivery (to your
> internal hosts) was attempted but failed.
As you can see, there is no single error message currently.

I am still stuck.

> ~Kyle
Dieter

kyle-qmail at memoryhole

Nov 30, 2009, 7:55 AM

Post #6 of 6 (1478 views)
Permalink

Re: I cannot send mail from one of my internal hosts to another one [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

On Sunday, November 29 at 08:26 PM, quoth dihewo [at] gmx:
>> Well, what do your logs say?
>I just did a
> qmail-inject -fsender [at] my recipient [at] remote
>recipient [at] my < /dev/shm/testmail.eml
>
> and the log is the following:

Okay... The problem you originally described was that messages to
hosts on your internal network would not be delivered if you had the
authentication information for your ISP in place, but that (obviously)
messages destined outside of your internal network that had to go
through your ISP could not be delivered if you didn't have that
information in place.

Which of those two situations was the case for this test? Which of
these recipients is destined for another host on your internal
network?

> Nov 29 20:07:51 fw qmail: 1259521671.062669 new msg 3288
>Nov 29 20:07:51 fw qmail: 1259521671.063845 info msg 3288: bytes 390 from
><sender [at] my> qp 13668 uid 0
>Nov 29 20:07:51 fw qmail: 1259521671.232167 starting delivery 150: msg 3288
>to local recipient [at] my
>Nov 29 20:07:51 fw qmail: 1259521671.233688 status: local 1/10 remote 0/2
>Nov 29 20:07:51 fw qmail: 1259521671.235445 starting delivery 151: msg 3288
>to remote recpient [at] remote
>Nov 29 20:07:51 fw qmail: 1259521671.236594 status: local 1/10 remote 1/20
>Nov 29 20:07:51 fw qmail: 1259521671.776654 delivery 150: success:
>did_1+0+0/

This says that the message was successfully delivered *locally* (using
qmail-local, which is to say, not via the network) to
recipient [at] my

>Nov 29 20:07:51 fw qmail: 1259521671.781868 status: local 0/10 remote 1/20
>Nov 29 20:07:52 fw qmail: 1259521672.129374 delivery 151: success:
>www.xxx.yyy.zzz./Remote_host_said:_250_2.0.0_Ok:_queued_as_03EC348067/
>Nov 29 20:07:52 fw qmail: 1259521672.133025 status: local 0/10 remote 0/20
>Nov 29 20:07:52 fw qmail: 1259521672.134493 end msg 3288

And this says that the message was successfully delivered remotely to
what I assume is your ISP.

These logs show two successful deliveries, and therefore, no problem.
Did either of these messages not get to where it was supposed to go?
What problem occurred in this test?

>> My next guess would be that qmail is attempting to authenticate to the
>> internal hosts. Since those hosts do not understand the authentication
>> commands, perhaps those connections are being marked as errors. I
>> don't know which authentication patch you're using, but perhaps you
>> need to tell it to ignore authentication for your internal hosts.
>Shouldn't there be any error message, if that occurs.

Yes, there should be an error message of some kind if that occurs.

>> If that's true, then your logs should indicate that delivery (to
>> your
>> internal hosts) was attempted but failed.
>As you can see, there is no single error message currently.

If there's no error message, then as far as your server knows, the
deliveries occurred successfully.

Do the recipients receive these messages? Are the messages simply
disappearing? Do you get bounce messages? What are you seeing that
illustrates the problem?

~Kyle
- --
The greatest thing in family life is to take a hint when a hint is
intended---and not to take a hint when a hint isn't intended.
-- Robert Frost
-----BEGIN PGP SIGNATURE-----
Comment: Thank you for using encryption!

iQIcBAEBCAAGBQJLE+sAAAoJECuveozR/AWeofYQAK9RaUxlN0D/Dqqm3a03VbMj
0jIT0KHF7wPocmTCRGzZaH2CEJ4kw619fDA9BF7QWawY59ooSPQYi4YUfW7AAWTq
u7YC4Gyx8F7I1gIQvCfRMxcJaetuUijq74IMdWeCR8PKD37FiSK/mhGeFah/x01T
OMLueHHMkmuI4M6JbSl/VmhSicGmEzgLKCn5Vfz8AJhhs+A/2lv5NFk5gQeC6ZfN
aq+Cseh+D8Le0xrTw5cYfR2GK3SyNrrK4MTDplHn4uZeR5YYlYkvBbw1rS0m7TZC
+WTwb5QPdLckyRyljQQme7G0xM4YASHG/vhMdG2fyW4FG0xmGMZMf/Ty8Xil3hT0
WhPx8CtP+UI2AhoRo8de4xSaZs13SoB/fLWuNXrgxLPAMIwgfJ0LPgVwKsIesube
q/XeDXLB+LtOyUx0HPrMXJaJdoh/QOi0WT8+3Rd5s7pfPNBMfBFdBlfHOwQgoXiy
5x2CuccAc54cY1V+G2jTHhbHKEIKM5hoM59RcRVzwCrBvBma/g11NSceicSoXiWZ
tBDP5GDMXc9Oz6wZd8TNZEPCGGnLhisyemwxzPSG4DRQZEyCHaEbMb80H8xHDGha
K21OMR6S4M5BwcwcWkE3C4YPva5HeqYjiAEwqXDhjahLAq3YnlONxXTCVciLnOLp
kpF5Buxmt23f1pTYgawD
=EcK6
-----END PGP SIGNATURE-----

Index | Next | Previous | View Threaded

Interested in having your list archived? Contact Gossamer Threads