[postfix-users] Nach Umstellung auf mehrere virtuelle Domains: mail forwarding loop / unknown service: smtp/tcp

J. Echter via postfix-users postfix-users at de.postfix.org
Mi Mai 28 11:41:23 CEST 2014 

Hallo Leute,

ich habe eine neue virtuelle Domain zu meinem Setup hinzugefügt.

Die erste Domain die ich eingerichtet hatte funktioniert weiterhin, nur 
bei der neuen schafft fetchmail es nicht an per SMTPD and Dovecot zu 
übergeben.

Die domain thisdomainworks.ok klappt wie sie soll, DOESNTWORK.NO klappt 
nicht.

Leider bin ich kein Postfix/Mailserver Pro, dehalb stehe ich gerade 
gewaltig aufm Schlauch :)

Ich hänge mal alles, was meiner Meinung nach, relevant ist, an.

Check ob die LDAP Abfrage klappt:

Neue Domain:

postmap -q info at DOESNTWORK.NO ldap:/etc/postfix/transport-ldap

DOESNTWORK.NO/info/

Alte Domain:

postmap -q info at thisdomainworks.ok ldap:/etc/postfix/transport-ldap

thisdomainworks.ok/info/

postmap -q info at thisdomainworks.ok ldap:/etc/postfix/vmaps-ldap

thisdomainworks.ok/info/mail/

postmap -q info at DOESNTWORK.NO ldap:/etc/postfix/vmaps-ldap

DOESNTWORK.NO/info/mail/



Hier meine Config:

alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
always_bcc = catchall at thisdomainworks.ok
append_dot_mydomain = no
biff = no
broken_sasl_auth_clients = yes
command_directory = /usr/sbin
config_directory = /etc/postfix
content_filter = smtp-amavis:[127.0.0.1]:10024
daemon_directory = /usr/libexec/postfix
data_directory = /var/lib/postfix
home_mailbox = Maildir/
html_directory = no
inet_interfaces = 127.0.0.1 192.168.0.200
inet_protocols = ipv4
mail_owner = postfix
mailbox_command = /usr/libexec/dovecot/deliver -c 
/etc/dovecot/conf.d/01-mail-stack-delivery.conf -m "${EXTENSION}"
mailbox_size_limit = 0
mailq_path = /usr/bin/mailq
manpage_directory = /usr/share/man
message_size_limit = 0
mydestination = cluster.workgroup.local, localhost.workgroup.local, 
localhost, cluster.workgroup, workgroup.local, cluster, mule, bacula
myhostname = cluster
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128 192.168.0.0/24 
10.0.1.0/24
newaliases_path = /usr/bin/newaliases
queue_directory = /var/spool/postfix
readme_directory = /usr/share/doc/postfix-2.6.6/README_FILES
receive_override_options = no_address_mappings
recipient_canonical_maps = hash:/etc/postfix/recipient_canonical
recipient_delimiter = +
sample_directory = /usr/share/doc/postfix-2.6.6/samples
sender_canonical_maps = hash:/etc/postfix/sender_canonical
sender_dependent_relayhost_maps = hash:/etc/postfix/relaymaps
sendmail_path = /usr/sbin/sendmail
setgid_group = postdrop
smtp_sasl_auth_enable = yes
smtp_sasl_password_maps = hash:/etc/postfix/sasl_password
smtp_sasl_security_options = noplaintext noanonymous
smtp_tls_note_starttls_offer = yes
smtp_tls_security_level = encrypt
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtp_use_tls = yes
smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
smtpd_recipient_restrictions = reject_unknown_sender_domain, 
reject_unknown_recipient_domain, reject_unauth_pipelining, 
permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
smtpd_sasl_auth_enable = yes
smtpd_sasl_authenticated_header = yes
smtpd_sasl_local_domain = $myhostname
smtpd_sasl_path = private/auth
smtpd_sasl_security_options = noanonymous
smtpd_sasl_type = dovecot
smtpd_sender_restrictions = reject_unknown_sender_domain
smtpd_tls_auth_only = yes
smtpd_tls_cert_file = /DATEN/config/dovecot/certs/dovecot.pem
smtpd_tls_key_file = /DATEN/config/dovecot/private/dovecot.pem
smtpd_tls_loglevel = 1
smtpd_tls_mandatory_ciphers = medium
smtpd_tls_mandatory_protocols = SSLv3, TLSv1
smtpd_tls_received_header = yes
smtpd_tls_security_level = may
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtpd_use_tls = yes
tls_random_source = dev:/dev/urandom
virtual_gid_maps = static:5000
virtual_mailbox_base = /DATEN/vmail
virtual_mailbox_domains = /etc/postfix/vhosts
virtual_mailbox_limit = 0
virtual_mailbox_maps = ldap:/etc/postfix/vmaps-ldap
virtual_minimum_uid = 1000
virtual_transport = dovecot
virtual_uid_maps = static:5000

vmaps-ldap:

server_host = 192.168.0.200
search_base = ou=sogo-users,dc=workgroup,dc=local
bind_dn = uid=cyrus,ou=sogo-users,dc=workgroup,dc=local
bind_pw = mysecretpw
query_filter = (&(uid=%s)(!(|(mail="*|*")(mail="*:*")(mail="*/*"))))
result_format = %d/%u/mail/
result_attribute = mail

relaymaps:

@thisdomainworks.ok [mailserver.thisdomainworks.ok]:25
@DOESNTWORK.NO [mail.DOESNTWORK.NO]:25

vhosts:

thisdomainworks.ok
DOESNTWORK.NO

transport-ldap:

server_host = 192.168.0.200
search_base = ou=sogo-users,dc=workgroup,dc=local
bind_dn = uid=cyrus,ou=sogo-users,dc=workgroup,dc=local
bind_pw = mysecretpw
query_filter = (&(uid=%s)(!(|(mail="*|*")(mail="*:*")(mail="*/*"))))
result_format = %d/%u/
result_attribute = mail


Hier ein Log Auszug nachdem Fetchmail die Mail abgeholt hat:

May 28 11:21:34 mule fetchmail[29518]: Nachricht 
info at DOESNTWORK.NO@mail.DOESNTWORK.NO:1 von 1 wird gelesen (1175 Bytes) 
gelöscht
May 28 11:21:34 mule postfix/smtpd[27846]: disconnect from 
unknown[127.0.0.1]
May 28 11:21:34 mule fetchmail[29518]: Fehler bei 
Server-Zertifikat-Überprüfung: self signed certificate
May 28 11:21:34 mule fetchmail[29518]: Das heißt, dass das 
Wurzelzertifikat (ausgestellt für 
/C=US/ST=Virginia/L=Herndon/O=Parallels/OU=Parallels Panel/CN=Parallels 
Panel/emailAddress=info at parallels.com) nicht unter den 
vertrauenswürdigen CA-Zertifikaten ist, oder dass c_rehash auf dem 
Verzeichnis ausgeführt werden muss. Details sind in der 
fetchmail-Handbuchseite im bei --sslcertpath beschrieben.
May 28 11:21:34 mule fetchmail[29518]: Warnung: Die Verbindung ist 
unsicher, mache trotzdem weiter. (Nehmen Sie lieber --sslcertck!)
May 28 11:21:40 mule postfix/smtpd[28772]: connect from unknown[127.0.0.1]
May 28 11:21:40 mule postfix/smtpd[28772]: 49EC33C0481: 
client=unknown[127.0.0.1]
May 28 11:21:40 mule postfix/cleanup[27954]: 49EC33C0481: 
message-id=<f9dd580aebbf999157b89f1536dd8730 at loxone.com>
May 28 11:21:40 mule postfix/qmgr[2398]: 49EC33C0481: 
from=<office at s1.mlwrx.com>, size=23435, nrcpt=2 (queue active)
May 28 11:21:40 mule amavis[9754]: (09754-01) FWD from 
<office at s1.mlwrx.com> -> <info at thisdomainworks.ok>,BODY=7BIT 250 2.0.0 
from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 49EC33C0481
May 28 11:21:40 mule amavis[9754]: (09754-01) Passed CLEAN 
{RelayedOutbound}, MYNETS LOCAL [127.0.0.1]:36938 [193.104.82.100] 
<office at s1.mlwrx.com> -> <info at thisdomainworks.ok>, Message-ID: 
<f9dd580aebbf999157b89f1536dd8730 at loxone.com>, mail_id: DNICmYfH6xaA, 
Hits: 2.082, size: 22986, queued_as: 49EC33C0481, 11245 ms
May 28 11:21:40 mule postfix/smtp[28230]: 056AC3C0342: 
to=<info at thisdomainworks.ok>, relay=127.0.0.1[127.0.0.1]:10024, 
delay=11, delays=0.12/0/0/11, dsn=2.0.0, status=sent (250 2.0.0 from 
MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 49EC33C0481)
May 28 11:21:40 mule postfix/qmgr[2398]: 056AC3C0342: removed
May 28 11:21:40 mule amavis[9754]: (09754-01) extra modules loaded: 
unicore/lib/gc_sc/Alnum.pl, unicore/lib/gc_sc/Alpha.pl, 
unicore/lib/gc_sc/Digit.pl, unicore/lib/gc_sc/SpacePer.pl
May 28 11:21:40 mule amavis[9754]: (09754-02) ESMTP::10024 
/var/spool/amavisd/tmp/amavis-20140528T112129-09754-X1gkaq1d: 
<someuser at somedomain.com> -> <info at DOESNTWORK.NO> SIZE=1475 BODY=7BIT 
Received: from cluster ([127.0.0.1]) by localhost 
(cluster.workgroup.local [127.0.0.1]) (amavisd-new, port 10024) with 
ESMTP for <info at DOESNTWORK.NO>; Wed, 28 May 2014 11:21:40 +0200 (CEST)
May 28 11:21:40 mule postfix/pipe[28774]: 49EC33C0481: 
to=<catchall at thisdomainworks.ok>, relay=dovecot, delay=0.05, 
delays=0/0/0/0.04, dsn=2.0.0, status=sent (delivered via dovecot service)
May 28 11:21:40 mule amavis[9754]: (09754-02) Checking: CFjrwU2qFtXQ 
MYNETS [127.0.0.1] <someuser at somedomain.com> -> <info at DOESNTWORK.NO>
May 28 11:21:40 mule postfix/pipe[30508]: 49EC33C0481: 
to=<info at thisdomainworks.ok>, relay=dovecot, delay=0.06, 
delays=0/0/0/0.05, dsn=2.0.0, status=sent (delivered via dovecot service)
May 28 11:21:40 mule postfix/qmgr[2398]: 49EC33C0481: removed
May 28 11:21:40 mule postfix/smtpd[28772]: C274C3C0342: 
client=unknown[127.0.0.1]
May 28 11:21:40 mule postfix/cleanup[27954]: C274C3C0342: 
message-id=<5385AA64.2030107 at somedomain.com>
May 28 11:21:40 mule postfix/qmgr[2398]: C274C3C0342: 
from=<someuser at somedomain.com>, size=1902, nrcpt=2 (queue active)
May 28 11:21:40 mule amavis[9754]: (09754-02) FWD from 
<someuser at somedomain.com> -> <info at DOESNTWORK.NO>,BODY=7BIT 250 2.0.0 
from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as C274C3C0342
May 28 11:21:40 mule amavis[9754]: (09754-02) Passed CLEAN 
{RelayedOutbound}, MYNETS LOCAL [127.0.0.1]:36966 [62.245.238.146] 
<someuser at somedomain.com> -> <info at DOESNTWORK.NO>, Message-ID: 
<5385AA64.2030107 at somedomain.com>, mail_id: CFjrwU2qFtXQ, Hits: -0.31, 
size: 1475, queued_as: C274C3C0342, 485 ms
May 28 11:21:40 mule postfix/smtp[28230]: 414723C040F: 
to=<info at DOESNTWORK.NO>, relay=127.0.0.1[127.0.0.1]:10024, delay=6.6, 
delays=0.08/6/0.01/0.49, dsn=2.0.0, status=sent (250 2.0.0 from 
MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as C274C3C0342)
May 28 11:21:40 mule postfix/pipe[30508]: C274C3C0342: 
to=<info at DOESNTWORK.NO>, relay=dovecot, delay=0.01, delays=0/0/0/0.01, 
dsn=5.4.6, status=bounced (mail forwarding loop for info at DOESNTWORK.NO)
May 28 11:21:40 mule postfix/qmgr[2398]: 414723C040F: removed
May 28 11:21:40 mule postfix/pipe[28774]: C274C3C0342: 
to=<catchall at thisdomainworks.ok>, relay=dovecot, delay=0.04, 
delays=0/0/0/0.03, dsn=2.0.0, status=sent (delivered via dovecot service)
May 28 11:21:40 mule postfix/cleanup[27954]: CB4EA3C03F6: 
message-id=<20140528092140.CB4EA3C03F6 at cluster>
May 28 11:21:40 mule postfix/qmgr[2398]: CB4EA3C03F6: from=<>, 
size=3693, nrcpt=1 (queue active)
May 28 11:21:40 mule postfix/bounce[30526]: C274C3C0342: sender 
non-delivery notification: CB4EA3C03F6
May 28 11:21:40 mule postfix/qmgr[2398]: C274C3C0342: removed
May 28 11:21:40 mule postfix/smtp[30527]: fatal: unknown service: smtp/tcp
May 28 11:21:41 mule postfix/qmgr[2398]: warning: private/smtp socket: 
malformed response
May 28 11:21:41 mule postfix/qmgr[2398]: warning: transport smtp failure 
-- see a previous warning/fatal/panic logfile record for the problem 
description
May 28 11:21:41 mule postfix/master[22364]: warning: process 
/usr/libexec/postfix/smtp pid 30527 exit status 1
May 28 11:21:41 mule postfix/master[22364]: warning: 
/usr/libexec/postfix/smtp: bad command startup -- throttling
May 28 11:21:41 mule postfix/error[23641]: CB4EA3C03F6: 
to=<someuser at somedomain.com>, relay=none, delay=1, delays=0/1/0/0, 
dsn=4.3.0, status=deferred (unknown mail transport error)
May 28 11:21:42 mule postfix/smtpd[30563]: connect from unknown[127.0.0.1]
May 28 11:21:42 mule postfix/smtpd[30563]: 25F203C0403: 
client=unknown[127.0.0.1]
May 28 11:21:42 mule postfix/cleanup[27954]: 25F203C0403: 
message-id=<48c244aeb8a92f05d8051b3a66d175c2 at verwaltung.farbnische.de>
May 28 11:21:42 mule postfix/smtpd[30563]: disconnect from 
unknown[127.0.0.1]


Danke schonmal für die Hilfe

Jürgen

Mehr Informationen über die Mailingliste postfix-users