Keine Mailzustellung über Submission

Andreas postfix at linuxmaker.de
Di Mär 16 17:44:21 CET 2021


Hallo,

eine andere Frage zu dem eben diskutierten Seerver habe ich noch. Anbei die 
Postfix-Config

# Pigeonhole version 0.5.4 ()
# OS: Linux 4.19.0-14-amd64 x86_64 Debian 10.8 
# Hostname: mx.example.tld
auth_mechanisms = plain login
dict {
  sqlquota = mysql:/etc/dovecot/dovecot-dict-sql.conf
}
listen = *
log_timestamp = "%Y-%m-%d %H:%M:%S "
login_log_format_elements = user=<%u> method=%m rip=%r lip=%l mpid=%e %c %k
mail_home = /var/vmail/%d/%n
mail_location = maildir:~/
mail_max_userip_connections = 500
mail_plugins = quota acl fts fts_solr
managesieve_notify_capability = mailto
managesieve_sieve_capability = fileinto reject envelope encoded-character 
vacation subaddress comparator-i;ascii-numeric relational regex imap4flags 
copy include variables body enotify environment mailbox date index ihave 
duplicate mime foreverypart extracttext
namespace {
  list = yes
  location = maildir:%%h/:INDEXPVT=~/Shared/%%u
  prefix = Shared/%%u/
  separator = /
  subscriptions = no
  type = shared
}

passdb {
  args = /etc/dovecot/dovecot-mysql.conf
  driver = sql
}
plugin {
  acl = vfile
  acl_anyone = allow
  acl_shared_dict = file:/var/vmail/shared-mailboxes.db
  quota = dict:Userquota::proxy::sqlquota
  quota_rule2 = Trash:storage=+100%%
  sieve = /var/vmail/%d/%n/sieve/active-script.sieve
  sieve_before = /var/vmail/sieve/global.sieve
  sieve_dir = /var/vmail/%d/%n/sieve/scripts/
  sieve_max_script_size = 1M
  sieve_quota_max_scripts = 0
  sieve_quota_max_storage = 0
}
protocols = imap sieve lmtp pop3
service auth {
  unix_listener /var/spool/postfix/private/auth_dovecot {
    group = postfix
    mode = 0660
    user = postfix
  }
  unix_listener auth-master {
    mode = 0600
    user = vmail
  }
  unix_listener auth-userdb {
    mode = 0600
    user = vmail
  }
  user = root
}
service dict {
  unix_listener dict {
    group = vmail
    mode = 0660
    user = vmail
  }
}
service lmtp {
  unix_listener /var/spool/postfix/private/dovecot-lmtp {
    group = postfix
    mode = 0600
    user = postfix
  }
  user = vmail
}
service managesieve-login {
  inet_listener sieve {
    port = 4190
  }
  process_min_avail = 2
  service_count = 1
  vsz_limit = 128 M
}
service managesieve {
  process_limit = 256
}
ssl_cert = </etc/letsencrypt/live/mx.example.tld/fullchain.pem
ssl_cipher_list = 
EDH+CAMELLIA:EDH+aRSA:EECDH+aRSA+AESGCM:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH:
+CAMELLIA256:+AES256:+CAMELLIA128:+AES128:+SSLv3:!aNULL:!eNULL:!LOW:!3DES:!
MD5:!EXP:!PSK:!DSS:!RC4:!SEED:!ECDSA:CAMELLIA256-SHA:AES256-SHA:CAMELLIA128-
SHA:AES128-SHA
ssl_key = # hidden, use -P to show it
userdb {
  args = /etc/dovecot/dovecot-mysql.conf
  driver = sql
}
protocol imap {
  mail_plugins = quota imap_quota imap_acl acl fts fts_solr
}
protocol lmtp {
  auth_socket_path = /var/run/dovecot/auth-master
  mail_plugins = quota sieve acl fts fts_solr
  postmaster_address = postmaster at example.tld
}
protocol sieve {
  managesieve_logout_format = bytes=%i/%o
}
remote 127.0.0.1 {
  disable_plaintext_auth = no
}

und die master.cf:
smtp       inet  n       -       n       -       1       postscreen
    -o smtpd_sasl_auth_enable=no


submission inet n       -       -       -       -       smtpd
  -o syslog_name=postfix/submission
  -o smtpd_tls_security_level=encrypt
  -o smtpd_sasl_auth_enable=yes
  -o smtpd_sasl_type=dovecot
  -o smtpd_sasl_path=private/auth_dovecot
  -o smtpd_sasl_security_options=noanonymous
  -o smtpd_client_restrictions=$mua_client_restrictions
  -o smtpd_sender_restrictions=$mua_sender_restrictions
  -o smtpd_relay_restrictions=$mua_relay_restrictions
  -o milter_macro_daemon_name=ORIGINATING 
  -o smtpd_helo_required=no
  -o smtpd_helo_restrictions=
  -o cleanup_service_name=submission-header-cleanup


tlsproxy  unix  -       -       n       -       0       tlsproxy


dnsblog   unix  -       -       n       -       0       dnsblog

pickup    fifo  n       -       -       60      1       pickup
    -o content_filter=
    -o receive_override_options=no_header_body_checks
cleanup   unix  n       -       -       -       0       cleanup
qmgr      fifo  n       -       n       300     1       qmgr
tlsmgr    unix  -       -       -       1000?   1       tlsmgr
rewrite   unix  -       -       -       -       -       trivial-rewrite
bounce    unix  -       -       -       -       0       bounce
defer     unix  -       -       -       -       0       bounce
trace     unix  -       -       -       -       0       bounce
verify    unix  -       -       -       -       1       verify
flush     unix  n       -       -       1000?   0       flush
proxymap  unix  -       -       n       -       -       proxymap
proxywrite unix -       -       n       -       1       proxymap
smtp      unix  -       -       -       -       -       smtp
smtp_enforced_tls      unix  -       -       -       -       -       smtp
  -o smtp_delivery_status_filter=pcre:/etc/postfix/smtp_dsn_filter.pcre
  -o smtp_tls_security_level=encrypt
relay     unix  -       -       -       -       -       smtp
showq     unix  n       -       -       -       -       showq
error     unix  -       -       -       -       -       error
retry     unix  -       -       -       -       -       error
discard   unix  -       -       -       -       -       discard
local     unix  -       n       n       -       -       local
virtual   unix  -       n       n       -       -       virtual
lmtp      unix  -       -       -       -       -       lmtp
anvil     unix  -       -       -       -       1       anvil
scache    unix  -       -       -       -       1       scache

submission-header-cleanup unix n - n    -       0       cleanup
  -o header_checks=pcre:/etc/postfix/submission_header_cleanup


Problem ist, das Mails von aussen nicht mehr zugestellt werden:
Mar 16 17:24:41 mx postfix/postscreen[17853]: warning: private/proxywrite 
socket: service dict_proxy_open: Connection reset by peer
Mar 16 17:24:41 mx postfix/master[17067]: warning: process /usr/lib/postfix/
sbin/proxymap pid 17860 exit status 1
Mar 16 17:24:41 mx postfix/master[17067]: warning: /usr/lib/postfix/sbin/
proxymap: bad command startup -- throttling
Mar 16 17:24:41 mx postfix/submission/smtpd[17846]: connect from 
unknown[198.57.26.58]
Mar 16 17:24:42 mx postfix/submission/smtpd[17733]: warning: 
unknown[87.246.7.51]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Mar 16 17:24:42 mx postfix/submission/smtpd[17846]: lost connection after EHLO 
from unknown[198.57.26.58]
Mar 16 17:24:42 mx postfix/submission/smtpd[17846]: disconnect from 
unknown[198.57.26.58] ehlo=1 auth=0/1 commands=1/2
Mar 16 17:24:42 mx postfix/submission/smtpd[17733]: lost connection after AUTH 
from unknown[87.246.7.51]
Mar 16 17:24:42 mx postfix/submission/smtpd[17733]: disconnect from 
unknown[87.246.7.51] ehlo=2 starttls=1 auth=0/1 commands=3/4

Beste Grüße

Andreas




Mehr Informationen über die Mailingliste Postfixbuch-users