Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > Linux Forums > Server Operation

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 12th November 2007, 10:47
asyadiqin asyadiqin is offline
Senior Member
 
Join Date: Jul 2006
Posts: 120
Thanks: 0
Thanked 1 Time in 1 Post
Default Mailserver 554 Permanent Problems Message

Hi all.

This is sort of like a follow-up on a problem I have with the same mailserver but now I have some new informations that could probably help someone an idea on what is going on.

To recap, someone from Company A is complaining that they have not been receiving any emails sent from our mailserver. They have also said that we have been ignoring emails sent by them to our staff.

Now, they are saying that they are receiving returned emails that says that their mailsever have encountered errors sending emails to our mailserver.

Quote:
Returned Mail: Permanent problems with the remote server
----- The following addresses had permanent fatal errors ----
<someone@mydomain.com>
----- Transcript of session follows -----
554 Permanent problems with the remote server mail.mydomain.com
I have checked our mail log and don't actually see any errors. Is there any way for me to find out what is going on and sort of investigate this further using any tools or something to make sure that our mailserver are working fine. At this point, we are just pointing blame to each other's mailserver.

A different question. If we were to create a new mailserver, is there an easy way to migrate all the users and emails from our old mailserver to the new mailserver? FYI, the current mailserver is setup using the guide in this site, ie. "Virtual Users With Postfix, PostfixAdmin, Courier, Mailscanner, ClamAV On CentOS". However, the current mailserver is running on FC5.
Reply With Quote
Sponsored Links
  #2  
Old 12th November 2007, 11:23
asyadiqin asyadiqin is offline
Senior Member
 
Join Date: Jul 2006
Posts: 120
Thanks: 0
Thanked 1 Time in 1 Post
Default Follow-up

I have just checked the maillog for the past 2 days and this is what I found in regards to their email from their mailserver.

Quote:
Nov 11 09:48:52 fc5-g1 postfix/smtpd[21840]: connect from mail.company-a.net[80.247.0.8]
Nov 11 09:48:52 fc5-g1 postfix/smtpd[21840]: setting up TLS connection from mail.company-a.net[80.247.0.8]
Nov 11 09:48:52 fc5-g1 postfix/smtpd[21840]: TLS connection established from mail.company-a.net[80.247.0.8]: SSLv3 with cipher DHE-RSA-AES256-SHA (256/256 bits)
After a few lines, I get this in the logs

Quote:
Nov 11 09:49:48 fc5-g1 postfix/smtpd[21840]: F409A3A004D: client=mail.company-a.net[80.247.0.8]
Nov 11 09:49:49 fc5-g1 postfix/smtpd[21840]: lost connection after RCPT from mail.company-a.net[80.247.0.8]
Nov 11 09:49:49 fc5-g1 postfix/smtpd[21840]: disconnect from mail.company-a.net[80.247.0.8]
I am not sure if this is related but after the first few entries, there is some errors about the RBL Lookup

Quote:
Nov 11 09:49:02 fc5-g1 postfix/smtpd[21851]: warning: 8.0.247.80.sbl-xbl.spamhaus.org: RBL lookup error: Host or domain name not found. Name service error for name=8.0.247.80.sbl-xbl.spamhaus.org type=A: Host not found, try again
Hope that is helpful in sorting out my issue

Last edited by asyadiqin; 12th November 2007 at 12:04.
Reply With Quote
  #3  
Old 12th November 2007, 12:01
asyadiqin asyadiqin is offline
Senior Member
 
Join Date: Jul 2006
Posts: 120
Thanks: 0
Thanked 1 Time in 1 Post
Default

OK. Another update.

I've really looked into our mailserver log and seen several of these RBL lookup errors, mostly affected the following :-

sbl-xbl.spamhaus.org
opm.blitzed.org

I've noticed that before losing connecting from their mailserver, there was always a RBL lookup error, with their reversed IP

Quote:
Nov 11 04:07:23 fc5-g1 postfix/smtpd[19235]: warning: 8.0.247.80.sbl-xbl.spamhaus.org: RBL lookup error: Host or domain name not found. Name service error for name=8.0.247.80.sbl-xbl.spamhaus.org type=A: Host not found, try again
Nov 11 04:07:23 fc5-g1 postfix/smtpd[19235]: 68CF03A004D: client=mail.company-a.net[80.247.0.8]
Nov 11 04:07:23 fc5-g1 postfix/smtpd[19235]: lost connection after RCPT from mail.company-a.net[80.247.0.8]
Nov 11 04:07:23 fc5-g1 postfix/smtpd[19235]: disconnect from mail.company-a.net[80.247.0.8]
Could this be the reason for the failed email delivery? Is there a way to correct this RBL lookup error?

Last edited by asyadiqin; 12th November 2007 at 12:05.
Reply With Quote
  #4  
Old 13th November 2007, 17:06
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,741 Times in 2,575 Posts
Default

What's in /etc/postfix/main.cf?
Please check that your server isn't blacklisted: http://www.mxtoolbox.com/blacklists.aspx
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #5  
Old 13th November 2007, 17:16
asyadiqin asyadiqin is offline
Senior Member
 
Join Date: Jul 2006
Posts: 120
Thanks: 0
Thanked 1 Time in 1 Post
Default

Basically what happened was that whenever the remote mailserver tried to connect to the local mailserver, there was a RBL lookup error. This only happens with opm.blitzed.org and sbl-xbl.spamhaus.org.

Because of that RBL lookup error, the connection was terminated. I have removed the 2 RBL server from main.cf. As far as I know from surfing the net, opm.blitzed.org is no longer active, while spamhaus.org have changed it to zen.spamhaus.org. However, I am still getting RBL lookup error with zen.spamhaus.org, so I have removed that from main.cf too.

Anyone have these RBL lookup errors with zen.spamhaus.org? What causes this lookup errors and is there any alternative spamhaus server that I can use that won't cause these RBL lookup errors.

Thanks again.
Reply With Quote
  #6  
Old 14th November 2007, 16:11
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,741 Times in 2,575 Posts
Default

Quote:
Originally Posted by asyadiqin
What causes this lookup errors and is there any alternative spamhaus server that I can use that won't cause these RBL lookup errors.
I think this simply means that the remote server is blacklisted.
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #7  
Old 14th November 2007, 20:51
asyadiqin asyadiqin is offline
Senior Member
 
Join Date: Jul 2006
Posts: 120
Thanks: 0
Thanked 1 Time in 1 Post
Default

I don't think the IP of the remote server is blacklisted. I've checked against Spamhaus IP Address Lookup on their website and it is not listed.

Why would a blacklisted IP caused a RBL lookup error? How do you use spamhaus's spamfilter server, ie. zen.spamhaus.org? Before I removed that entry from postfix's main.cf. Below is a clip from my main.cf

Quote:
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, check_client_access hash:/etc/postfix/pop-before-smtp, reject_non_fqdn_hostname, reject_non_fqdn_sender, reject_non_fqdn_recipient, reject_unauth_destination, reject_unauth_pipelining, reject_invalid_hostname, reject_rbl_client zen.spamhaus.org, reject_rbl_client list.dsbl.org, reject_rbl_client bl.spamcop.net
I don't have any issues with the other RBL servers, but with the above configurations, occasionally I get RBL lookup errors with zen.spamhaus.org.

Quote:
Nov 12 14:21:46 fc5-g1 postfix/smtpd[32694]: warning: 11.61.192.213.zen.spamhaus.org: RBL lookup error: Host or domain name not found. Name service error for name=11.61.192.213.zen.spamhaus.org type=A: Host not found, try again
As you can see, the IP of the remote mailserver connected above is 213.192.61.11, which is not blacklisted on any of the Spamhaus's lists.

Anyone have any idea what is wrong? Do I need to configure something to make my mailserver work with Spamhaus's server? ie. zen.spamhaus.org.

Thanks again.
Reply With Quote
  #8  
Old 15th November 2007, 15:09
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,741 Times in 2,575 Posts
 
Default

Quote:
Originally Posted by asyadiqin
I don't think the IP of the remote server is blacklisted. I've checked against Spamhaus IP Address Lookup on their website and it is not listed.
Please check here: http://www.mxtoolbox.com/blacklists.aspx
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Problems with groups/grpconv linuxfast General 28 21st April 2008 09:35
Mailserver / Postfix Problems oaky Server Operation 31 7th August 2007 19:50
Rejecting outbound mail tristanlee85 General 11 20th May 2007 17:04
Cannot receive emails : DSN: User Unknown shiidii Installation/Configuration 24 22nd September 2006 18:05
Empty Recycle Bin jon335 General 40 6th May 2006 11:56


All times are GMT +2. The time now is 04:59.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.