I am running Postfix/Dovecot/MySQL mail server. It was doing ok until I tried
to improve it., I
dsn=4.4.1, status=deferred (connect to
triggerfish.theoceanwindow.com[private/dovecot-lmtp]: Connection refused)
May 10 20:11:27 triggerfish postfix/lmtp[47754]: 172816542AC3:
to=<ja...@theoceanwindow.com>, orig_to=<operator>, relay=none, delay=38307,
delays=38307/0.01/0/0, dsn=4.4.1, status=deferred (connect to
triggerfish.theoceanwindow.com[private/dovecot-lmtp]: Connection refused)
May 10 20:11:27 triggerfish postfix/lmtp[47753]: 1AC7E6542ABC:
to=<ja...@theoceanwindow.com>, orig_to=<operator>, relay=none, delay=42567,
delays=42567/0.01/0/0, dsn=4.4.1, status=deferred (connect to
triggerfish.theoceanwindow.com[private/dovecot-lmtp]: Connection refused)
May 10 20:11:27 triggerfish postfix/error[47747]: 18A9A6542AF4:
to=<ja...@theoceanwindow.com>, orig_to=<operator>, relay=none, delay=8847,
delays=8847/0.01/0/0, dsn=4.4.1, status=deferred (delivery temporarily
suspended: connect to triggerfish.theoceanwindow.com[private/dovecot-lmtp]:
Connection refused)
May 10 20:11:27 triggerfish postfix/error[47747]: 4C6E96542AFF:
to=<ja...@theoceanwindow.com>, orig_to=<operator>, relay=none, delay=2307,
delays=2307/0.02/0/0, dsn=4.4.1, status=deferred (delivery temporarily
suspended: connect to triggerfish.theoceanwindow.com[private/dovecot-lmtp]:
Connection refused)
May 10 20:11:27 triggerfish postfix/error[47747]: 2F0206542AA8:
to=<ja...@theoceanwindow.com>, orig_to=<operator>, relay=none, delay=54987,
delays=54987/0.02/0/0, dsn=4.4.1, status=deferred (delivery temporarily
suspended: connect to triggerfish.theoceanwindow.com[private/dovecot-lmtp]:
Connection refused)
May 10 20:11:27 triggerfish postfix/error[47758]: 218B16542ACA:
to=<ja...@theoceanwindow.com>, orig_to=<operator>, relay=none, delay=34047,
delays=34047/0.02/0/0, dsn=4.4.1, status=deferred (delivery temporarily
suspended: connect to triggerfish.theoceanwindow.com[private/dovecot-lmtp]:
Connection refused)
May 10 20:11:27 triggerfish postfix/error[47747]: 29B2A6542AED:
to=<ja...@theoceanwindow.com>, orig_to=<operator>, relay=none, delay=13107,
delays=13107/0.02/0/0, dsn=4.4.1, status=deferred (delivery temporarily
suspended: connect to triggerfish.theoceanwindow.com[private/dovecot-lmtp]:
Connection refused)
May 10 20:11:27 triggerfish postfix/error[47758]: 0EEAE6542AFC:
to=<ja...@theoceanwindow.com>, orig_to=<operator>, relay=none, delay=4587,
delays=4587/0.02/0/0, dsn=4.4.1,
I am pretty sure I did something wromnhg with TLS/SSL. Ai was working in
certificates, I have been at the so long my eye are crossed
postfixconf: Command not found.
root@triggerfish:/home/jason # posconf -n
posconf: Command not found.
root@triggerfish:/home/jason # postconf -n
broken_sasl_auth_clients = yes
command_directory = /usr/local/sbin
compatibility_level = 3.6
daemon_directory = /usr/local/libexec/postfix
data_directory = /var/db/postfix
debug_peer_level = 2
debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd
$daemon_directory/$process_name $process_id & sleep 5
disable_vrfy_command = yes
dovecot_destination_recipient_limit = 1
header_checks = regexp:/usr/local/etc/postfix/header_checks
html_directory = /usr/local/share/doc/postfix
inet_protocols = ipv4
mailq_path = /usr/local/bin/mailq
manpage_directory = /usr/local/man
message_size_limit = 25600000
meta_directory = /usr/local/libexec/postfix
mydestination = localhost.$mydomain, localhost, $myhostname
mydomain = theoceanwindow.com
myhostname = triggerfish.theoceanwindow.com
mynetworks = 209.160.65.133, 209.160.64.187, 127.0.0.0/8
newaliases_path = /usr/local/bin/newaliases
proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps
$virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains
$relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps
$recipient_canonical_maps $relocated_maps $transport_maps $mynetworks
$virtual_mailbox_limit_maps
readme_directory = /usr/local/share/doc/postfix
relay_domains = proxy:mysql:/usr/local/etc/postfix/mysql_relay_domains_maps.cf
relay_recipient_maps =
proxy:mysql:/usr/local/etc/postfix/mysql_virtual_mailbox_maps.cf
sample_directory = /usr/local/etc/postfix
sendmail_path = /usr/local/sbin/sendmail
setgid_group = maildrop
shlib_directory = /usr/local/lib/postfix
smtp_tls_ciphers = high
smtp_tls_exclude_ciphers = MD5, DES, ADH, RC4, PSD, SRP, 3DES, eNULL, aNULL
smtp_tls_mandatory_ciphers = high
smtp_tls_mandatory_exclude_ciphers = MD5, DES, ADH, RC4, PSD, SRP, 3DES, eNULL,
aNULL
smtp_tls_mandatory_protocols = !TLSv1, !SSLv2, !SSLv3
smtp_tls_note_starttls_offer = yes
smtp_tls_protocols = !TLSv1, !SSLv2, !SSLv3
smtp_tls_security_level = may
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated
smtpd_delay_reject = yes
smtpd_helo_required = yes
smtpd_helo_restrictions = permit, permit_mynetworks, permit_sasl_authenticated,
reject_invalid_hostname, reject_unknown_hostname, reject_non_fqdn_hostname,
reject_non_fqdn_helo_hostname, reject_invalid_helo_hostname, permit
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated,
reject_non_fqdn_hostname, reject_non_fqdn_sender, reject_non_fqdn_recipient,
reject_unauth_destination, reject_unknown_recipient_domain,
reject_unverified_recipient, reject_unauth_pipelining, reject_invalid_hostname,
reject_rbl_client bl.spamcop.net, reject_rbl_client db.wpbl.info,
reject_rbl_client cbl.abuseat.org, reject_rbl_client
proxies.blackholes.wirehub.net, reject_rbl_client query.bondedsender.org,
reject_rbl_client b.barracudacentral.org, permit
smtpd_relay_restrictions = permit_mynetworks, permit_sasl_authenticated,
defer_unauth_destination
smtpd_sasl_auth_enable = yes
smtpd_sasl_authenticated_header = yes
smtpd_sasl_local_domain = $myhostname
smtpd_sasl_path = private/auth
smtpd_sasl_security_options = noanonymous
smtpd_sasl_type = dovecot
smtpd_sender_login_maps = $virtual_alias_maps
smtpd_sender_restrictions = permit_mynetworks, permit_sasl_authenticated,
reject_unauthenticated_sender_login_mismatch, reject_non_fqdn_sender,
reject_unknown_sender_domain, reject_unlisted_sender, permit
smtpd_tls_cert_file = /usr/local/etc/ssl/openssl/server.crt
smtpd_tls_ciphers = high
smtpd_tls_exclude_ciphers = MD5, DES, ADH, RC4, PSD, SRP, 3DES, eNULL, aNULL
smtpd_tls_key_file = /usr/local/etc/ssl/openssl/server.key
smtpd_tls_loglevel = 0
smtpd_tls_mandatory_ciphers = high
smtpd_tls_mandatory_exclude_ciphers = MD5, DES, ADH, RC4, PSD, SRP, 3DES,
eNULL, aNULL
smtpd_tls_mandatory_protocols = !TLSv1, !SSLv2, !SSLv3
smtpd_tls_protocols = !TLSv1, !SSLv2, !SSLv3
smtpd_tls_received_header = yes
smtpd_tls_security_level = may
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtpd_tls_session_cache_timeout = 3600s
soft_bounce = no
spf-policy_time_limit = 3600
tls_preempt_cipherlist = yes
tls_random_source = dev:/dev/urandom
tls_ssl_options = NO_RENEGOTIATION
unknown_local_recipient_reject_code = 550
virtual_alias_maps =
proxy:mysql:/usr/local/etc/postfix/mysql_virtual_alias_maps.cf
virtual_gid_maps = static:125
virtual_mailbox_base = /usr/local/virtual
virtual_mailbox_domains =
proxy:mysql:/usr/local/etc/postfix/mysql_virtual_domains_maps.cf
virtual_mailbox_limit = 51200000
virtual_mailbox_limit_maps =
proxy:mysql:/usr/local/etc/postfix/mysql_virtual_mailbox_limit_maps.cf
virtual_mailbox_maps =
proxy:mysql:/usr/local/etc/postfix/mysql_virtual_mailbox_maps.cf
virtual_minimum_uid = 125
virtual_transport = lmtp:unix:private/dovecot-lmtp
virtual_uid_maps = static:125
Any ideas or pointers or random thoughts would be appreciated
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
