Hi Yeah, have been studying the pflogs without any luck. No blocks registered from localhost.. indeed none on port 25 (except for packets with destination IP's inside the firewall).
I would post the pf.conf but it is rather long. Andrew --- Sean <[EMAIL PROTECTED]> wrote: > A wrote: > > Hey all > > > > I don't know if this is a pf question but I think pf might be > causing > > it so here comes the question. > > > > I have recently started to notice a stack of the following popping > up > > on the logging server from the border firewall. It runs OBSD 3.5 > with a > > pf ruleset. > > > > The log messages (usually several hundred a day) are (2 examples) > > > > Sep 28 06:01:17 draco sm-msp-queue[28462]: i8OJU1Xl011892: to=root, > > delay=3+00:30:01, xdelay=00:00:00, mailer=relay, pri=13083226, > > relay=[127.0.0.1], dsn=4.0.0, stat=Deferred: Connection timed out > with > > [127.0.0.1] > > > > Sep 28 06:01:17 draco sm-msp-queue[28462]: i8OJU1Xm011892: > > to=postmaster, delay=3+00:29:59, xdelay=00:00:00, mailer=relay, > > pri=13084892, relay=[127.0.0.1], dsn=4.0.0, stat=Deferred: > Connection > > timed out with [127.0.0.1] > > > > > > Now, I originally thought that sendmail had stopped accepting > > connections but no, it is still doing that. I can "telnet localhost > 25" > > and it happily answers back: > > > > border# telnet localhost 25 > > Trying ::1... > > Connected to localhost. > > Escape character is '^]'. > > 220 border.xxxxx.com ESMTP Sendmail 8.12.11/8.12.11; Wed, 29 Sep > 2004 > > 09:27:45 +1000 (EST) > > > > What does a tcpdump of pflog tell you? > > http://openbsd.org/faq/pf/logging.html > > > > > Find local movie times and trailers on Yahoo! Movies. http://au.movies.yahoo.com
