Re: Relaying denied during 2 hours, driving me crazy

Fri, 05 Nov 2010 02:12:26 -0700 

Zitat von mouss <mo...@ml.netoyen.net>:


Le 05/11/2010 05:54, Pablo Chamorro a écrit :
Today we had a 'relaying denied' issue between 15:08-17:02 p.m. Here it is the output of pflogsumm: 

Per-Hour Traffic Summary
    time          received  delivered   deferred    bounced     rejected
    --------------------------------------------------------------------
    0000-0100           0          0          0          0          0
    0100-0200           0          0          0          0          0
    0200-0300           0          0          0          0          0
    0300-0400           0          0          0          0          0
    0400-0500         897        958         51          9         10
    0500-0600         835        873         62          1         19
    0600-0700         938       1019         53          1         16
    0700-0800        1257       1455         73          0         10
    0800-0900        1833       2413         38          1         26
    0900-1000        1926       2574         70          8         25
    1000-1100        1859       3029         72          9         29
    1100-1200        1998       2529         31          3         13
    1200-1300        1553       1845         52          7         27
    1300-1400        1349       1593         47          5         20
    1400-1500        1758       2166         62          4         23
    1500-1600        1941       2473         31        143         33
    1600-1700        2072       5745         17        283         31
    1700-1800        2008       2821         18          2         15
    1800-1900        1468       1769         10          0         32
    1900-2000        1213       2391         45         71         22
    2000-2100        1013       1119         32          0          8
    2100-2200         988       1082         32          1          8
    2200-2300        1100       3458         30          3         19
    2300-2400         523        550          9          2          2


The problem wasn't specific for one domain. It happened the same  
for Yahoo, Hotmail, GMail and others. But, according to the above  
table,  it seems, just some of them were bounced, weren't they?



I wonder what happened. Could somebody please give me an answer  
about what could have happened? Below a log of a sent and bounced  
message, as far as I understand:


-- sent message, start --

Nov  4 16:02:44 correo postfix/pickup[20590]: 9198E2D6A7A: uid=101  
from=<amcard...@ingeominas.gov.co>
Nov  4 16:02:44 correo postfix/cleanup[14980]: 9198E2D6A7A:  
message-id=<20101104210235.m95...@correo.ingeominas.gov.co>
Nov  4 16:02:44 correo postfix/qmgr[14629]: 9198E2D6A7A:  
from=<amcard...@ingeominas.gov.co>, size=2113, nrcpt=1 (queue active)
Nov  4 16:02:44 correo postfix/smtp[18151]: 9198E2D6A7A:  
to=<unbitl...@gmail.com>, relay=127.0.0.1[127.0.0.1]:10024,  
delay=0.23, delays=0.07/0/0/0.15, dsn=2.0.0, status=sent (250 2.0.0  
Ok, id=20341-15, from MTA([127.0.0.1]:10025): 250 2.0.0 Ok: queued  
as AC18C2D6A1F)

Nov  4 16:02:44 correo postfix/qmgr[14629]: 9198E2D6A7A: removed
-- end --


-- bounced message, start --

Nov  4 16:02:44 correo postfix/smtpd[7447]: AC18C2D6A1F:  
client=localhost.localdomain[127.0.0.1]



Nov  4 16:02:44 correo postfix/cleanup[17693]: AC18C2D6A1F:  
message-id=<20101104210235.m95...@correo.xxxxxxx.gov.co>



Nov  4 16:02:44 correo postfix/qmgr[14629]: AC18C2D6A1F:  
from=<amcard...@xxxxxxx.gov.co>, size=2590, nrcpt=1 (queue active)



Nov  4 16:02:44 correo amavis[20341]: (20341-15) Passed CLEAN,  
[127.0.0.1]<amcard...@xxxxxxx.gov.co>  ->  <xx...@gmail.com>,  
Message-ID:<20101104210235.m95...@correo.xxxxxxx.gov.co>, mail_id:  
4-lL-jKSP5zp, Hits: -, size: 2113, queued_as: AC18C2D6A1F, 154 ms



Nov  4 16:02:44 correo postfix/smtp[18151]: 9198E2D6A7A:  
to=<xx...@gmail.com>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.23,  
delays=0.07/0/0/0.15, dsn=2.0.0, status=sent (250 2.0.0 Ok,  
id=20341-15, from MTA([127.0.0.1]:10025): 250 2.0.0 Ok: queued as  
AC18C2D6A1F)



Nov  4 16:02:45 correo postfix/smtp[20466]: AC18C2D6A1F:  
to=<xx...@gmail.com>,  
relay=gmail-smtp-in.l.google.com[74.125.45.27]:25, delay=0.91,  
delays=0.07/0.01/0.71/0.12, dsn=5.0.0, status=bounced (host  
gmail-smtp-in.l.google.com[74.125.45.27] said: 550 Relaying denied.  
(in reply to RCPT TO command))


hmmm. here:
$ host 74.125.45.27
27.45.125.74.in-addr.arpa domain name pointer yx-in-f27.1e100.net.
$ host gmail-smtp-in.l.google.com
gmail-smtp-in.l.google.com has address 209.85.227.27


74.125.45.27  is a google IP, but I don't see it listed as the IP of  
one of the MX's.




At our side of the planet:

;; QUESTION SECTION:
;gmail.com.                     IN      MX

;; ANSWER SECTION:
gmail.com.              2462    IN      MX      20 
alt2.gmail-smtp-in.l.google.com.
gmail.com.              2462    IN      MX      30 
alt3.gmail-smtp-in.l.google.com.
gmail.com.              2462    IN      MX      40 
alt4.gmail-smtp-in.l.google.com.
gmail.com.              2462    IN      MX      5 gmail-smtp-in.l.google.com.
gmail.com.              2462    IN      MX      10 
alt1.gmail-smtp-in.l.google.com.

and

;; QUESTION SECTION:
;alt4.gmail-smtp-in.l.google.com. IN    A

;; ANSWER SECTION:
alt4.gmail-smtp-in.l.google.com. 251 IN A       74.125.45.27


So the IP-Address 74.125.45.27 seems to be a valid target for  
"@gmail.com" e-mail, despite the fact that the matching PTR is missing.

Maybe they just screwed their DNS??

Regards

Andreas





Attachment:
smime.p7s

Description: S/MIME Cryptographic Signature






















					Reply via email to