El 27/09/2018 a las 1:50, Francesc Peñalvez escribió:
fixed i configure postfix so that only ask for tls if the client requests it before it was configured always request tlsEl 27/09/2018 a las 1:19, Wietse Venema escribió:Francesc Pe?alvez:There are some ips that when wanting to connect with my postfix it is impossible to do so when connecting in the same second they disconnect without sending any data for example:Sep 26 21:20:47 ns postfix / smtpd [4679]: connect from mail2.segurcaixaadeslas.es [195.77.158.25] Sep 26 21:20:47 ns postfix / smtpd [4679]: disconnect from mail2.segurcaixaadeslas.es [195.77.158.25]This requires a network recording, because the client does not send any commands (I assume that you have Postfix 3.0 or later). See http://www.postfix.org/DEBUG_README.html Wietsethis indicate misconfiguration of remote server or mi postfix?Sep 27 01:46:17 ns postfix/smtpd[11030]: match_list_match: mail2.segurcaixaadeslas.es: no match Sep 27 01:46:17 ns postfix/smtpd[11030]: match_list_match: 195.77.158.25: no matchSep 27 01:46:17 ns postfix/smtpd[11030]: send attr request = connectSep 27 01:46:17 ns postfix/smtpd[11030]: send attr ident = smtpd:195.77.158.25 Sep 27 01:46:17 ns postfix/smtpd[11030]: private/anvil: wanted attribute: statusSep 27 01:46:17 ns postfix/smtpd[11030]: input attribute name: status Sep 27 01:46:17 ns postfix/smtpd[11030]: input attribute value: 0Sep 27 01:46:17 ns postfix/smtpd[11030]: private/anvil: wanted attribute: countSep 27 01:46:17 ns postfix/smtpd[11030]: input attribute name: count Sep 27 01:46:17 ns postfix/smtpd[11030]: input attribute value: 1Sep 27 01:46:17 ns postfix/smtpd[11030]: private/anvil: wanted attribute: rateSep 27 01:46:17 ns postfix/smtpd[11030]: input attribute name: rate Sep 27 01:46:17 ns postfix/smtpd[11030]: input attribute value: 1Sep 27 01:46:17 ns postfix/smtpd[11030]: private/anvil: wanted attribute: (list terminator)Sep 27 01:46:17 ns postfix/smtpd[11030]: input attribute name: (end)Sep 27 01:46:17 ns postfix/smtpd[11030]: > mail2.segurcaixaadeslas.es[195.77.158.25]: 220 ns.almogavers.net ESMTP PostfixSep 27 01:46:17 ns postfix/smtpd[11030]: watchdog_pat: 0x5613c7b868b0Sep 27 01:46:17 ns postfix/smtpd[11030]: < mail2.segurcaixaadeslas.es[195.77.158.25]: EHLO mail2.segurcaixaadeslas.es Sep 27 01:46:17 ns postfix/smtpd[11030]: match_list_match: mail2.segurcaixaadeslas.es: no match Sep 27 01:46:17 ns postfix/smtpd[11030]: match_list_match: 195.77.158.25: no match Sep 27 01:46:17 ns postfix/smtpd[11030]: > mail2.segurcaixaadeslas.es[195.77.158.25]: 250-ns.almogavers.net Sep 27 01:46:17 ns postfix/smtpd[11030]: > mail2.segurcaixaadeslas.es[195.77.158.25]: 250-PIPELINING Sep 27 01:46:17 ns postfix/smtpd[11030]: > mail2.segurcaixaadeslas.es[195.77.158.25]: 250-SIZE 10240000 Sep 27 01:46:17 ns postfix/smtpd[11030]: > mail2.segurcaixaadeslas.es[195.77.158.25]: 250-VRFY Sep 27 01:46:17 ns postfix/smtpd[11030]: > mail2.segurcaixaadeslas.es[195.77.158.25]: 250-ETRN Sep 27 01:46:17 ns postfix/smtpd[11030]: > mail2.segurcaixaadeslas.es[195.77.158.25]: 250-STARTTLS Sep 27 01:46:17 ns postfix/smtpd[11030]: > mail2.segurcaixaadeslas.es[195.77.158.25]: 250-ENHANCEDSTATUSCODES Sep 27 01:46:17 ns postfix/smtpd[11030]: > mail2.segurcaixaadeslas.es[195.77.158.25]: 250-8BITMIME Sep 27 01:46:17 ns postfix/smtpd[11030]: > mail2.segurcaixaadeslas.es[195.77.158.25]: 250 DSNSep 27 01:46:17 ns postfix/smtpd[11030]: watchdog_pat: 0x5613c7b868b0Sep 27 01:46:17 ns postfix/smtpd[11030]: < mail2.segurcaixaadeslas.es[195.77.158.25]: MAIL FROM:<[email protected]> SIZE=6653 Sep 27 01:46:17 ns postfix/smtpd[11030]: > mail2.segurcaixaadeslas.es[195.77.158.25]: 530 5.7.0 Must issue a STARTTLS command firstSep 27 01:46:17 ns postfix/smtpd[11030]: watchdog_pat: 0x5613c7b868b0Sep 27 01:46:17 ns postfix/smtpd[11030]: < mail2.segurcaixaadeslas.es[195.77.158.25]: QUIT Sep 27 01:46:17 ns postfix/smtpd[11030]: > mail2.segurcaixaadeslas.es[195.77.158.25]: 221 2.0.0 Bye Sep 27 01:46:17 ns postfix/smtpd[11030]: match_hostname: mail2.segurcaixaadeslas.es ~? 127.0.0.0/8 Sep 27 01:46:17 ns postfix/smtpd[11030]: match_hostaddr: 195.77.158.25 ~? 127.0.0.0/8 Sep 27 01:46:17 ns postfix/smtpd[11030]: match_hostname: mail2.segurcaixaadeslas.es ~? [::ffff:127.0.0.0]/104 Sep 27 01:46:17 ns postfix/smtpd[11030]: match_hostaddr: 195.77.158.25 ~? [::ffff:127.0.0.0]/104 Sep 27 01:46:17 ns postfix/smtpd[11030]: match_hostname: mail2.segurcaixaadeslas.es ~? [::1]/128 Sep 27 01:46:17 ns postfix/smtpd[11030]: match_hostaddr: 195.77.158.25 ~? [::1]/128 Sep 27 01:46:17 ns postfix/smtpd[11030]: match_hostname: mail2.segurcaixaadeslas.es ~? 192.168.2 Sep 27 01:46:17 ns postfix/smtpd[11030]: match_hostaddr: 195.77.158.25 ~? 192.168.2 Sep 27 01:46:17 ns postfix/smtpd[11030]: match_list_match: mail2.segurcaixaadeslas.es: no match Sep 27 01:46:17 ns postfix/smtpd[11030]: match_list_match: 195.77.158.25: no matchSep 27 01:46:17 ns postfix/smtpd[11030]: send attr request = disconnectSep 27 01:46:17 ns postfix/smtpd[11030]: send attr ident = smtpd:195.77.158.25 Sep 27 01:46:17 ns postfix/smtpd[11030]: private/anvil: wanted attribute: statusSep 27 01:46:17 ns postfix/smtpd[11030]: input attribute name: status Sep 27 01:46:17 ns postfix/smtpd[11030]: input attribute value: 0Sep 27 01:46:17 ns postfix/smtpd[11030]: private/anvil: wanted attribute: (list terminator)Sep 27 01:46:17 ns postfix/smtpd[11030]: input attribute name: (end)Sep 27 01:46:17 ns postfix/smtpd[11030]: disconnect from mail2.segurcaixaadeslas.es[195.77.158.25]I see the remote server dont use starttls is correct? can i configure my postfix for ignore this option for some remote servers? this only appears for this server and tomtom.com´ servers.Before, that did not happen to me at least with the tomtom server.How can I solve this problem without affecting the security of my postfix server?
-- ************************************************************************************************* Este mensaje y todos los archivos adjuntos son confidenciales y de uso exclusivo por parte de su/sus destinatario/s. Si usted ha recibido este mensaje por error, le agradecemos que lo notifique inmediatamente al remitente y destruya el mensaje. Queda prohibida cualquier modificación, edición, uso o divulgación no autorizados. El Emisor no se hace responsable de este mensaje si ha sido modificado, distorsionado, falsificado, infectado por un virus o editado o difundido sin autorización. *********************************************************************************************** This message and any attachments are confidential and intended for the named addressee(s) only. If you have received this message in error, please notify immediately the sender, then delete the message. Any unauthorized modification, edition, use or dissemination is prohibited. The sender shall not be liable for this message if it has been modified, altered, falsified, infected by a virus or even edited or disseminated without authorization. ***********************************************************************************************
smime.p7s
Description: Firma criptográfica S/MIME
