I am setting up a new mail hub in a FreeBSD-11.1 jail. When routing
traffic through this host to our existing IMAP service I see this
error in the maillog file:
84A19B389 1256 Wed Jun 13 16:03:45 byrn...@harte-lyne.ca
(delivery temporarily suspended: connect to
inet07.hamilton.harte-lyne.ca[216.185.71.27]:25: Can't assign
requested address)
byrn...@harte-lyne.ca
But, if I telnet from the same host then I see this:
# telnet 216.185.71.27 25
Trying 216.185.71.27...
Connected to inet07.hamilton.harte-lyne.ca.
Escape character is '^]'.
220 inet07.hamilton.harte-lyne.ca ESMTP Postfix
ehlo mx31.harte-lyne.ca
250-inet07.hamilton.harte-lyne.ca
250-PIPELINING
250-SIZE 2048
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
quit
221 2.0.0 Bye
Connection closed by foreign host.
Likewise swaks run on the same host connects and delivers:
# swaks --from=byrn...@harte-lyne.ca --to=byrn...@harte-lyne.ca
--server=216.185.71.27
=== Trying 216.185.71.27:25...
=== Connected to 216.185.71.27.
<- 220 inet07.hamilton.harte-lyne.ca ESMTP Postfix
-> EHLO mx31.harte-lyne.ca
<- 250-inet07.hamilton.harte-lyne.ca
<- 250-PIPELINING
<- 250-SIZE 2048
<- 250-ETRN
<- 250-STARTTLS
<- 250-ENHANCEDSTATUSCODES
<- 250-8BITMIME
<- 250 DSN
-> MAIL FROM:
<- 250 2.1.0 Ok
-> RCPT TO:
<- 250 2.1.5 Ok
-> DATA
<- 354 End data with .
-> Date: Fri, 15 Jun 2018 14:29:04 -0400
-> To: byrn...@harte-lyne.ca
-> From: byrn...@harte-lyne.ca
-> Subject: test Fri, 15 Jun 2018 14:29:04 -0400
-> Message-Id: <20180615142904.092...@mx31.harte-lyne.ca>
-> X-Mailer: swaks v20170101.0 jetmore.org/john/code/swaks/
->
-> This is a test mailing
->
-> .
<- 250 2.0.0 Ok: queued as D22B48A345
-> QUIT
<- 221 2.0.0 Bye
=== Connection closed with remote host.
Our set-up requires authenticated senders and this is accomplished by
using saslauthd configured to connect to a remote IMAP service.
However, we do this over an encrypted pipe to the IMAP server.
Saslauthd is therefore configured thus:
root 55176 0.0 0.0 43928 0 - IWsJ - 0:00.00
/usr/local/sbin/saslauthd -a rimap -O localhost
# ping localhost
PING localhost (127.0.31.1): 56 data bytes
We also use dkim and this is running as well:
mailnull 69811 0.0 0.0 33952 0 - IWsJ - 0:00.00
/usr/local/sbin/opendkim -l -u mailnull:mailnull -P /var/run/milter
mailnull 70080 0.0 0.1 52004 3388 - SJ Thu10 0:03.22
/usr/local/sbin/opendkim -l -u mailnull:mailnull -P /var/run/milter
Likewise we use amavisd-new:
vscan60254 0.0 0.1 250264 4440 - SsJ Thu10 0:02.62
/usr/local/sbin/amavisd (master) (perl)
I have searched for an answer to this but have not found anything that
I find useful. Can anyone give me a clue as to what I have
misconfigured and where?
The sockets using port 25 on mx31.harte-lyne.ca are:
# sockstat -l | grep 25
root master 304 105 tcp4 127.0.31.1:10025 *:*
root master 304 108 tcp4 127.0.31.1:25 *:*
root master 304 109 tcp4 216.185.71.31:25 *:*
root master 304 110 tcp4 192.168.216.31:25 *:*
My main.cf settings are reproduced below:
# postconf -nf
alias_database = hash:/usr/local/etc/postfix/aliases.main,
hash:/usr/local/etc/postfix/aliases.domains,
hash:/usr/local/etc/postfix/private/aliases.byrnejb
alias_maps = hash:/usr/local/etc/postfix/aliases.main,
hash:/usr/local/etc/postfix/aliases.domains,
hash:/usr/local/etc/postfix/private/aliases.byrnejb
broken_sasl_auth_clients = yes
command_directory = /usr/local/sbin
compatibility_level = 2
content_filter = smtp-amavis:[127.0.31.1]:10024
daemon_directory = /usr/local/libexec/postfix
data_directory = /var/db/postfix
debug_peer_level = 2
debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd
$daemon_directory/$process_name $process_id & sleep 5
delay_warning_time = 15m
disable_vrfy_command = yes
header_checks = regexp:$config_directory/header_checks.regexp
html_directory = /usr/local/share/doc/postfix
ignore_mx_lookup_error = no
inet_interfaces = 127.0.31.1, 192.168.216.31, 216.185.71.31
inet_protocols = all
local_transport = smtp
mailq_path = /usr/local/bin/mailq
manpage_directory = /usr/local/man
message_size_limit = 2048
meta_directory = /usr/local/libexec/postfix
milter_default_action = accept
milter_protocol = 2
mydestination =
mydomain = harte-lyne.ca
myhostname = mx31.harte-lyne.ca
mynetworks = 216.185.71.0/26, 216.185.71.64/27, 209.47.176.0/26,
192.168.216.0/24, 192.168.209.0/24, 192.168.8.0/24,
192.168.7.0/24,
192.168.6.0/24, 127.0.0.0/8
mynetworks_style = subnet
newaliases_path = /usr/local/bin/newaliases
non_smtpd_milters = $smtpd_milters
policyd-spf_time_limit = 3600
postscreen_access_list = permit_mynetworks,
cidr:/usr/local/etc/postfix/postscreen_access.cidr
postscreen_dnsbl_sites = zen.spamhaus.org*2 bl.spamcop.net*1
dun.dnsrbl.net*1
escalations.dnsbl.sorbs.net*1