[qmailtoaster] Re: Bounce mail
That part of the code is doing IPv6 lookups. I don't know why. Have you disabled IPv6? On 11/10/2010 05:38 PM, bax bax wrote: No now I recive two mail the bounced one and the second subject:Cron r...@server2 env LANG=C /usr/bin/mrtg /usr/share/toaster/mrtg/qmailmrtg.cfg 21 /dev/null Subroutine main::AF_INET6 redefined at /usr/lib/perl5/5.8.8/Exporter.pm line 65. at /usr/bin/mrtg line 97 To: qmailtoaster-list@qmailtoaster.com From: e...@shubes.net Date: Wed, 10 Nov 2010 16:42:02 -0700 Subject: [qmailtoaster] Re: Bounce mail It looks as though some IPv6 modules are coming into play. I would try disabling IPv6 and see if that fixes things up. In /etc/sysconfig/network file: NETWORKING_IPV6=no (unless of course you're actually *using* IPv6, which I'm guessing you're not) You'll need to restart networking (or reboot) after making this change. This really is just a guess. Hard to say what's really going on w/out looking at the code. Did you fix the problem with cron email delivery? -- -Eric 'shubes' On 11/10/2010 03:59 PM, bax bax wrote: Thanks Eric but problem still here #qtp-whatami qtp-whatami v0.3.7 Wed Nov 10 23:58:41 CET 2010 DISTRO=CentOS OSVER=5.5 QTARCH=x86_64 QTKERN=2.6.18-194.17.4.el5 BUILD_DIST=cnt5064 BUILD_DIR=/usr/src/redhat This machine's OS is supported and has been tested To: qmailtoaster-list@qmailtoaster.com From: e...@shubes.net Date: Wed, 10 Nov 2010 10:55:28 -0700 Subject: [qmailtoaster] Re: Bounce mail On 11/07/2010 07:28 PM, bax bax wrote: Good morning I have update my qmailtoaster but now every 4-5 minutes I get = this message, can I fix this? Thanks for you help Hi. This is the qmail-send program at server2.x.org. I tried to deliver a bounce message to this address, but the bounce bounc= ed! anonym...@localdomain.com: Sorry=2C I wasn't able to establish an SMTP connection. (#4.4.1) I'm not going to try again; this message has been in the queue too long. --- Below this line is the original bounce. Return-Path: Received: (qmail 23910 invoked for bounce); 6 Nov 2010 22:10:03 - Date: 6 Nov 2010 22:10:03 - From: mailer-dae...@server2.x.org To: anonym...@localdomain.com Subject: failure notice Hi. This is the qmail-send program at server2.xx.org. I'm afraid I wasn't able to deliver your message to the following addresses= . This is a permanent error=3B I've given up. Sorry it didn't work out. r...@localdomain.com: Sorry=2C I wasn't able to establish an SMTP connection. (#4.4.1) I'm not going to try again=3B this message has been in the queue too long. --- Below this line is a copy of the message. Return-Path:anonym...@localdomain.com Received: (qmail 10832 invoked by uid 0)=3B 5 Nov 2010 21:10:02 - Date: 5 Nov 2010 21:10:01 - Message-ID:20101105211001.10784.qm...@server2..org From: r...@localdomain.com (Cron Daemon) To: r...@localdomain.com Subject: Cronr...@server2 env LANG=3DC /usr/bin/mrtg /usr/share/toaster/= mrtg/qmailmrtg.cfg 21 /dev/null Content-Type: text/plain=3B charset=3DUTF-8 Auto-Submitted: auto-generated X-Cron-Env:SHELL=3D/bin/bash X-Cron-Env:PATH=3D/sbin:/bin:/usr/sbin:/usr/bin X-Cron-Env:MAILTO=3Droot X-Cron-Env:HOME=3D/ X-Cron-Env:LOGNAME=3Droot X-Cron-Env:USER=3Droot Subroutine SNMPv1_Session::AF_INET6 redefined at /usr/lib/perl5/5.8.8/Expor= ter.pm line 65. at /usr/bin/../lib64/mrtg2/SNMP_Session.pm line 594 Subroutine main::AF_INET6 redefined at /usr/lib/perl5/5.8.8/Exporter.pm lin= e 65. at /usr/bin/mrtg line 97 You appear to have 2 problems. First is a problem with mrtg. That error is trying to be emailed from cron to r...@localdomain.com, which is undeliverable (2nd problem). You can change the MAILTO= parameter in your /etc/crontab file to point to a valid email address to fix the 2nd problem. The first problem appears to be a problem with the Exporter.pm module, which is part of the perl package. I would make sure that perl is up to date: # yum update perl If that doesn't fix things, what does # qtp-whatami show you? -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages.
Re: [qmailtoaster] Re: Doubles
Hey, I'm NOT using spamdyke but I have the same problems listed by madmac, and I can swear it's NOT about Outlook 'cause I'm NOT using it (Thunderbird istead). So wich conf files should I check? Thanks, /Cheers A. Il 10/11/2010 19:06, Eric Shubert ha scritto: Good replies. I'd just like to clarify a bit. It's not so much the timeout that causes duplicates, as it is the length of time it takes to scan a message. When the timeout period (in Outlook or spamdyke) is shorter than the scan time, the session will time out, causing the sending host to resend, which results in duplicates. BL, be sure that scanning (spamassassin and clamav) is being done efficiently, and there is no bottleneck happening there. The spamd log is a good place to check for this. Note that spamdyke's TIMEOUT messages in the smtp log are often 'normal', and no cause for alarm. These happen when spamming hosts do not end the smtp session gracefully after being given a rejection message. - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: Bounce mail
yes disabled. To: qmailtoaster-list@qmailtoaster.com From: e...@shubes.net Date: Thu, 11 Nov 2010 09:06:09 -0700 Subject: [qmailtoaster] Re: Bounce mail That part of the code is doing IPv6 lookups. I don't know why. Have you disabled IPv6? On 11/10/2010 05:38 PM, bax bax wrote: No now I recive two mail the bounced one and the second subject:Cron r...@server2 env LANG=C /usr/bin/mrtg /usr/share/toaster/mrtg/qmailmrtg.cfg 21 /dev/null Subroutine main::AF_INET6 redefined at /usr/lib/perl5/5.8.8/Exporter.pm line 65. at /usr/bin/mrtg line 97 To: qmailtoaster-list@qmailtoaster.com From: e...@shubes.net Date: Wed, 10 Nov 2010 16:42:02 -0700 Subject: [qmailtoaster] Re: Bounce mail It looks as though some IPv6 modules are coming into play. I would try disabling IPv6 and see if that fixes things up. In /etc/sysconfig/network file: NETWORKING_IPV6=no (unless of course you're actually *using* IPv6, which I'm guessing you're not) You'll need to restart networking (or reboot) after making this change. This really is just a guess. Hard to say what's really going on w/out looking at the code. Did you fix the problem with cron email delivery? -- -Eric 'shubes' On 11/10/2010 03:59 PM, bax bax wrote: Thanks Eric but problem still here #qtp-whatami qtp-whatami v0.3.7 Wed Nov 10 23:58:41 CET 2010 DISTRO=CentOS OSVER=5.5 QTARCH=x86_64 QTKERN=2.6.18-194.17.4.el5 BUILD_DIST=cnt5064 BUILD_DIR=/usr/src/redhat This machine's OS is supported and has been tested To: qmailtoaster-list@qmailtoaster.com From: e...@shubes.net Date: Wed, 10 Nov 2010 10:55:28 -0700 Subject: [qmailtoaster] Re: Bounce mail On 11/07/2010 07:28 PM, bax bax wrote: Good morning I have update my qmailtoaster but now every 4-5 minutes I get = this message, can I fix this? Thanks for you help Hi. This is the qmail-send program at server2.x.org. I tried to deliver a bounce message to this address, but the bounce bounc= ed! anonym...@localdomain.com: Sorry=2C I wasn't able to establish an SMTP connection. (#4.4.1) I'm not going to try again; this message has been in the queue too long. --- Below this line is the original bounce. Return-Path: Received: (qmail 23910 invoked for bounce); 6 Nov 2010 22:10:03 - Date: 6 Nov 2010 22:10:03 - From: mailer-dae...@server2.x.org To: anonym...@localdomain.com Subject: failure notice Hi. This is the qmail-send program at server2.xx.org. I'm afraid I wasn't able to deliver your message to the following addresses= . This is a permanent error=3B I've given up. Sorry it didn't work out. r...@localdomain.com: Sorry=2C I wasn't able to establish an SMTP connection. (#4.4.1) I'm not going to try again=3B this message has been in the queue too long. --- Below this line is a copy of the message. Return-Path:anonym...@localdomain.com Received: (qmail 10832 invoked by uid 0)=3B 5 Nov 2010 21:10:02 - Date: 5 Nov 2010 21:10:01 - Message-ID:20101105211001.10784.qm...@server2..org From: r...@localdomain.com (Cron Daemon) To: r...@localdomain.com Subject: Cronr...@server2 env LANG=3DC /usr/bin/mrtg /usr/share/toaster/= mrtg/qmailmrtg.cfg 21 /dev/null Content-Type: text/plain=3B charset=3DUTF-8 Auto-Submitted: auto-generated X-Cron-Env:SHELL=3D/bin/bash X-Cron-Env:PATH=3D/sbin:/bin:/usr/sbin:/usr/bin X-Cron-Env:MAILTO=3Droot X-Cron-Env:HOME=3D/ X-Cron-Env:LOGNAME=3Droot X-Cron-Env:USER=3Droot Subroutine SNMPv1_Session::AF_INET6 redefined at /usr/lib/perl5/5.8.8/Expor= ter.pm line 65. at /usr/bin/../lib64/mrtg2/SNMP_Session.pm line 594 Subroutine main::AF_INET6 redefined at /usr/lib/perl5/5.8.8/Exporter.pm lin= e 65. at /usr/bin/mrtg line 97 You appear to have 2 problems. First is a problem with mrtg. That error is trying to be emailed from cron to r...@localdomain.com, which is undeliverable (2nd problem). You can change the MAILTO= parameter in your /etc/crontab file to point to a valid email address to fix the 2nd problem. The first problem appears to be a problem with the Exporter.pm module, which is part of the perl package. I would make sure that perl is up to date: # yum update perl If that doesn't fix things, what does # qtp-whatami show you? -- -Eric 'shubes'
[qmailtoaster] iptables firewall issue
All, I continue to have strange firewall issues. The iptables firewall is acting normal EXCEPT when the system gets restarted. Then it is like it goes back to some default setting and I have log into the console and manually run the firewall.sh script. The script automatically saves the settings with 'service iptables save' and I have run this manually as well. Still having the same issue. Anyone out there have any ideas that might save my firewall settings though restarts/reboots? Thanks, Scott
[qmailtoaster] Re: Bounce mail
I don't know why that code is being invoked. Have you installed any perl modules using CPAN? If so, using rpm packages instead might fix things up. Please read through recent thread on list with subject Clamav update trouble for instructions on how to get rid of CPAN modules and install perl modules using rpm packages. -- -Eric 'shubes' On 11/11/2010 09:23 AM, bax bax wrote: yes disabled. To: qmailtoaster-list@qmailtoaster.com From: e...@shubes.net Date: Thu, 11 Nov 2010 09:06:09 -0700 Subject: [qmailtoaster] Re: Bounce mail That part of the code is doing IPv6 lookups. I don't know why. Have you disabled IPv6? On 11/10/2010 05:38 PM, bax bax wrote: No now I recive two mail the bounced one and the second subject:Cron r...@server2 env LANG=C /usr/bin/mrtg /usr/share/toaster/mrtg/qmailmrtg.cfg 21 /dev/null Subroutine main::AF_INET6 redefined at /usr/lib/perl5/5.8.8/Exporter.pm line 65. at /usr/bin/mrtg line 97 To: qmailtoaster-list@qmailtoaster.com From: e...@shubes.net Date: Wed, 10 Nov 2010 16:42:02 -0700 Subject: [qmailtoaster] Re: Bounce mail It looks as though some IPv6 modules are coming into play. I would try disabling IPv6 and see if that fixes things up. In /etc/sysconfig/network file: NETWORKING_IPV6=no (unless of course you're actually *using* IPv6, which I'm guessing you're not) You'll need to restart networking (or reboot) after making this change. This really is just a guess. Hard to say what's really going on w/out looking at the code. Did you fix the problem with cron email delivery? -- -Eric 'shubes' On 11/10/2010 03:59 PM, bax bax wrote: Thanks Eric but problem still here #qtp-whatami qtp-whatami v0.3.7 Wed Nov 10 23:58:41 CET 2010 DISTRO=CentOS OSVER=5.5 QTARCH=x86_64 QTKERN=2.6.18-194.17.4.el5 BUILD_DIST=cnt5064 BUILD_DIR=/usr/src/redhat This machine's OS is supported and has been tested To: qmailtoaster-list@qmailtoaster.com From: e...@shubes.net Date: Wed, 10 Nov 2010 10:55:28 -0700 Subject: [qmailtoaster] Re: Bounce mail On 11/07/2010 07:28 PM, bax bax wrote: Good morning I have update my qmailtoaster but now every 4-5 minutes I get = this message, can I fix this? Thanks for you help Hi. This is the qmail-send program at server2.x.org. I tried to deliver a bounce message to this address, but the bounce bounc= ed! anonym...@localdomain.com: Sorry=2C I wasn't able to establish an SMTP connection. (#4.4.1) I'm not going to try again; this message has been in the queue too long. --- Below this line is the original bounce. Return-Path: Received: (qmail 23910 invoked for bounce); 6 Nov 2010 22:10:03 - Date: 6 Nov 2010 22:10:03 - From: mailer-dae...@server2.x.org To: anonym...@localdomain.com Subject: failure notice Hi. This is the qmail-send program at server2.xx.org. I'm afraid I wasn't able to deliver your message to the following addresses= . This is a permanent error=3B I've given up. Sorry it didn't work out. r...@localdomain.com: Sorry=2C I wasn't able to establish an SMTP connection. (#4.4.1) I'm not going to try again=3B this message has been in the queue too long. --- Below this line is a copy of the message. Return-Path:anonym...@localdomain.com Received: (qmail 10832 invoked by uid 0)=3B 5 Nov 2010 21:10:02 - Date: 5 Nov 2010 21:10:01 - Message-ID:20101105211001.10784.qm...@server2..org From: r...@localdomain.com (Cron Daemon) To: r...@localdomain.com Subject: Cronr...@server2 env LANG=3DC /usr/bin/mrtg /usr/share/toaster/= mrtg/qmailmrtg.cfg 21 /dev/null Content-Type: text/plain=3B charset=3DUTF-8 Auto-Submitted: auto-generated X-Cron-Env:SHELL=3D/bin/bash X-Cron-Env:PATH=3D/sbin:/bin:/usr/sbin:/usr/bin X-Cron-Env:MAILTO=3Droot X-Cron-Env:HOME=3D/ X-Cron-Env:LOGNAME=3Droot X-Cron-Env:USER=3Droot Subroutine SNMPv1_Session::AF_INET6 redefined at /usr/lib/perl5/5.8.8/Expor= ter.pm line 65. at /usr/bin/../lib64/mrtg2/SNMP_Session.pm line 594 Subroutine main::AF_INET6 redefined at /usr/lib/perl5/5.8.8/Exporter.pm lin= e 65. at /usr/bin/mrtg line 97 You appear to have 2 problems. First is a problem with mrtg. That error is trying to be emailed from cron to r...@localdomain.com, which is undeliverable (2nd problem). You can change the MAILTO= parameter in your /etc/crontab file to point to a valid email
[qmailtoaster] Re: Doubles
Timeouts can happen at either end (client/sender or server/receiver) of the smtp session. http://wiki.qmailtoaster.com/index.php/Timeoutsmtpd http://kb.mozillazine.org/Thunderbird_3.0_-_New_Features_and_Changes#Removed_Preferences (You might try searching a bit before posting here next time) -- -Eric 'shubes' On 11/11/2010 09:14 AM, Digital Instruments wrote: Hey, I'm NOT using spamdyke but I have the same problems listed by madmac, and I can swear it's NOT about Outlook 'cause I'm NOT using it (Thunderbird istead). So wich conf files should I check? Thanks, /Cheers A. Il 10/11/2010 19:06, Eric Shubert ha scritto: Good replies. I'd just like to clarify a bit. It's not so much the timeout that causes duplicates, as it is the length of time it takes to scan a message. When the timeout period (in Outlook or spamdyke) is shorter than the scan time, the session will time out, causing the sending host to resend, which results in duplicates. BL, be sure that scanning (spamassassin and clamav) is being done efficiently, and there is no bottleneck happening there. The spamd log is a good place to check for this. Note that spamdyke's TIMEOUT messages in the smtp log are often 'normal', and no cause for alarm. These happen when spamming hosts do not end the smtp session gracefully after being given a rejection message. - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
[qmailtoaster] Re: iptables firewall issue
On 11/11/2010 09:40 AM, Scott Hughes wrote: All, I continue to have strange firewall issues. The iptables firewall is acting normal EXCEPT when the system gets restarted. Then it is like it goes back to some default setting and I have log into the console and manually run the firewall.sh script. The script automatically saves the settings with 'service iptables save' and I have run this manually as well. Still having the same issue. Anyone out there have any ideas that might save my firewall settings though restarts/reboots? Thanks, Scott That's peculiar. I expect that something else in your boot process is setting the firewall. After reboot, does the /etc/sysconfig/iptables file contain the settings from firewall.sh script or something else? That's the file that's normally used to start/restart iptables. -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: iptables firewall issue
On Thu, Nov 11, 2010 at 11:21 AM, Eric Shubert e...@shubes.net wrote: On 11/11/2010 09:40 AM, Scott Hughes wrote: All, I continue to have strange firewall issues. The iptables firewall is acting normal EXCEPT when the system gets restarted. Then it is like it goes back to some default setting and I have log into the console and manually run the firewall.sh script. The script automatically saves the settings with 'service iptables save' and I have run this manually as well. Still having the same issue. Anyone out there have any ideas that might save my firewall settings though restarts/reboots? Thanks, Scott That's peculiar. I expect that something else in your boot process is setting the firewall. After reboot, does the /etc/sysconfig/iptables file contain the settings from firewall.sh script or something else? That's the file that's normally used to start/restart iptables. -- -Eric 'shubes' I'll have to check that when I can take the server down for a few. I know that the when I checked the /etc/sysconfig/iptables file AFTER I ran the firewall.sh script, it contained the correct information. Scott
Re: [qmailtoaster] Re: iptables firewall issue
On Thu, Nov 11, 2010 at 11:34 AM, Scott Hughes sonicscott9...@gmail.comwrote: On Thu, Nov 11, 2010 at 11:21 AM, Eric Shubert e...@shubes.net wrote: On 11/11/2010 09:40 AM, Scott Hughes wrote: All, I continue to have strange firewall issues. The iptables firewall is acting normal EXCEPT when the system gets restarted. Then it is like it goes back to some default setting and I have log into the console and manually run the firewall.sh script. The script automatically saves the settings with 'service iptables save' and I have run this manually as well. Still having the same issue. Anyone out there have any ideas that might save my firewall settings though restarts/reboots? Thanks, Scott That's peculiar. I expect that something else in your boot process is setting the firewall. After reboot, does the /etc/sysconfig/iptables file contain the settings from firewall.sh script or something else? That's the file that's normally used to start/restart iptables. -- -Eric 'shubes' I'll have to check that when I can take the server down for a few. I know that the when I checked the /etc/sysconfig/iptables file AFTER I ran the firewall.sh script, it contained the correct information. Scott After rebooting a new non-production QMT server I checked the /etc/sysconfig/iptables file and it looks like it is correct. I was not able to SSH into the box until after I run the firewall.sh script (I have it set up so that SSH is on a different port). Once I run the firewall.sh script, I can SSH just like normal. I've been running Google searches, but they so far have not helped. They give me the same commands (service iptables save or /etc/init.d/iptables save). Any advice on this one? Thanks, Scott
[qmailtoaster] Re: iptables firewall issue
On 11/11/2010 11:13 AM, Scott Hughes wrote: On Thu, Nov 11, 2010 at 11:34 AM, Scott Hughes sonicscott9...@gmail.com mailto:sonicscott9...@gmail.com wrote: On Thu, Nov 11, 2010 at 11:21 AM, Eric Shubert e...@shubes.net mailto:e...@shubes.net wrote: On 11/11/2010 09:40 AM, Scott Hughes wrote: All, I continue to have strange firewall issues. The iptables firewall is acting normal EXCEPT when the system gets restarted. Then it is like it goes back to some default setting and I have log into the console and manually run the firewall.sh script. The script automatically saves the settings with 'service iptables save' and I have run this manually as well. Still having the same issue. Anyone out there have any ideas that might save my firewall settings though restarts/reboots? Thanks, Scott That's peculiar. I expect that something else in your boot process is setting the firewall. After reboot, does the /etc/sysconfig/iptables file contain the settings from firewall.sh script or something else? That's the file that's normally used to start/restart iptables. -- -Eric 'shubes' I'll have to check that when I can take the server down for a few. I know that the when I checked the /etc/sysconfig/iptables file AFTER I ran the firewall.sh script, it contained the correct information. Scott After rebooting a new non-production QMT server I checked the /etc/sysconfig/iptables file and it looks like it is correct. I was not able to SSH into the box until after I run the firewall.sh script (I have it set up so that SSH is on a different port). Once I run the firewall.sh script, I can SSH just like normal. I've been running Google searches, but they so far have not helped. They give me the same commands (service iptables save or /etc/init.d/iptables save). Any advice on this one? Thanks, Scott Something's changing iptables. If it's not changing the /etc/sysconfig/iptables file, then it must be changing iptables on the fly, after init starts iptables (which uses the /etc/sysconfig/iptables file). Anything in rc.local? -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: iptables firewall issue
On Thu, Nov 11, 2010 at 12:35 PM, Eric Shubert e...@shubes.net wrote: On 11/11/2010 11:13 AM, Scott Hughes wrote: On Thu, Nov 11, 2010 at 11:34 AM, Scott Hughes sonicscott9...@gmail.com mailto:sonicscott9...@gmail.com wrote: On Thu, Nov 11, 2010 at 11:21 AM, Eric Shubert e...@shubes.net mailto:e...@shubes.net wrote: On 11/11/2010 09:40 AM, Scott Hughes wrote: All, I continue to have strange firewall issues. The iptables firewall is acting normal EXCEPT when the system gets restarted. Then it is like it goes back to some default setting and I have log into the console and manually run the firewall.sh script. The script automatically saves the settings with 'service iptables save' and I have run this manually as well. Still having the same issue. Anyone out there have any ideas that might save my firewall settings though restarts/reboots? Thanks, Scott That's peculiar. I expect that something else in your boot process is setting the firewall. After reboot, does the /etc/sysconfig/iptables file contain the settings from firewall.sh script or something else? That's the file that's normally used to start/restart iptables. -- -Eric 'shubes' I'll have to check that when I can take the server down for a few. I know that the when I checked the /etc/sysconfig/iptables file AFTER I ran the firewall.sh script, it contained the correct information. Scott After rebooting a new non-production QMT server I checked the /etc/sysconfig/iptables file and it looks like it is correct. I was not able to SSH into the box until after I run the firewall.sh script (I have it set up so that SSH is on a different port). Once I run the firewall.sh script, I can SSH just like normal. I've been running Google searches, but they so far have not helped. They give me the same commands (service iptables save or /etc/init.d/iptables save). Any advice on this one? Thanks, Scott Something's changing iptables. If it's not changing the /etc/sysconfig/iptables file, then it must be changing iptables on the fly, after init starts iptables (which uses the /etc/sysconfig/iptables file). Anything in rc.local? -- -Eric 'shubes' I think you may have found the issue. Here is what is in rc.local ## Bring up firewall /sbin/iptables-restore /etc/rc.d/firewall.ruleset I think that is what is causing my issue. Would it be okay to change the /etc/rc.d/firewall.ruleset to /etc/sysconfig/iptables ?? Thanks again, Scott
[qmailtoaster] Re: iptables firewall issue
On 11/11/2010 11:59 AM, Scott Hughes wrote: On Thu, Nov 11, 2010 at 12:35 PM, Eric Shubert e...@shubes.net Something's changing iptables. If it's not changing the /etc/sysconfig/iptables file, then it must be changing iptables on the fly, after init starts iptables (which uses the /etc/sysconfig/iptables file). Anything in rc.local? -- -Eric 'shubes' I think you may have found the issue. Here is what is in rc.local ## Bring up firewall /sbin/iptables-restore /etc/rc.d/firewall.ruleset I think that is what is causing my issue. Would it be okay to change the /etc/rc.d/firewall.ruleset to /etc/sysconfig/iptables ?? Thanks again, Scott rc.local is used for local customization. I've no idea how what you have got there. I do have a firewall.ruleset file on my system, but it doesn't belong to any package, and I don't see anywhere that it's used. I would simply comment out what you have in rc.local, and let the stock settings operate as they do. Just check to be sure that iptables is started (# chkconfig --list iptables), and iptables should start normally with whatever is in your /etc/sysconfig/iptables file. You might do -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: Doubles
My experience is that the doubles happen after using the autoresponse option in qmailadmin. The users .qmail file ends up with an extra entry after the maildrop entry. -- Soren Andersen Eric Shubert wrote: Timeouts can happen at either end (client/sender or server/receiver) of the smtp session. http://wiki.qmailtoaster.com/index.php/Timeoutsmtpd http://kb.mozillazine.org/Thunderbird_3.0_-_New_Features_and_Changes#Removed_Preferences (You might try searching a bit before posting here next time) attachment: sandersen.vcf- Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: iptables firewall issue
On Thu, Nov 11, 2010 at 1:17 PM, Eric Shubert e...@shubes.net wrote: On 11/11/2010 11:59 AM, Scott Hughes wrote: On Thu, Nov 11, 2010 at 12:35 PM, Eric Shubert e...@shubes.net Something's changing iptables. If it's not changing the /etc/sysconfig/iptables file, then it must be changing iptables on the fly, after init starts iptables (which uses the /etc/sysconfig/iptables file). Anything in rc.local? -- -Eric 'shubes' I think you may have found the issue. Here is what is in rc.local ## Bring up firewall /sbin/iptables-restore /etc/rc.d/firewall.ruleset I think that is what is causing my issue. Would it be okay to change the /etc/rc.d/firewall.ruleset to /etc/sysconfig/iptables ?? Thanks again, Scott rc.local is used for local customization. I've no idea how what you have got there. I do have a firewall.ruleset file on my system, but it doesn't belong to any package, and I don't see anywhere that it's used. I would simply comment out what you have in rc.local, and let the stock settings operate as they do. Just check to be sure that iptables is started (# chkconfig --list iptables), and iptables should start normally with whatever is in your /etc/sysconfig/iptables file. You might do -- -Eric 'shubes' Commenting out that line in rc.local seems to have done the trick. I have this same issue on two of my QMT boxes. They were both loaded from the QMT 5 ISO cd-rom. Might be something that needs to be checked. Thanks again Eric! Scott
[qmailtoaster] Re: Doubles
On 11/11/2010 12:19 PM, Soren Andersen wrote: My experience is that the doubles happen after using the autoresponse option in qmailadmin. The users .qmail file ends up with an extra entry after the maildrop entry. - Thanks for bringing this up, Soren. Yeah, there's a bug in qmailadmin. I've seen this as well after changing a last name. This causes duplicates all the time. Would someone like to have a look at the code and see if there might be an easy fix for this? The duplicates due to timeouts are intermittent, and usually only happen on large messages. -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: iptables firewall issue
On 11/11/2010 02:27 PM, Scott Hughes wrote: On Thu, Nov 11, 2010 at 1:17 PM, Eric Shubert e...@shubes.net mailto:e...@shubes.net wrote: On 11/11/2010 11:59 AM, Scott Hughes wrote: On Thu, Nov 11, 2010 at 12:35 PM, Eric Shubert e...@shubes.net mailto:e...@shubes.net Something's changing iptables. If it's not changing the /etc/sysconfig/iptables file, then it must be changing iptables on the fly, after init starts iptables (which uses the /etc/sysconfig/iptables file). Anything in rc.local? -- -Eric 'shubes' I think you may have found the issue. Here is what is in rc.local ## Bring up firewall /sbin/iptables-restore /etc/rc.d/firewall.ruleset I think that is what is causing my issue. Would it be okay to change the /etc/rc.d/firewall.ruleset to /etc/sysconfig/iptables ?? Thanks again, Scott rc.local is used for local customization. I've no idea how what you have got there. I do have a firewall.ruleset file on my system, but it doesn't belong to any package, and I don't see anywhere that it's used. I would simply comment out what you have in rc.local, and let the stock settings operate as they do. Just check to be sure that iptables is started (# chkconfig --list iptables), and iptables should start normally with whatever is in your /etc/sysconfig/iptables file. You might do -- -Eric 'shubes' Commenting out that line in rc.local seems to have done the trick. I have this same issue on two of my QMT boxes. They were both loaded from the QMT 5 ISO cd-rom. Might be something that needs to be checked. Thanks again Eric! Scott No checking needed. The ISO contains a firewall setup and is documented on the ISO page on the wiki: http://wiki.qmailtoaster.com/index.php/QMT-ISO_Manual_Guide#Setting_iptables
[qmailtoaster] Re: iptables firewall issue
On 11/11/2010 01:10 PM, Jake Vickers wrote: On 11/11/2010 02:27 PM, Scott Hughes wrote: On Thu, Nov 11, 2010 at 1:17 PM, Eric Shubert e...@shubes.net mailto:e...@shubes.net wrote: On 11/11/2010 11:59 AM, Scott Hughes wrote: On Thu, Nov 11, 2010 at 12:35 PM, Eric Shubert e...@shubes.net mailto:e...@shubes.net Something's changing iptables. If it's not changing the /etc/sysconfig/iptables file, then it must be changing iptables on the fly, after init starts iptables (which uses the /etc/sysconfig/iptables file). Anything in rc.local? -- -Eric 'shubes' I think you may have found the issue. Here is what is in rc.local ## Bring up firewall /sbin/iptables-restore /etc/rc.d/firewall.ruleset I think that is what is causing my issue. Would it be okay to change the /etc/rc.d/firewall.ruleset to /etc/sysconfig/iptables ?? Thanks again, Scott rc.local is used for local customization. I've no idea how what you have got there. I do have a firewall.ruleset file on my system, but it doesn't belong to any package, and I don't see anywhere that it's used. I would simply comment out what you have in rc.local, and let the stock settings operate as they do. Just check to be sure that iptables is started (# chkconfig --list iptables), and iptables should start normally with whatever is in your /etc/sysconfig/iptables file. You might do -- -Eric 'shubes' Commenting out that line in rc.local seems to have done the trick. I have this same issue on two of my QMT boxes. They were both loaded from the QMT 5 ISO cd-rom. Might be something that needs to be checked. Thanks again Eric! Scott No checking needed. The ISO contains a firewall setup and is documented on the ISO page on the wiki: http://wiki.qmailtoaster.com/index.php/QMT-ISO_Manual_Guide#Setting_iptables Is there some reason that QMT-ISO doesn't use the conventional mechanism for starting iptables? -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] iptables firewall issue
Hi Scott, The important file for iptables which will be loaded at startup is in /etc/sysconfig/iptables It is basically the same information you have in the firewall script, but in a slightly different syntax. Perhaps you need to check if that file is on the system and has valid content? It should look something like this: # Generated by iptables-save v1.3.5 on Thu Sep 9 17:00:22 2010 *filter :INPUT DROP [0:0] :FORWARD DROP [0:0] :OUTPUT DROP [12:1444] -A INPUT -i eth0 -f -j DROP -A INPUT -s 127.0.0.0/255.0.0.0 -i ! lo -j DROP -A INPUT -s 10.0.0.0/255.0.0.0 -i ! lo -j DROP -A INPUT -s 172.16.0.0/255.240.0.0 -i ! lo -j DROP -A INPUT -s 192.168.0.0/255.255.0.0 -i ! lo -j DROP -A INPUT -s 224.0.0.0/240.0.0.0 -i ! lo -j DROP -A INPUT -s 240.0.0.0/240.0.0.0 -i ! lo -j DROP -A INPUT -s 0.0.0.0/255.0.0.0 -i ! lo -j DROP -A INPUT -s 255.255.255.255 -i ! lo -j DROP -A INPUT -s 169.254.0.0/255.255.0.0 -i ! lo -j DROP -A INPUT -i lo -j ACCEPT -A INPUT -p tcp -m tcp --dport 22 --tcp-flags FIN,SYN,RST,ACK SYN -j ACCEPT -A INPUT -p tcp -m tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j ACCEPT -A INPUT -p tcp -m tcp --dport 80 --tcp-flags FIN,SYN,RST,ACK SYN -j ACCEPT -A INPUT -p tcp -m tcp --dport 110 --tcp-flags FIN,SYN,RST,ACK SYN -j ACCEPT -A INPUT -p tcp -m tcp --dport 113 -j REJECT --reject-with tcp-reset -A INPUT -p tcp -m tcp --dport 143 --tcp-flags FIN,SYN,RST,ACK SYN -j ACCEPT -A INPUT -p tcp -m tcp --dport 443 --tcp-flags FIN,SYN,RST,ACK SYN -j ACCEPT -A INPUT -p tcp -m tcp --dport 587 --tcp-flags FIN,SYN,RST,ACK SYN -j ACCEPT -A INPUT -p tcp -m tcp --dport 993 --tcp-flags FIN,SYN,RST,ACK SYN -j ACCEPT -A INPUT -p tcp -m tcp --dport 995 --tcp-flags FIN,SYN,RST,ACK SYN -j ACCEPT -A INPUT -p tcp -m tcp --dport 5667 --tcp-flags FIN,SYN,RST,ACK SYN -j ACCEPT -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -p icmp -m state --state NEW,RELATED,ESTABLISHED -j ACCEPT -A INPUT -m state --state NEW -j REJECT --reject-with icmp-port-unreachable -A OUTPUT -o lo -j ACCEPT -A OUTPUT -p tcp -m state --state NEW,ESTABLISHED -j ACCEPT -A OUTPUT -p udp -m state --state NEW,ESTABLISHED -j ACCEPT -A OUTPUT -p icmp -m state --state NEW,RELATED,ESTABLISHED -j ACCEPT COMMIT # Completed on Thu Sep 9 17:00:22 2010 From: Scott Hughes Sent: Thursday, November 11, 2010 5:40 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] iptables firewall issue All, I continue to have strange firewall issues. The iptables firewall is acting normal EXCEPT when the system gets restarted. Then it is like it goes back to some default setting and I have log into the console and manually run the firewall.sh script. The script automatically saves the settings with 'service iptables save' and I have run this manually as well. Still having the same issue. Anyone out there have any ideas that might save my firewall settings though restarts/reboots? Thanks, Scott
Re: [qmailtoaster] Doubles
Hi, I have seen this sort of thing where the local pc is using an email client and an AV package that scans email on sending. For small emails this is not an issue but when the client is sending a large email with attachments clients like Outlook can timeout as the proxy mail server takes longer to scan the outbound email than the timeout of the client. This means the client will assume the send was incomplete yet the proxy mailer in the AV still completes the transaction. Hope this helps. On 10/11/2010 1:53 AM, madmac wrote: Hi list, Randomly, users are getting two of each email, Is there a log that we can check , or any other area to check. Thanks madmac -- best wishes Tony White - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: POP3 Authentication on CentOS 5.5 64Bit
Hello Mario, I had same problem when I use QMT on 64bit Linux. Is it the last vpopmail include QMT? Or I need download the src vpopmail package from inter7.com? By the way, If I need more RAM, is 4GB RAM OK? Kevin 于 2010/10/17 4:50, Mario 写道: Hello, Problem fixed. Probably it was/is of because vchkpw. I've downloaded and compiled the latest vpopmail from http://www.inter7.com/index.php?page=vpopmail and issue got fixed. Thank you Eric. Saturday, October 16, 2010, 10:46:40 PM, you wrote: Hello Eric, Saturday, October 16, 2010, 10:32:14 PM, you wrote: On 10/16/2010 12:20 PM, Mario wrote: Hello all, I've POP3 authentication issues with qmail toaster on centos 5.5 . The error the pop3 client receives it's: The response is: /home/vpopmail/bin/vchkpw: error while loading shared libraries: libcrypt.so.1: failed to map segment from shared object: Cannot allocate memory -ERR authorization failed I've tried increasing the softlimit for pop3 but error persists. Any clues ? Thanks - What'd you increase it to? How much memory do you have? # free 64Bit machines definitely need more. I thought Jake had fixed this. Perhaps the memory increase doesn't happen on 5.5? # more /var/qmail/supervise/pop3/run|grep soft exec /usr/bin/softlimit -m 4000 \ # free -m total used free sharedbuffers cached Mem: 5956 5743213 0229 4627 -/+ buffers/cache:886 5070 Swap: 7961 15 7945 I guess it should be sufficient ram allocated. Thanks, Mario - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: POP3 Authentication on CentOS 5.5 64Bit
Hello, I found the last vpomail version is 5.4.32 . The QMT version is 5.4.17 . Could the QMT upgrade the vpopmail to last version? Kevin 于 2010/11/12 10:11, Kevin Qiu 写道: Hello Mario, I had same problem when I use QMT on 64bit Linux. Is it the last vpopmail include QMT? Or I need download the src vpopmail package from inter7.com? By the way, If I need more RAM, is 4GB RAM OK? Kevin 于 2010/10/17 4:50, Mario 写道: Hello, Problem fixed. Probably it was/is of because vchkpw. I've downloaded and compiled the latest vpopmail from http://www.inter7.com/index.php?page=vpopmail and issue got fixed. Thank you Eric. Saturday, October 16, 2010, 10:46:40 PM, you wrote: Hello Eric, Saturday, October 16, 2010, 10:32:14 PM, you wrote: On 10/16/2010 12:20 PM, Mario wrote: Hello all, I've POP3 authentication issues with qmail toaster on centos 5.5 . The error the pop3 client receives it's: The response is: /home/vpopmail/bin/vchkpw: error while loading shared libraries: libcrypt.so.1: failed to map segment from shared object: Cannot allocate memory -ERR authorization failed I've tried increasing the softlimit for pop3 but error persists. Any clues ? Thanks - What'd you increase it to? How much memory do you have? # free 64Bit machines definitely need more. I thought Jake had fixed this. Perhaps the memory increase doesn't happen on 5.5? # more /var/qmail/supervise/pop3/run|grep soft exec /usr/bin/softlimit -m 4000 \ # free -m total used free sharedbuffers cached Mem: 5956 5743213 0229 4627 -/+ buffers/cache:886 5070 Swap: 7961 15 7945 I guess it should be sufficient ram allocated. Thanks, Mario - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com