Re: Using sendmail as a client with auth

[Nikola Pavlović]

On Tue, Feb 14, 2012 at 06:49:52AM +0100, Bernt Hansson wrote:
> 2012-02-13 17:35, Nikola Pavlović skrev:
> > There are lightweight MTAs just for this purpose,
> >I use mail/msmtp and it works great with multiple accounts.
> >Usually, this is much simpler to set up than using
> >a real MTA like Sendmail or Postfix.
> 
> If it is simple then it's no fun ;)
> 

Heh, true that.


-- 
Without ice cream life and fame are meaningless.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"

Re: Using sendmail as a client with auth

[Trond Endrestøl]

On Tue, 14 Feb 2012 11:11+0100, Bernt Hansson wrote:

> On 2012-02-14 10:43, Trond Endrestøl wrote:
> > On Tue, 14 Feb 2012 10:04+0100, Bernt Hansson wrote:
> > 
> > > On 2012-02-14 08:02, Josh Tolbert wrote:
> > > > On 2/13/2012 11:12 PM, Bernt Hansson wrote:
> > > > > 
> > > > > Thank you for your answer.
> > > > > 
> > > > 
> > > > I wrote this ages ago and it's still valid. You can ignore the IMAP
> > > > stuff if you like. :)
> > > 
> > > Well, no cigar for me.
> > > 
> > > I'm leaning at this line.
> > > And I think it is somehow involed in all this "mess"
> > > 
> > > sm-mta[37453]: STARTTLS=client, relay=smtp.isp.com., version=TLSv1/SSLv3,
> > > verify=FAIL, cipher=DHE-RSA-AES256-SHA, bits=256/256
> > 
> > I'm sorry for jumping into this thread,
> 
> Don't be sorry for that.
> 
> > but verify=FAIL is expected
> > unless you have your ISP's certificate chain stored in the appropriate
> > directory with the appropriate file names.
> 
> I do not have a certificate from the isp.
> 
> My tought was more in line of MY sendmail is sending
> starttls first thing before auth login.

Actually, this makes sense. It seems appropriate to establish an 
encrypted connection before sending the username and password. 
A parallel would be SSH.

At the same time the use of SSL/TLS makes it harder to debug what's 
going on.

> Then postfix gets confused.

It sounds strange, but there's a slight chance something is odd at the 
ISP's end.

> Possible scenario?

I don't have any more input at the moment. The next step would be to 
establish a dialog with your ISP and persua^Wask them to investigate 
the matter further.

> > /etc/ssl/certs would be a
> > good place to store the certificates.
> > 
> > A command like this one can be used to generate the "hashed" file
> > names:
> > 
> > ln -s certfile `openssl x509 -noout -hash<  certfile`.0
> > 
> > > Any idea about that? The isp does support STARTTLS.
> > > 
> > > telnet smtp.isp.com 25
> > > Trying x.x.x.x...
> > > Connected to smtp.isp.com.
> > > Escape character is '^]'.
> > > 220 smtp.isp.com ESMTP Postfix (Ubuntu)
> > > ehlo localhost
> > > 250-smtp.isp.com
> > > 250-PIPELINING
> > > 250-SIZE 10240
> > > 250-VRFY
> > > 250-ETRN
> > > 250-STARTTLS
> > > 250-AUTH PLAIN LOGIN
> > > 250-AUTH=PLAIN LOGIN
> > > 250-ENHANCEDSTATUSCODES
> > > 250-8BITMIME
> > > 250 DSN
> > > starttls
> > > 220 2.0.0 Ready to start TLS
> > > 
> > > > http://www.puresimplicity.net/~hemi/freebsd/sendmail.html
> > > 
> > > That is a good site. Learnt me how to build sendmail at least.

-- 
+---++
| Vennlig hilsen,   | Best regards,  |
| Trond Endrestøl,  | Trond Endrestøl,   |
| IT-ansvarlig, | System administrator,  |
| Fagskolen Innlandet,  | Gjøvik Technical College, Norway,  |
| tlf. dir.   61 14 54 39,  | Office.: +47 61 14 54 39,  |
| tlf. mob.   952 62 567,   | Cellular...: +47 952 62 567,   |
| sentralbord 61 14 54 00.  | Switchboard: +47 61 14 54 00.  |
+---++___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"

Re: Using sendmail as a client with auth

[Trond Endrestøl]

On Tue, 14 Feb 2012 10:04+0100, Bernt Hansson wrote:

> On 2012-02-14 08:02, Josh Tolbert wrote:
> > On 2/13/2012 11:12 PM, Bernt Hansson wrote:
> > > 
> > > Thank you for your answer.
> > > 
> > 
> > I wrote this ages ago and it's still valid. You can ignore the IMAP
> > stuff if you like. :)
> 
> Well, no cigar for me.
> 
> I'm leaning at this line.
> And I think it is somehow involed in all this "mess"
> 
> sm-mta[37453]: STARTTLS=client, relay=smtp.isp.com., version=TLSv1/SSLv3,
> verify=FAIL, cipher=DHE-RSA-AES256-SHA, bits=256/256

I'm sorry for jumping into this thread, but verify=FAIL is expected 
unless you have your ISP's certificate chain stored in the appropriate 
directory with the appropriate file names. /etc/ssl/certs would be a 
good place to store the certificates.

A command like this one can be used to generate the "hashed" file 
names:

ln -s certfile `openssl x509 -noout -hash < certfile`.0

> Any idea about that? The isp does support STARTTLS.
> 
> telnet smtp.isp.com 25
> Trying x.x.x.x...
> Connected to smtp.bredband2.com.
> Escape character is '^]'.
> 220 smtp.isp.com ESMTP Postfix (Ubuntu)
> ehlo localhost
> 250-smtp.isp.com
> 250-PIPELINING
> 250-SIZE 10240
> 250-VRFY
> 250-ETRN
> 250-STARTTLS
> 250-AUTH PLAIN LOGIN
> 250-AUTH=PLAIN LOGIN
> 250-ENHANCEDSTATUSCODES
> 250-8BITMIME
> 250 DSN
> starttls
> 220 2.0.0 Ready to start TLS
> 
> > http://www.puresimplicity.net/~hemi/freebsd/sendmail.html
> 
> That is a good site. Learnt me how to build sendmail at least.

-- 
+---++
| Vennlig hilsen,   | Best regards,  |
| Trond Endrestøl,  | Trond Endrestøl,   |
| IT-ansvarlig, | System administrator,  |
| Fagskolen Innlandet,  | Gjøvik Technical College, Norway,  |
| tlf. dir.   61 14 54 39,  | Office.: +47 61 14 54 39,  |
| tlf. mob.   952 62 567,   | Cellular...: +47 952 62 567,   |
| sentralbord 61 14 54 00.  | Switchboard: +47 61 14 54 00.  |
+---++___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"

Re: Using sendmail as a client with auth

[Matthew Seaman]

On 14/02/2012 08:05, Bernt Hansson wrote:
> I have rebuilt and installed world, but no cigar.
> 
> 
> Feb 14 08:50:40 reader sendmail[1147]: q1E7oe7l001147:
> to=b...@bananmonarki.se, ctladdr=bernt (1001/1001), delay=00:00:00,
> xdelay=00:00:00, mailer=relay, pri=30064, relay=[127.0.0.1] [127.0.0.1],
> dsn=2.0.0, stat=Sent (q1E7oevk001148 Message accepted for delivery)
> Feb 14 08:50:41 reader sm-mta[1150]: STARTTLS=client, relay=my.isp.com.,
> version=TLSv1/SSLv3, verify=FAIL, cipher=DHE-RSA-AES256-SHA, bits=256/256
> Feb 14 08:50:47 reader sm-mta[1150]: q1E7oevk001148:
> to=, ctladdr= (1001/1001),
> delay=00:00:07, xdelay=00:00:07, mailer=relay, pri=30391,
> relay=my.isp.com. [x.x.x.x], dsn=5.7.1, stat=Service unavailable
> Feb 14 08:50:47 reader sm-mta[1150]: q1E7oevk001148: q1E7olvk001150:
> DSN: Service unavailable

Look at the output of

  ldd /usr/libexec/sendmail/sendmail

If there's no mention of sasl2 there, then your modifications to the
build process would seem to have failed.

Otherwise, it's a configuration problem and you need to double check
/etc/mail/$(hostname).mc and your client auth data.

Cheers,

Matthew

-- 
Dr Matthew J Seaman MA, D.Phil.   7 Priory Courtyard
  Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate
JID: matt...@infracaninophile.co.uk   Kent, CT11 9PW



signature.asc
Description: OpenPGP digital signature

Re: Using sendmail as a client with auth

[Matthew Seaman]

On 14/02/2012 05:12, Bernt Hansson wrote:
> Is that rebuild as in cd /usr/src && make buildworld or
> cd /usr/src/usr.sbin/sendmail && make

Either of those should do it.

Cheers,

Matthew

-- 
Dr Matthew J Seaman MA, D.Phil.   7 Priory Courtyard
  Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate
JID: matt...@infracaninophile.co.uk   Kent, CT11 9PW



signature.asc
Description: OpenPGP digital signature

Re: Using sendmail as a client with auth

[Josh Tolbert]

On 2/13/2012 11:12 PM, Bernt Hansson wrote:


Thank you for your answer.



I wrote this ages ago and it's still valid. You can ignore the IMAP 
stuff if you like. :)


http://www.puresimplicity.net/~hemi/freebsd/sendmail.html

Cheers,

Josh

--
Josh Tolbert
h...@puresimplicity.net  ||  http://www.puresimplicity.net/~hemi/

Security is mostly a superstition. It does not exist in nature, nor
do the children of men as a whole experience it. Avoiding danger
is no safer in the long run than outright exposure. Life is either
a daring adventure, or nothing.
-- Helen Keller

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"

Re: Using sendmail as a client with auth

[Bernt Hansson]

2012-02-13 17:35, Nikola Pavlović skrev:


If I understood Bernt correctly, he wants to use it to relay mail to
some remote MTA (ISP's or similar)


That is correct.


 There are lightweight MTAs just for this purpose,
I use mail/msmtp and it works great with multiple accounts.
Usually, this is much simpler to set up than using
a real MTA like Sendmail or Postfix.


If it is simple then it's no fun ;)


Not that I have anything against using Sendmail and friends for this
purpose.  Just my $0.02. ;)




___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"

Re: Using sendmail as a client with auth

[Bernt Hansson]

2012-02-13 16:28, Matthew Seaman skrev:

Thank you for your answer.


On 13/02/2012 15:08, Bernt Hansson wrote:

Is this is OT then i'm sorry.

Trying to get sendmail act as a mua, following this tutorial

http://www.sendmail.org/~ca/email/auth.html

Scroll down a bit to Using send

Is it really necessary to install cycrus-sasl2?

How do one make sendmail to pick sasl2 up when building sendmail.
Is there a make.conf line I must add? When telnetting auth works
but using telnet to send mail has a very low WAF.

I've installed cyrus-sasl2 but then what.


Yes -- you do need cyrus-sasl2 for this purpose.

To build sendmail with SASL, either use the ports version in
mail/sendmail, where you can select SASL as one of the options,
or add:

SENDMAIL_CFLAGS=-I/usr/local/include -DSASL=2
SENDMAIL_LDFLAGS=-L/usr/local/lib
SENDMAIL_LDADD=-lsasl2

to /etc/make.conf -- see /usr/share/examples/etc/make.conf for more
details.  This will give you a SASL-enabled base system sendmail once
you rebuild it.


Is that rebuild as in cd /usr/src && make buildworld or
cd /usr/src/usr.sbin/sendmail && make


Note that the second choice makes your base system dependent on stuff
external to it, which may or may not be desirable.

Oh, and before anyone else chimes in with a knee-jerk reaction about
using sendmail: there are other MTAs that can provide this
functionality.  As an alternative, either postfix or exim could do what
you want too.  Sendmail works just fine for me though.

Cheers,

Matthew


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"

Re: Using sendmail as a client with auth

[Nikola Pavlović]

On Mon, Feb 13, 2012 at 03:28:45PM +, Matthew Seaman wrote:
> On 13/02/2012 15:08, Bernt Hansson wrote:
> > Is this is OT then i'm sorry.
> > 
> > Trying to get sendmail act as a mua, following this tutorial
> > 
> > http://www.sendmail.org/~ca/email/auth.html
> > 
> > Scroll down a bit to Using send
> > 
> > Is it really necessary to install cycrus-sasl2?
> > 
> > How do one make sendmail to pick sasl2 up when building sendmail.
> > Is there a make.conf line I must add? When telnetting auth works
> > but using telnet to send mail has a very low WAF.
> > 
> > I've installed cyrus-sasl2 but then what.
> 
> Yes -- you do need cyrus-sasl2 for this purpose.
> 
> To build sendmail with SASL, either use the ports version in
> mail/sendmail, where you can select SASL as one of the options,
> or add:
> 
>SENDMAIL_CFLAGS=-I/usr/local/include -DSASL=2
>SENDMAIL_LDFLAGS=-L/usr/local/lib
>SENDMAIL_LDADD=-lsasl2
> 
> to /etc/make.conf -- see /usr/share/examples/etc/make.conf for more
> details.  This will give you a SASL-enabled base system sendmail once
> you rebuild it.
> 
> Note that the second choice makes your base system dependent on stuff
> external to it, which may or may not be desirable.
> 
> Oh, and before anyone else chimes in with a knee-jerk reaction about
> using sendmail: there are other MTAs that can provide this
> functionality.  As an alternative, either postfix or exim could do what
> you want too.  Sendmail works just fine for me though.
> 

If I understood Bernt correctly, he wants to use it to relay mail to
some remote MTA (ISP's or similar).  There are lightweight MTAs just
for this purpose, I use mail/msmtp and it works great with multiple
accounts.  Usually, this is much simpler to set up than using
a real MTA like Sendmail or Postfix.

Not that I have anything against using Sendmail and friends for this
purpose.  Just my $0.02. ;)



-- 
news: gotcha

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"

Re: Using sendmail as a client with auth

[Matthew Seaman]

On 13/02/2012 15:08, Bernt Hansson wrote:
> Is this is OT then i'm sorry.
> 
> Trying to get sendmail act as a mua, following this tutorial
> 
> http://www.sendmail.org/~ca/email/auth.html
> 
> Scroll down a bit to Using send
> 
> Is it really necessary to install cycrus-sasl2?
> 
> How do one make sendmail to pick sasl2 up when building sendmail.
> Is there a make.conf line I must add? When telnetting auth works
> but using telnet to send mail has a very low WAF.
> 
> I've installed cyrus-sasl2 but then what.

Yes -- you do need cyrus-sasl2 for this purpose.

To build sendmail with SASL, either use the ports version in
mail/sendmail, where you can select SASL as one of the options,
or add:

   SENDMAIL_CFLAGS=-I/usr/local/include -DSASL=2
   SENDMAIL_LDFLAGS=-L/usr/local/lib
   SENDMAIL_LDADD=-lsasl2

to /etc/make.conf -- see /usr/share/examples/etc/make.conf for more
details.  This will give you a SASL-enabled base system sendmail once
you rebuild it.

Note that the second choice makes your base system dependent on stuff
external to it, which may or may not be desirable.

Oh, and before anyone else chimes in with a knee-jerk reaction about
using sendmail: there are other MTAs that can provide this
functionality.  As an alternative, either postfix or exim could do what
you want too.  Sendmail works just fine for me though.

Cheers,

Matthew

-- 
Dr Matthew J Seaman MA, D.Phil.   7 Priory Courtyard
  Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate
JID: matt...@infracaninophile.co.uk   Kent, CT11 9PW



signature.asc
Description: OpenPGP digital signature

Re: Using Sendmail to add headers to mail

[Gerard Seibert]

On Saturday, December 24, 2005 2:23:28 PM
Gerard Seibert <[EMAIL PROTECTED]>
Subject: Using Sendmail to add headers to mail
Wrote these words of wisdom:

> I am not sure if this is possible or not. Is it possible to add custom 
> 'X-' headers to mail using Sendmail? For instance, suppose I wanted to add 
> the Habeas Headers  to all my outgoing email. Is 
> it possible to do via Sendmail, or can this only be accomplished via my 
> MUA?
> 
> I noticed on the Habeas site that there was a configuration for Exim, if 
> that means anything.
> 
> 
> -- 
> Gerard
> [EMAIL PROTECTED]


Well, to answer my own question, I found out that I could use LOCAL_CONFIG
along with the 'H' macro to add the headers in the {domain}.mc file.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Using Sendmail to add headers to mail

[Gerard Seibert]

On Monday, December 26, 2005 5:29:38 AM
"Ted Mittelstaedt" <[EMAIL PROTECTED]>
Subject: RE: Using Sendmail to add headers to mail
Wrote these words of wisdom:

> 
> Yes it is, to do this you use a milter program.
> 
> You can write one or perhaps use this one:
> 
> http://www.roaringpenguin.com/penguin/open_source_mimedefang.php
> 
> which has the capability to add boilerplate.  (I don't know if it
> can add your x-header where you want it, though)
> 
> Ted
> 
> >-Original Message-
> >From: [EMAIL PROTECTED]
> >[mailto:[EMAIL PROTECTED] Behalf Of Gerard Seibert
> >Sent: Saturday, December 24, 2005 11:23 AM
> >To: FreeBSD Questions
> >Subject: Using Sendmail to add headers to mail
> >
> >
> >I am not sure if this is possible or not. Is it possible to add custom
> >'X-' headers to mail using Sendmail? For instance, suppose I
> >wanted to add
> >the Habeas Headers <http://www.habeas.com/> to all my outgoing
> >email. Is
> >it possible to do via Sendmail, or can this only be accomplished via my
> >MUA?
> >
> >I noticed on the Habeas site that there was a configuration for
> >Exim, if
> >that means anything.
> >
> >
> >--
> >Gerard
> >[EMAIL PROTECTED]
> >

* REPLY SEPARATOR *
On 10/11/2005 5:29:42 PM, Gerard Replied:

Thanks Ted. I took a quick look at it; however, I do not think it is
exactly what I need though. I will have to take a closer look later.


smime.p7s
Description: S/MIME cryptographic signature

RE: Using Sendmail to add headers to mail

[Ted Mittelstaedt]

Yes it is, to do this you use a milter program.

You can write one or perhaps use this one:

http://www.roaringpenguin.com/penguin/open_source_mimedefang.php

which has the capability to add boilerplate.  (I don't know if it
can add your x-header where you want it, though)

Ted

>-Original Message-
>From: [EMAIL PROTECTED]
>[mailto:[EMAIL PROTECTED] Behalf Of Gerard Seibert
>Sent: Saturday, December 24, 2005 11:23 AM
>To: FreeBSD Questions
>Subject: Using Sendmail to add headers to mail
>
>
>I am not sure if this is possible or not. Is it possible to add custom
>'X-' headers to mail using Sendmail? For instance, suppose I
>wanted to add
>the Habeas Headers  to all my outgoing
>email. Is
>it possible to do via Sendmail, or can this only be accomplished via my
>MUA?
>
>I noticed on the Habeas site that there was a configuration for
>Exim, if
>that means anything.
>
>
>--
>Gerard
>[EMAIL PROTECTED]
>
> _...
>   o_.-"``\
>.--.  _ `'-._.-'""-; _
>  .'\`_\_  {_.-a"a-}  _ / \
>_/ .-'  '. {c-._o_.){\|`  |
>   (@`-._ /   \{^  } \\ _/
>`~\  '-._  /'. }  \}  .-.
>  |>:<   '-.__/   '._,} \_/  / ())
>  | >:<   `'---. '-.|(`"`
>  \>:<  \\_\\_\ | ;
>   \ \\-{}-\/  \
>\ '._\\'   /)
> '.   /(
>   `-._ _ _ _ __.'\ \
> / \ / \ / \   \ \
>  jgs _.'/^\'._.'/^\'._.'/^\'.__) \
>  ,=='  `---`   '---'   '---'  )
>  `"""`
>___
>freebsd-questions@freebsd.org mailing list
>http://lists.freebsd.org/mailman/listinfo/freebsd-questions
>To unsubscribe, send any mail to
>"[EMAIL PROTECTED]"
>
>--
>No virus found in this incoming message.
>Checked by AVG Free Edition.
>Version: 7.1.371 / Virus Database: 267.14.7/214 - Release Date:
>12/23/2005
>

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Using sendmail - One more file

[antenneX]

- Original Message - 
From: "Giorgos Keramidas" <[EMAIL PROTECTED]>
To: "antenneX" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Sunday, June 27, 2004 7:50 AM
Subject: Re: Using sendmail


> On 2004-06-25 10:12, antenneX <[EMAIL PROTECTED]> wrote:
> >
> > Giorgos: Thanks for your review of my setup & I did change the IP
for
> > server2 back to 200.200.200.102 -- however, now the emails go
straight
> > though the firewall port on server1 to sendmail on server2 and
> > apparently bypasses sendmail on server1. If it bypasses sendmail on
> > server1, I cannot use greylisting to filter the emails before being
sent
> > over to server2.
> >
> > I'm still missing something here.
>
> I'm afraid I haven't kept notes about your network setup, the name and
> IP address of each server involved, and their Sendmail options.
>

I forgot to include the mailertable from server1:
mail.antentop.comesmtp.mail.antentop.com

No mailertable on server2


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Using sendmail

[antenneX]

- Original Message - 
From: "Giorgos Keramidas" <[EMAIL PROTECTED]>
To: "antenneX" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Sunday, June 27, 2004 7:50 AM
Subject: Re: Using sendmail


> On 2004-06-25 10:12, antenneX <[EMAIL PROTECTED]> wrote:
> >
> > Giorgos: Thanks for your review of my setup & I did change the IP
for
> > server2 back to 200.200.200.102 -- however, now the emails go
straight
> > though the firewall port on server1 to sendmail on server2 and
> > apparently bypasses sendmail on server1. If it bypasses sendmail on
> > server1, I cannot use greylisting to filter the emails before being
sent
> > over to server2.
> >
> > I'm still missing something here.
>
> I'm afraid I haven't kept notes about your network setup, the name and
> IP address of each server involved, and their Sendmail options.
>
> Can you, please, show me what these commands print?
>

Giorgos: Thanks for your patience and willingness to help.

As far as sendmail (8.12.11) options, my configs are pretty much "out of
the box" except for the spamassassin & majordomo addins. I believe below
is all the pertinent info, but if I've missed anything needed, just let
me know:

server1 = franklin-belle.com (gateway/firewall/nat/router)
server2 = antentop.com (server is on same LAN with NAT route from
server1)

[EMAIL PROTECTED]:-) host franklin-belle.com
franklin-belle.com has address 65.68.247.73
franklin-belle.com mail is handled (pri=0) by mail.franklin-belle.com

[EMAIL PROTECTED]:-) host antentop.com
antentop.com has address 65.68.247.75
antentop.com mail is handled (pri=0) by mail.antentop.com


[EMAIL PROTECTED]:-) host -t mx franklin-belle.com
franklin-belle.com mail is handled (pri=0) by mail.franklin-belle.com

[EMAIL PROTECTED]:-) host -t mx antentop.com
antentop.com mail is handled (pri=0) by mail.antentop.com

local-host-names (franklin-belle.com)
franklin-belle.com
mail.franklin-belle.com

local-host-names (antentop.com)
antentop.com
mail.antentop.com

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Using sendmail

[Giorgos Keramidas]

On 2004-06-25 10:12, antenneX <[EMAIL PROTECTED]> wrote:
> 
> Giorgos: Thanks for your review of my setup & I did change the IP for
> server2 back to 200.200.200.102 -- however, now the emails go straight
> though the firewall port on server1 to sendmail on server2 and
> apparently bypasses sendmail on server1. If it bypasses sendmail on
> server1, I cannot use greylisting to filter the emails before being sent
> over to server2.
> 
> I'm still missing something here.

I'm afraid I haven't kept notes about your network setup, the name and
IP address of each server involved, and their Sendmail options.

Can you, please, show me what these commands print?

server1# ifconfig -a
server1# host server1.example.net
server1# host server2.example.net
server1# host -t mx example.net

server2# ifconfig -a
server2# host server1.example.net
server2# host server2.example.net
server2# host -t mx example.net

A detailed description (including verbatim copies of the relevant files)
of the Sendmail setup on each host would be very nice too.

- Giorgos

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Using sendmail

[antenneX]

- Original Message - 
From: "Giorgos Keramidas" <[EMAIL PROTECTED]>
To: "antenneX" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Thursday, June 24, 2004 2:08 PM
Subject: Re: Using sendmail


> [-- Format recovered from broken Outlook wrapping --]
>
> On 2004-06-24 13:18, antenneX <[EMAIL PROTECTED]> wrote:
> > Giorgos Keramidas <[EMAIL PROTECTED]> wrote:
> > > On 2004-06-24 11:33, antenneX <[EMAIL PROTECTED]> wrote:
> > > > oops! I should have said please send any config examples
> > > > needed to do this...??
> > >
> > > Look at the file /usr/share/sendmail/cf/README near line 794:
> > >
> > > : mailertable Include a "mailer table" which can be used to
override
> > > : [snip]
> > >
> > > You might also want to check out the rest of this file, [...]
> >
> > Okay, I know I still have messed it up. Tried the setup below, but
something
> > is wrong because of the errors shown and is not delivered to server
#2.
> >
> > Server #1 - IP 200.200.200.101
> > - DNS for mail.server2.net points here (was to 200.200.200.102 and
OK on
> > normal delivery)
>
> I hope you don't mean that the name "mail.server2.net" now points to
> 200.200.200.101.  Only the MX records for server2.net need to point to
> the first host, so that mail for the domain is delivered to this host.
>
> > - mail.server2.net in local-host-names
>
> IIRC, this isn't right.  You should only list mail.server2.net in the
> local-host-names of 200.200.200.102.
>
> > - In mailertable = mail.server2.net esmtp:mail.server2.net
>
> This seems ok.
>
> > Server #2 - IP 200.200.200.102
> > - has sendmail & pop3
> > - mail.server2.net in local-host-names
> > - has user "william"
>
> This seems ok too.
>
> > Send test mail: [EMAIL PROTECTED]
> > get error:
> > SYSERR(root): mail.server2.net. config error: mail loops back to me
(MX
> > problem?)
>
> That's because mail.server2.net points to the address 200.200.200.101.
> When sendmail on that host tries to deliver the message as per the
> instructions of your mailertable, it discovers that the message is
sent
> back to itself!  A loop...
>
> - Giorgos

Giorgos: Thanks for your review of my setup & I did change the IP for
server2 back to 200.200.200.102 -- however, now the emails go straight
though the firewall port on server1 to sendmail on server2 and
apparently bypasses sendmail on server1. If it bypasses sendmail on
server1, I cannot use greylisting to filter the emails before being sent
over to server2.

I'm still missing something here.

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Using sendmail

[Giorgos Keramidas]

[-- Format recovered from broken Outlook wrapping --]

On 2004-06-24 13:18, antenneX <[EMAIL PROTECTED]> wrote:
> Giorgos Keramidas <[EMAIL PROTECTED]> wrote:
> > On 2004-06-24 11:33, antenneX <[EMAIL PROTECTED]> wrote:
> > > oops! I should have said please send any config examples
> > > needed to do this...??
> >
> > Look at the file /usr/share/sendmail/cf/README near line 794:
> >
> > : mailertable Include a "mailer table" which can be used to override
> > : [snip]
> >
> > You might also want to check out the rest of this file, [...]
>
> Okay, I know I still have messed it up. Tried the setup below, but something
> is wrong because of the errors shown and is not delivered to server #2.
>
> Server #1 - IP 200.200.200.101
> - DNS for mail.server2.net points here (was to 200.200.200.102 and OK on
> normal delivery)

I hope you don't mean that the name "mail.server2.net" now points to
200.200.200.101.  Only the MX records for server2.net need to point to
the first host, so that mail for the domain is delivered to this host.

> - mail.server2.net in local-host-names

IIRC, this isn't right.  You should only list mail.server2.net in the
local-host-names of 200.200.200.102.

> - In mailertable = mail.server2.net esmtp:mail.server2.net

This seems ok.

> Server #2 - IP 200.200.200.102
> - has sendmail & pop3
> - mail.server2.net in local-host-names
> - has user "william"

This seems ok too.

> Send test mail: [EMAIL PROTECTED]
> get error:
> SYSERR(root): mail.server2.net. config error: mail loops back to me (MX
> problem?)

That's because mail.server2.net points to the address 200.200.200.101.
When sendmail on that host tries to deliver the message as per the
instructions of your mailertable, it discovers that the message is sent
back to itself!  A loop...

- Giorgos

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Using sendmail

[antenneX]

- Original Message - 
From: "Giorgos Keramidas" <[EMAIL PROTECTED]>
To: "antenneX" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Thursday, June 24, 2004 11:57 AM
Subject: Re: Using sendmail


> On 2004-06-24 11:33, antenneX <[EMAIL PROTECTED]> wrote:
> > oops! I should have said please send any config examples needed to
do
> > this...??
>
> Look at the file /usr/share/sendmail/cf/README near line 794:
>
> : mailertable Include a "mailer table" which can be used to override
> : routing for particular domains (which are not in class
{w},
> : i.e.  local host names).  The argument of the FEATURE
may be
> : the key definition.  If none is specified, the
definition
> : used is:
> :
> : hash /etc/mail/mailertable
> :
>
> You might also want to check out the rest of this file, as it's the
> definitive reference for sendmail configuration options.  Another good
> reference, which is always available, but seldom exploited to its full
> potential is the ``Sendmail Installation and Operation Guide''.
>
> You can find it in /usr/share/doc:
>
> $ zcat /usr/share/doc/smm/08.sendmailop/paper.ascii.gz | less
>
> HTH,
>
> - Giorgos
>

Indeed, I had read the above before and spent lost of time searchin the
sendmail website too, but could never get it right.

Okay, I know I still have messed it up. Tried the setup below, but something
is wrong because of the errors shown and is not delivered to server #2.

Server #1 - IP 200.200.200.101
- DNS for mail.server2.net points here (was to 200.200.200.102 and OK on
normal delivery)
- mail.server2.net in local-host-names
- In mailertable = mail.server2.net esmtp:mail.server2.net

Server #2 - IP 200.200.200.102
- has sendmail & pop3
- mail.server2.net in local-host-names
- has user "william"

Send test mail: [EMAIL PROTECTED]
get error:
SYSERR(root): mail.server2.net. config error: mail loops back to me (MX
problem?)

and...

Jun 24 12:43:45 server1 sm-mta[78108]: i5OHhi0f078104:
to=<[EMAIL PROTECTED]>, delay=00:00:01, xdelay=00:00:00, mailer=esmtp,
pri=30706, relay=mail.server2.net. [200.200.200.101], dsn=5.3.5, stat=Local
configuration error

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Using sendmail

[Giorgos Keramidas]

On 2004-06-24 11:33, antenneX <[EMAIL PROTECTED]> wrote:
> oops! I should have said please send any config examples needed to do
> this...??

Look at the file /usr/share/sendmail/cf/README near line 794:

: mailertable Include a "mailer table" which can be used to override
: routing for particular domains (which are not in class {w},
: i.e.  local host names).  The argument of the FEATURE may be
: the key definition.  If none is specified, the definition
: used is:
:
: hash /etc/mail/mailertable
:

You might also want to check out the rest of this file, as it's the
definitive reference for sendmail configuration options.  Another good
reference, which is always available, but seldom exploited to its full
potential is the ``Sendmail Installation and Operation Guide''.

You can find it in /usr/share/doc:

$ zcat /usr/share/doc/smm/08.sendmailop/paper.ascii.gz | less

HTH,

- Giorgos

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Using sendmail

[Murat Bicer]

Make sure mailtable feature is enabled in the config file.
and you should check the mailertable file location in the sendmail.cf file.
generally
/etc/mail/mailertable:
accepted.domain.com esmtp:[firstserver.hostname]



On Thu, 24 Jun 2004 11:32:37 -0500, antenneX <[EMAIL PROTECTED]> wrote:
> 
> Mailertable -- oho! Never thought of that. Yes, could you send an example of
> the typical mailertable file that will do this?
> 
> Many, many thanks &
> Best regards,
> 
> Jack L. Stone
> 
> 
> - Original Message -
> From: "Murat Bicer" <[EMAIL PROTECTED]>
> To: "antenneX" <[EMAIL PROTECTED]>
> Cc: <[EMAIL PROTECTED]>
> Sent: Thursday, June 24, 2004 11:02 AM
> Subject: Re: Using sendmail
> 
> > you need to user mailertable to send the email from first server to
> > the second one. no need to forward. the second server should accept
> > the emails for the domains it is holding the mailboxes for (in access
> > file)
> >
> > Let me know if you need some config examples.
> >
> > -M.
> >
> > On Thu, 24 Jun 2004 10:46:15 -0500, antenneX <[EMAIL PROTECTED]> wrote:
> > >
> > > Hope this isn't too far OT.
> > >
> > > I want to setup 2 mailservers using sendmail. The first to receive
> emails
> > > for all users (vhosts too) and filter through greylisting. Then forward
> the
> > > rest to another mailserver using SpamAssassin/Procmail on the LAN to
> their
> > > POP3 Inboxes (qpopper) where they will pick up their mail.
> > >
> > > Based on tests so far, it looks like I will have to use an "open relay"
> in
> > > order to forward the emails. Is this correct?
> > >
> > > Would appreciate any URLs where this setup is explained.
> > >
> > > Best regards,
> > >
> > > Jack L. Stone
> > >
> > > ___
> > > [EMAIL PROTECTED] mailing list
> > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> > > To unsubscribe, send any mail to
> "[EMAIL PROTECTED]"
> > >
> > ___
> > [EMAIL PROTECTED] mailing list
> > http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> > To unsubscribe, send any mail to
> "[EMAIL PROTECTED]"
> 
>
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Using sendmail

[antenneX]

oops! I should have said please send any config examples needed to do
this...??

Thanks again!
Best regards,

Jack L. Stone

- Original Message - 
From: "Murat Bicer" <[EMAIL PROTECTED]>
To: "antenneX" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Thursday, June 24, 2004 11:02 AM
Subject: Re: Using sendmail


> you need to user mailertable to send the email from first server to
> the second one. no need to forward. the second server should accept
> the emails for the domains it is holding the mailboxes for (in access
> file)
>
> Let me know if you need some config examples.
>
> -M.
>
> On Thu, 24 Jun 2004 10:46:15 -0500, antenneX <[EMAIL PROTECTED]> wrote:
> >
> > Hope this isn't too far OT.
> >
> > I want to setup 2 mailservers using sendmail. The first to receive
emails
> > for all users (vhosts too) and filter through greylisting. Then forward
the
> > rest to another mailserver using SpamAssassin/Procmail on the LAN to
their
> > POP3 Inboxes (qpopper) where they will pick up their mail.
> >
> > Based on tests so far, it looks like I will have to use an "open relay"
in
> > order to forward the emails. Is this correct?
> >
> > Would appreciate any URLs where this setup is explained.
> >
> > Best regards,
> >
> > Jack L. Stone
> >
> > ___
> > [EMAIL PROTECTED] mailing list
> > http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> > To unsubscribe, send any mail to
"[EMAIL PROTECTED]"
> >
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to
"[EMAIL PROTECTED]"

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Using sendmail

[antenneX]

Mailertable -- oho! Never thought of that. Yes, could you send an example of
the typical mailertable file that will do this?

Many, many thanks &
Best regards,

Jack L. Stone
- Original Message - 
From: "Murat Bicer" <[EMAIL PROTECTED]>
To: "antenneX" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Thursday, June 24, 2004 11:02 AM
Subject: Re: Using sendmail


> you need to user mailertable to send the email from first server to
> the second one. no need to forward. the second server should accept
> the emails for the domains it is holding the mailboxes for (in access
> file)
>
> Let me know if you need some config examples.
>
> -M.
>
> On Thu, 24 Jun 2004 10:46:15 -0500, antenneX <[EMAIL PROTECTED]> wrote:
> >
> > Hope this isn't too far OT.
> >
> > I want to setup 2 mailservers using sendmail. The first to receive
emails
> > for all users (vhosts too) and filter through greylisting. Then forward
the
> > rest to another mailserver using SpamAssassin/Procmail on the LAN to
their
> > POP3 Inboxes (qpopper) where they will pick up their mail.
> >
> > Based on tests so far, it looks like I will have to use an "open relay"
in
> > order to forward the emails. Is this correct?
> >
> > Would appreciate any URLs where this setup is explained.
> >
> > Best regards,
> >
> > Jack L. Stone
> >
> > ___
> > [EMAIL PROTECTED] mailing list
> > http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> > To unsubscribe, send any mail to
"[EMAIL PROTECTED]"
> >
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to
"[EMAIL PROTECTED]"

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Using sendmail

[Murat Bicer]

you need to user mailertable to send the email from first server to
the second one. no need to forward. the second server should accept
the emails for the domains it is holding the mailboxes for (in access
file)

Let me know if you need some config examples.

-M.

On Thu, 24 Jun 2004 10:46:15 -0500, antenneX <[EMAIL PROTECTED]> wrote:
> 
> Hope this isn't too far OT.
> 
> I want to setup 2 mailservers using sendmail. The first to receive emails
> for all users (vhosts too) and filter through greylisting. Then forward the
> rest to another mailserver using SpamAssassin/Procmail on the LAN to their
> POP3 Inboxes (qpopper) where they will pick up their mail.
> 
> Based on tests so far, it looks like I will have to use an "open relay" in
> order to forward the emails. Is this correct?
> 
> Would appreciate any URLs where this setup is explained.
> 
> Best regards,
> 
> Jack L. Stone
> 
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "[EMAIL PROTECTED]"
>
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"