Re: [vchkpw] Vpopmail mysql and aborted clients
[EMAIL PROTECTED] wrote: Yes it really goes ok... and now for example the server has a uptime of more or less 110 days... I have never had to restart courier-imap package (wich I use for pop and imap services) and seems to be running ok... so this is normal then? and I shouldn't change nothing then? or is it advisable to increase mysql timeout?? or I could stay as I'm now? I would suggest setting the mysql timeout to about twice the longest interval between pop/imap logins. 4 or 5 days is probably good. One day wouldn't be bad if you don't mind seeing a few warnings on weekends. I don't use mysql though. Rick
[vchkpw] SQL error after upgrade
Hi, I have to upgrade vpopmail from 5.4.16 because I'm using the validrcptto patch and need the onchange feature which is not included in 5.4.16, yet. However, after upgrading to 5.4.20, the POP3 server will send me the error vmysql: error creating table 'limits': Table 'limits' already exists as soon as I try to authenticate. The logs (syslog) will show me as authenticated but my email client will disconnect with an error. I don't understand this message because I would expect the table to exist. Searching the internet didn't get me anywhere, either. Any hints? Cheers, Christian
Re: [vchkpw] My single point of failure... failed
DAve wrote: Tren Blackburn wrote: Hi DAve; -Original Message- From: DAve [mailto:[EMAIL PROTECTED] Sent: Friday, October 05, 2007 11:39 AM To: vpopmail Subject: [vchkpw] My single point of failure... failed I got bit hard this morning and I am looking for a solution. I have been slowly getting our email system up to snuff moving from a pair of servers to two gateway AV scanners, three vpopmail toasters, and two outbound qmail servers. The toasters mount the Maildirs via NFS, the AV scanners talk to the toasters via milter-ahead, and the NFS mailstore hosts MySQL for vpopmail. I've just gotten load balancers installed and moved the outbound traffic there first, getting a good load test on vpopmaild for smtp-auth. I had promised to provide the scripts and now I am actually seeing how well they work. Problems arose when my NFS server went stupid this morning and all mail stopped. AV scanners couldn't verify mailboxes because the toasters couldn't see MySQL, the outbound servers couldn't do smtp-auth for the same reason. It wouldn't have mattered anyway because my Maildirs were offline. NFS is my single point of failure, even though it is RAID5, dual NIC, dual power supply (SUN Enterprise 250), it went offline. I need to fix that, I can cluster MySQL but I am looking for ways to have either a clustered NFS with rw permissions and appropriate locking/syncing, or NFS failover from the toasters. I am looking at GFS and active/active NFS and HaNFS. Has anyone gone down this path yet? I have. There's a couple ways of doing this. I've never played with GFS so I can't comment on that. The easiest solution I've found is doing an Active/Standby configuration between 2 nodes using DRBD to replicate the data in real time. There's quite a few solutions out there to handle resource seizure on node failure. If you want absolutely simple, go heartbeat v1. If you want to break your mailstore into 2 pieces (I have no idea how large of a mailstore you're working with. Mine is breaking 70G pretty soon) then you can do an Active/Active configuration using the High Availability manager from LinuxHA.net. I like that product mainly because it's written specifically for 2 node active/active clusters. And if you really want to muddy the waters, you can go with heartbeat v2 (I still have a bad taste in my mouth from it though) It's always best to keep major components on their own sets of boxen. My MySQL servers are a 2 node load balanced multi-master replicated pair. My Mailstore is a 2 node Active/Passive pair as described above (I cheat a bit and do some iSCSI exports on the passive box to the Windows people who demanded I share my storage with them. It's also handled by the HA software, so if the box exporting the iSCSI targets goes down, it shuffles across to the NFS box, and vice-versa) My inbound/outbound SMTP is across 4 dedicated load-balanced boxen. IMAP4(s)/POP3(s) is on its own pair and same with Web. If any of this seems useful to you let me know. No one should have to go through the nightmare of a key server going down. I hate getting yelled at. :) I am at least on the right or similar track. Here is some more background. Currently the gateways run MailScanner/sendmail/spamassassin/clamav/bitdefender, we have vpopmail/chkuser on the eclusters (toasters) providing pop and webmail, and the outbound servers provide smtp and smtp-auth (to become smtp-auth only) also running spamassassin and clamav via simscan. Everything sits behind a PIX and everything will eventually sit behind two Coyote Point EQ350si devices. Right now only the outbound servers are being load balanced. I am liking the look of HaNFS and DRDB but I have to look toward the future which involves sending half my mail system to a remote NOC. We have a dedicated 1GB fiber to provide a private LAN between the NOCs. My concern is over resyncing the mailstores after a fiber failure, which I KNOW will happen sooner or later. Not real sure if active/active or active/passive will be the best option, resyncing in general doesn't look inviting. My mailstore is only 60GB, few clients use webmail, most download everything all day. But it would certainly be a concern. When I setup MySQL as a cluster I will also be installing a local RO slave on each ecluster (toaster), just for auth purposes. I am assuming you found no problems running vpopmail/qmail on your mailstores? How do you handle failover? Any problems with qmail-local during deliveries? Thanks for the response. DAve This is my setup, it seems to work fairly well. I was using NFS for the mail stores at one point but because I couldn't get a handle on my performance problems I dropped it and put the mail stores on the local machine. I have two machines with two drives in each machine. Disk sda1 on each machine is the OS, sda2 is configured via drbd (in retrospect I should have raided my drbd device . . . too late now). I have
Re: [vchkpw] qmail high performance
Hi Rick, Thank you. I installed qmailmrtg7. I don´t running SA and Clam when my server is slow. [EMAIL PROTECTED] cat /var/qmail/control/simcontrol :clam=no,spam=no,spam_passthru=no,attach=.vbs:.lnk:.scr:.wsh:.hta:.pif Also, are you running the update_tmprsadh nightly (if your not it has to generate a new key for every encrypted connection). How can I know if my qmail is to generate a new key for every encrypted connection? Is this? 01 01 * * * root /var/qmail/bin/dh_key 21 /dev/null You may also want to look at decreasing your timeoutsmtpd, put 180 or something similar in /var/qmail/control/timeoutsmtpd to change the default of 7200 (this will stop the spam zombie who hang around just using up a connection slot). I use timeoutsmtpd with 60. Regards, Joao - Original Message - From: Rick Macdougall [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Sunday, October 07, 2007 10:11 AM Subject: Re: [vchkpw] qmail high performance Hi, João Luiz - Terra wrote: Hi Tren, Sorry. My english is not good :). My server is dual xeon 2.4 with 2 Gb RAM and HD SCSI 73 Gb. I have problems with delivery delay when my server is with many connections POP3 and SMTP. I use isoqlog to analyze my email traffic, but I don´t have stats of POP3 and connections with my SMTP (RBL, no delivery, ...). Exists any software to analyze POP3 and SMTP log? qmailmrtg7 is a graphing tool for qmail/pop3/dnscache etc. You can find it at http://www.inter7.com When my server is slow, I have: SMTP concurrent: 40 - 50 POP3 concurrent: 20 - 30 Load Average: 30 - 40 Are you running SA and Clam on the same machine ? Also, are you running the update_tmprsadh nightly (if your not it has to generate a new key for every encrypted connection). I have many SMTP connections with not existing recipient. If that message is in the smtpd log, that's fine. You may also want to look at decreasing your timeoutsmtpd, put 180 or something similar in /var/qmail/control/timeoutsmtpd to change the default of 7200 (this will stop the spam zombie who hang around just using up a connection slot). My server was very good. Between last monday and last friday it is very slow. How can I identify a possible attack? Hope the above helps. Regards, Rick Esta mensagem foi verificada pelo E-mail Protegido Terra. Scan engine: McAfee VirusScan / Atualizado em 05/10/2007 / Versão: 5.1.00/5135 Proteja o seu e-mail Terra: http://mail.terra.com.br/
Re: [vchkpw] qmail high performance
Hi Rick, In SMTP Totals: Max Allow 14.2 kSMTP (1422.7%) Average Allow 8345.0 SMTP (834.5%) Current Allow 8694.0 SMTP (869.4%) Max Deny 11.4 kSMTP (1140.6%) Average Deny 6337.0 SMTP (633.7%) Current Deny 5181.0 SMTP (518.1%) What is Deny? Is Deny high? Do you want see others logs of qmailmrtg? Thank you Joao - Original Message - From: Rick Macdougall [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Sunday, October 07, 2007 10:11 AM Subject: Re: [vchkpw] qmail high performance Hi, João Luiz - Terra wrote: Hi Tren, Sorry. My english is not good :). My server is dual xeon 2.4 with 2 Gb RAM and HD SCSI 73 Gb. I have problems with delivery delay when my server is with many connections POP3 and SMTP. I use isoqlog to analyze my email traffic, but I don´t have stats of POP3 and connections with my SMTP (RBL, no delivery, ...). Exists any software to analyze POP3 and SMTP log? qmailmrtg7 is a graphing tool for qmail/pop3/dnscache etc. You can find it at http://www.inter7.com When my server is slow, I have: SMTP concurrent: 40 - 50 POP3 concurrent: 20 - 30 Load Average: 30 - 40 Are you running SA and Clam on the same machine ? Also, are you running the update_tmprsadh nightly (if your not it has to generate a new key for every encrypted connection). I have many SMTP connections with not existing recipient. If that message is in the smtpd log, that's fine. You may also want to look at decreasing your timeoutsmtpd, put 180 or something similar in /var/qmail/control/timeoutsmtpd to change the default of 7200 (this will stop the spam zombie who hang around just using up a connection slot). My server was very good. Between last monday and last friday it is very slow. How can I identify a possible attack? Hope the above helps. Regards, Rick Esta mensagem foi verificada pelo E-mail Protegido Terra. Scan engine: McAfee VirusScan / Atualizado em 05/10/2007 / Versão: 5.1.00/5135 Proteja o seu e-mail Terra: http://mail.terra.com.br/
Re: [vchkpw] qmail high performance
I had the same problems under high load on a similarly configured machine (2.0Ghz instead of 2.4Ghz, but other than that about the same). When I installed the external big todo patches it helped A LOT, but I still have some delay in delivery. However it is much more acceptable as messages can be delayed one to two minutes, instead of fifteen to twenty minutes. Usually things go through fairly instantly. The single best performance enhancer you could do would be the external todo patch, from my point of view. I also found that the chkuser patch also helped a LOT, I highly recommend using that patch as well. For reference, I'm not using Bill's toaster, but rather my own custom brew. Another load reducing method is to use a much faster anti-spam product, but you will most likely have to pay for that. I suggest MPPd (messagepartners.com) I've been using it for several years with the Cloudmark plugin and it is much more effective than spamassassin, with hundreds of times lower load on the system. --- - Nick Bright Network Administrator Terra World Tel 888-332-1616 x 315 Fax 620-332-1201 João Luiz - Terra wrote: Hi Tren, Sorry. My english is not good :). My server is dual xeon 2.4 with 2 Gb RAM and HD SCSI 73 Gb. I have problems with delivery delay when my server is with many connections POP3 and SMTP. I use isoqlog to analyze my email traffic, but I don´t have stats of POP3 and connections with my SMTP (RBL, no delivery, ...). Exists any software to analyze POP3 and SMTP log? When my server is slow, I have: SMTP concurrent: 40 - 50 POP3 concurrent: 20 - 30 Load Average: 30 - 40 I have many SMTP connections with not existing recipient. My server was very good. Between last monday and last friday it is very slow. How can I identify a possible attack? Thank you Joao - Original Message - From: Tren Blackburn [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Saturday, October 06, 2007 8:02 PM Subject: RE: [vchkpw] qmail high performance Hi Joao; From: João Luiz - Terra [mailto:[EMAIL PROTECTED] Sent: Saturday, October 06, 2007 3:22 PM To: vchkpw@inter7.com Subject: [vchkpw] qmail high performance Hello, I am working with qmail toaster by http://www.shupp.org/toaster/. Is it the better performance instalation? My server is very slowly :( You'll need to give something specific here. Bill Shupps Toaster is widely popular. I use it myself and have no issues with performance. What are the specifications of the hardware you've implemented it on. What specifically is performing slow? Is there anything else on this server? Approximately how many mailboxes are housed on this server? How many deliveries per second/minute/hour/day (whatever is easiest to convey) and do you have any idea what your peak concurrent deliveries are? You need to provide as much information as possible before asking such a general question. Regards, Tren Esta mensagem foi verificada pelo E-mail Protegido Terra. Scan engine: McAfee VirusScan / Atualizado em 05/10/2007 / Versão: 5.1.00/5135 Proteja o seu e-mail Terra: http://mail.terra.com.br/ begin:vcard fn:Nick Bright n:Bright;Nick org:Terra World Communications, LLC adr:Suite #11;;200 ARCO Place;Independence;KS;67301;USA email;internet:[EMAIL PROTECTED] title:Network Administrator tel;work:888-332-1616 tel;fax:620-332-1201 x-mozilla-html:FALSE url:http://home.terraworld.net version:2.1 end:vcard
Re: [vchkpw] qmail high performance
João Luiz - Terra wrote: Hi Rick, In SMTP Totals: Max Allow 14.2 kSMTP (1422.7%) Average Allow 8345.0 SMTP (834.5%) Current Allow 8694.0 SMTP (869.4%) Max Deny 11.4 kSMTP (1140.6%) Average Deny 6337.0 SMTP (633.7%) Current Deny 5181.0 SMTP (518.1%) What is Deny? Deny is rejected SMTP sessions, usually due to an RBL rejection but this can also be due to mailbox full or user not existing if you are using the CHKUSER patch. Is Deny high? That doesn't strike me as overly high, over the last 24 hours I've had: Max Allow 73.7 kSMTP (147.4%) Average Allow 36.5 kSMTP (73.0%) Current Allow 42.3 kSMTP (84.6%) Max Deny 54.2 kSMTP (108.4%) Average Deny 21.5 kSMTP (43.0%) Current Deny 30.4 kSMTP (60.9%) I wouldn't worry about the denies because they don't cause significant load - as long as you're rejecting their connections, you don't have the deal with the load of processing their mail. Do you want see others logs of qmailmrtg? Thank you Joao - Original Message - From: Rick Macdougall [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Sunday, October 07, 2007 10:11 AM Subject: Re: [vchkpw] qmail high performance Hi, João Luiz - Terra wrote: Hi Tren, Sorry. My english is not good :). My server is dual xeon 2.4 with 2 Gb RAM and HD SCSI 73 Gb. I have problems with delivery delay when my server is with many connections POP3 and SMTP. I use isoqlog to analyze my email traffic, but I don´t have stats of POP3 and connections with my SMTP (RBL, no delivery, ...). Exists any software to analyze POP3 and SMTP log? qmailmrtg7 is a graphing tool for qmail/pop3/dnscache etc. You can find it at http://www.inter7.com When my server is slow, I have: SMTP concurrent: 40 - 50 POP3 concurrent: 20 - 30 Load Average: 30 - 40 Are you running SA and Clam on the same machine ? Also, are you running the update_tmprsadh nightly (if your not it has to generate a new key for every encrypted connection). I have many SMTP connections with not existing recipient. If that message is in the smtpd log, that's fine. You may also want to look at decreasing your timeoutsmtpd, put 180 or something similar in /var/qmail/control/timeoutsmtpd to change the default of 7200 (this will stop the spam zombie who hang around just using up a connection slot). My server was very good. Between last monday and last friday it is very slow. How can I identify a possible attack? Hope the above helps. Regards, Rick Esta mensagem foi verificada pelo E-mail Protegido Terra. Scan engine: McAfee VirusScan / Atualizado em 05/10/2007 / Versão: 5.1.00/5135 Proteja o seu e-mail Terra: http://mail.terra.com.br/ begin:vcard fn:Nick Bright n:Bright;Nick org:Terra World Communications, LLC adr:Suite #11;;200 ARCO Place;Independence;KS;67301;USA email;internet:[EMAIL PROTECTED] title:Network Administrator tel;work:888-332-1616 tel;fax:620-332-1201 x-mozilla-html:FALSE url:http://home.terraworld.net version:2.1 end:vcard
Re: [vchkpw] qmail high performance
I just wonder if anyone have tested Trend Micro for AV. I know it's a pay AV but just wonder.. Thanks Nick Bright wrote: I had the same problems under high load on a similarly configured machine (2.0Ghz instead of 2.4Ghz, but other than that about the same). When I installed the external big todo patches it helped A LOT, but I still have some delay in delivery. However it is much more acceptable as messages can be delayed one to two minutes, instead of fifteen to twenty minutes. Usually things go through fairly instantly. The single best performance enhancer you could do would be the external todo patch, from my point of view. I also found that the chkuser patch also helped a LOT, I highly recommend using that patch as well. For reference, I'm not using Bill's toaster, but rather my own custom brew. Another load reducing method is to use a much faster anti-spam product, but you will most likely have to pay for that. I suggest MPPd (messagepartners.com) I've been using it for several years with the Cloudmark plugin and it is much more effective than spamassassin, with hundreds of times lower load on the system. --- - Nick Bright Network Administrator Terra World Tel 888-332-1616 x 315 Fax 620-332-1201 João Luiz - Terra wrote: Hi Tren, Sorry. My english is not good :). My server is dual xeon 2.4 with 2 Gb RAM and HD SCSI 73 Gb. I have problems with delivery delay when my server is with many connections POP3 and SMTP. I use isoqlog to analyze my email traffic, but I don´t have stats of POP3 and connections with my SMTP (RBL, no delivery, ...). Exists any software to analyze POP3 and SMTP log? When my server is slow, I have: SMTP concurrent: 40 - 50 POP3 concurrent: 20 - 30 Load Average: 30 - 40 I have many SMTP connections with not existing recipient. My server was very good. Between last monday and last friday it is very slow. How can I identify a possible attack? Thank you Joao - Original Message - From: Tren Blackburn [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Saturday, October 06, 2007 8:02 PM Subject: RE: [vchkpw] qmail high performance Hi Joao; From: João Luiz - Terra [mailto:[EMAIL PROTECTED] Sent: Saturday, October 06, 2007 3:22 PM To: vchkpw@inter7.com Subject: [vchkpw] qmail high performance Hello, I am working with qmail toaster by http://www.shupp.org/toaster/. Is it the better performance instalation? My server is very slowly :( You'll need to give something specific here. Bill Shupps Toaster is widely popular. I use it myself and have no issues with performance. What are the specifications of the hardware you've implemented it on. What specifically is performing slow? Is there anything else on this server? Approximately how many mailboxes are housed on this server? How many deliveries per second/minute/hour/day (whatever is easiest to convey) and do you have any idea what your peak concurrent deliveries are? You need to provide as much information as possible before asking such a general question. Regards, Tren Esta mensagem foi verificada pelo E-mail Protegido Terra. Scan engine: McAfee VirusScan / Atualizado em 05/10/2007 / Versão: 5.1.00/5135 Proteja o seu e-mail Terra: http://mail.terra.com.br/ !DSPAM:470a8edd117907257416469!
Re: [vchkpw] qmail high performance
are you using tcpserver ? how you are starting qmail ? Itamar Reis Peixoto e-mail/msn: [EMAIL PROTECTED] skype: itamarjp icq: 81053601 +55 11 4063 5033 - Original Message - From: João Luiz - Terra [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Sunday, October 07, 2007 10:01 AM Subject: Re: [vchkpw] qmail high performance Hi Itamar, I disable the spamassassin and clamav when my server is slow. Regards, Joao - Original Message - From: Itamar Reis Peixoto [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Sunday, October 07, 2007 9:29 PM Subject: Re: [vchkpw] qmail high performance your load is very high you're using spamassassin ? Itamar Reis Peixoto e-mail/msn: [EMAIL PROTECTED] skype: itamarjp icq: 81053601 +55 11 4063 5033 - Original Message - From: João Luiz - Terra [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Sunday, October 07, 2007 1:09 AM Subject: Re: [vchkpw] qmail high performance Hi Tren, Sorry. My english is not good :). My server is dual xeon 2.4 with 2 Gb RAM and HD SCSI 73 Gb. I have problems with delivery delay when my server is with many connections POP3 and SMTP. I use isoqlog to analyze my email traffic, but I don´t have stats of POP3 and connections with my SMTP (RBL, no delivery, ...). Exists any software to analyze POP3 and SMTP log? When my server is slow, I have: SMTP concurrent: 40 - 50 POP3 concurrent: 20 - 30 Load Average: 30 - 40 I have many SMTP connections with not existing recipient. My server was very good. Between last monday and last friday it is very slow. How can I identify a possible attack? Thank you Joao - Original Message - From: Tren Blackburn [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Saturday, October 06, 2007 8:02 PM Subject: RE: [vchkpw] qmail high performance Hi Joao; From: João Luiz - Terra [mailto:[EMAIL PROTECTED] Sent: Saturday, October 06, 2007 3:22 PM To: vchkpw@inter7.com Subject: [vchkpw] qmail high performance Hello, I am working with qmail toaster by http://www.shupp.org/toaster/. Is it the better performance instalation? My server is very slowly :( You'll need to give something specific here. Bill Shupps Toaster is widely popular. I use it myself and have no issues with performance. What are the specifications of the hardware you've implemented it on. What specifically is performing slow? Is there anything else on this server? Approximately how many mailboxes are housed on this server? How many deliveries per second/minute/hour/day (whatever is easiest to convey) and do you have any idea what your peak concurrent deliveries are? You need to provide as much information as possible before asking such a general question. Regards, Tren Esta mensagem foi verificada pelo E-mail Protegido Terra. Scan engine: McAfee VirusScan / Atualizado em 05/10/2007 / Versão: 5.1.00/5135 Proteja o seu e-mail Terra: http://mail.terra.com.br/ Esta mensagem foi verificada pelo E-mail Protegido Terra. Scan engine: McAfee VirusScan / Atualizado em 05/10/2007 / Versão: 5.1.00/5135 Proteja o seu e-mail Terra: http://mail.terra.com.br/
Re: [vchkpw] qmail high performance
Hi Itamar, I use tcpserver. The qmail is starting after reboot automatically. Is correct? Regards, Joao - Original Message - From: Itamar Reis Peixoto [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Tuesday, October 09, 2007 1:45 PM Subject: Re: [vchkpw] qmail high performance are you using tcpserver ? how you are starting qmail ? Itamar Reis Peixoto e-mail/msn: [EMAIL PROTECTED] skype: itamarjp icq: 81053601 +55 11 4063 5033 - Original Message - From: João Luiz - Terra [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Sunday, October 07, 2007 10:01 AM Subject: Re: [vchkpw] qmail high performance Hi Itamar, I disable the spamassassin and clamav when my server is slow. Regards, Joao - Original Message - From: Itamar Reis Peixoto [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Sunday, October 07, 2007 9:29 PM Subject: Re: [vchkpw] qmail high performance your load is very high you're using spamassassin ? Itamar Reis Peixoto e-mail/msn: [EMAIL PROTECTED] skype: itamarjp icq: 81053601 +55 11 4063 5033 - Original Message - From: João Luiz - Terra [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Sunday, October 07, 2007 1:09 AM Subject: Re: [vchkpw] qmail high performance Hi Tren, Sorry. My english is not good :). My server is dual xeon 2.4 with 2 Gb RAM and HD SCSI 73 Gb. I have problems with delivery delay when my server is with many connections POP3 and SMTP. I use isoqlog to analyze my email traffic, but I don´t have stats of POP3 and connections with my SMTP (RBL, no delivery, ...). Exists any software to analyze POP3 and SMTP log? When my server is slow, I have: SMTP concurrent: 40 - 50 POP3 concurrent: 20 - 30 Load Average: 30 - 40 I have many SMTP connections with not existing recipient. My server was very good. Between last monday and last friday it is very slow. How can I identify a possible attack? Thank you Joao - Original Message - From: Tren Blackburn [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Saturday, October 06, 2007 8:02 PM Subject: RE: [vchkpw] qmail high performance Hi Joao; From: João Luiz - Terra [mailto:[EMAIL PROTECTED] Sent: Saturday, October 06, 2007 3:22 PM To: vchkpw@inter7.com Subject: [vchkpw] qmail high performance Hello, I am working with qmail toaster by http://www.shupp.org/toaster/. Is it the better performance instalation? My server is very slowly :( You'll need to give something specific here. Bill Shupps Toaster is widely popular. I use it myself and have no issues with performance. What are the specifications of the hardware you've implemented it on. What specifically is performing slow? Is there anything else on this server? Approximately how many mailboxes are housed on this server? How many deliveries per second/minute/hour/day (whatever is easiest to convey) and do you have any idea what your peak concurrent deliveries are? You need to provide as much information as possible before asking such a general question. Regards, Tren Esta mensagem foi verificada pelo E-mail Protegido Terra. Scan engine: McAfee VirusScan / Atualizado em 05/10/2007 / Versão: 5.1.00/5135 Proteja o seu e-mail Terra: http://mail.terra.com.br/ Esta mensagem foi verificada pelo E-mail Protegido Terra. Scan engine: McAfee VirusScan / Atualizado em 05/10/2007 / Versão: 5.1.00/5135 Proteja o seu e-mail Terra: http://mail.terra.com.br/ Esta mensagem foi verificada pelo E-mail Protegido Terra. Scan engine: McAfee VirusScan / Atualizado em 08/10/2007 / Versão: 5.1.00/5136 Proteja o seu e-mail Terra: http://mail.terra.com.br/
Re: [vchkpw] qmail high performance
Hi Nick. Thank you. When concurrent POP3 is low, the loadavg of my server is low too. My i/o is very high. Is normal? If any user to connect in POP3, Can he to start a attack to up my I/O? CPU states: cpuusernice systemirq softirq iowaitidle total 10,8%0,0%1,0% 0,0% 0,2% 84,8%2,9% cpu00 25,1%0,0%0,5% 0,0% 0,1% 74,0%0,0% cpu01 12,1%0,0%0,9% 0,0% 0,3% 86,4%0,0% cpu024,3%0,0%1,7% 0,0% 0,1% 87,8%5,7% cpu031,5%0,0%0,7% 0,0% 0,3% 91,2%5,9% Regards, Joao - Original Message - From: Nick Bright [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Monday, October 08, 2007 5:07 PM Subject: Re: [vchkpw] qmail high performance João Luiz - Terra wrote: Hi Rick, In SMTP Totals: Max Allow 14.2 kSMTP (1422.7%) Average Allow 8345.0 SMTP (834.5%) Current Allow 8694.0 SMTP (869.4%) Max Deny 11.4 kSMTP (1140.6%) Average Deny 6337.0 SMTP (633.7%) Current Deny 5181.0 SMTP (518.1%) What is Deny? Deny is rejected SMTP sessions, usually due to an RBL rejection but this can also be due to mailbox full or user not existing if you are using the CHKUSER patch. Is Deny high? That doesn't strike me as overly high, over the last 24 hours I've had: Max Allow 73.7 kSMTP (147.4%) Average Allow 36.5 kSMTP (73.0%) Current Allow 42.3 kSMTP (84.6%) Max Deny 54.2 kSMTP (108.4%) Average Deny 21.5 kSMTP (43.0%) Current Deny 30.4 kSMTP (60.9%) I wouldn't worry about the denies because they don't cause significant load - as long as you're rejecting their connections, you don't have the deal with the load of processing their mail. Do you want see others logs of qmailmrtg? Thank you Joao - Original Message - From: Rick Macdougall [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Sunday, October 07, 2007 10:11 AM Subject: Re: [vchkpw] qmail high performance Hi, João Luiz - Terra wrote: Hi Tren, Sorry. My english is not good :). My server is dual xeon 2.4 with 2 Gb RAM and HD SCSI 73 Gb. I have problems with delivery delay when my server is with many connections POP3 and SMTP. I use isoqlog to analyze my email traffic, but I don´t have stats of POP3 and connections with my SMTP (RBL, no delivery, ...). Exists any software to analyze POP3 and SMTP log? qmailmrtg7 is a graphing tool for qmail/pop3/dnscache etc. You can find it at http://www.inter7.com When my server is slow, I have: SMTP concurrent: 40 - 50 POP3 concurrent: 20 - 30 Load Average: 30 - 40 Are you running SA and Clam on the same machine ? Also, are you running the update_tmprsadh nightly (if your not it has to generate a new key for every encrypted connection). I have many SMTP connections with not existing recipient. If that message is in the smtpd log, that's fine. You may also want to look at decreasing your timeoutsmtpd, put 180 or something similar in /var/qmail/control/timeoutsmtpd to change the default of 7200 (this will stop the spam zombie who hang around just using up a connection slot). My server was very good. Between last monday and last friday it is very slow. How can I identify a possible attack? Hope the above helps. Regards, Rick Esta mensagem foi verificada pelo E-mail Protegido Terra. Scan engine: McAfee VirusScan / Atualizado em 05/10/2007 / Versão: 5.1.00/5135 Proteja o seu e-mail Terra: http://mail.terra.com.br/ Esta mensagem foi verificada pelo E-mail Protegido Terra. Scan engine: McAfee VirusScan / Atualizado em 08/10/2007 / Versão: 5.1.00/5136 Proteja o seu e-mail Terra: http://mail.terra.com.br/
RE: [vchkpw] qmail high performance
-Original Message- From: João Luiz - Terra [mailto:[EMAIL PROTECTED] Sent: Monday, October 08, 2007 3:13 PM To: vchkpw@inter7.com Subject: Re: [vchkpw] qmail high performance Hi Nick. Thank you. When concurrent POP3 is low, the loadavg of my server is low too. My i/o is very high. Is normal? If any user to connect in POP3, Can he to start a attack to up my I/O? CPU states: cpuusernice systemirq softirq iowait idle total 10,8%0,0%1,0% 0,0% 0,2% 84,8% 2,9% cpu00 25,1%0,0%0,5% 0,0% 0,1% 74,0% 0,0% cpu01 12,1%0,0%0,9% 0,0% 0,3% 86,4% 0,0% cpu024,3%0,0%1,7% 0,0% 0,1% 87,8% 5,7% cpu031,5%0,0%0,7% 0,0% 0,3% 91,2% 5,9% Regards, Joao How many hard drives are in this server? Are they in RAID at all? It's looking that most of your high load average is due to waiting on IO. This is solved by adding more drives to increase available IO bandwidth. You should become familiar with two utilities, vmstat and iostat. If you're using a redhat derived linux, install the sysstat rpm to gain access to iostat. Between these two utilities you should be able to figure out where your problems are coming from and how to resolve them. Regards, Tren
Re: [vchkpw] qmail high performance
The single best performance enhancer you could do would be the external todo patch, from my point of view. Depends on the filesystem. If the filesystem has indexed directory support, ext-todo should be sufficient. Otherwise, you need the big-ext-todo patch.
