Re: [policyd-users] Policyd 2.0.12 - Quotas and AccessControl

Wed, 30 May 2012 04:42:03 -0700 

On 05/30/12 10:11, Ricardo Oliveira wrote:



------------------------------------------------------------------------
Date: Wed, 30 May 2012 08:18:40 +0000
From: [email protected]
To: [email protected]
Subject: Re: [policyd-users] Policyd 2.0.12 - Quotas and AccessControl

On 05/30/12 07:53, Ricardo Oliveira wrote:


    ------------------------------------------------------------------------
    Date: Tue, 29 May 2012 08:32:19 +0200
    From: [email protected] <mailto:[email protected]>
    To: [email protected] <mailto:[email protected]>
    Subject: Re: [policyd-users] Policyd 2.0.12 - Quotas and AccessControl

    [...snip...]

    Could you enable full debugging in policyd and show us the logs,
    config and database set up?

    _______________________________________________ Users mailing list
    [email protected] <mailto:[email protected]>
    http://lists.policyd.org/mailman/listinfo/users


    Hi Robert, Thanks for your quick reply. Here is the information
    you requested.

    ------ /etc/postfix/main.cf relevant lines:

    smtpd_recipient_restrictions = check_policy_service
    
inet:127.0.0.1:10031,permit_sasl_authenticated,permit_mynetworks,check_relay_domains,reject_unauth_destination
    smtpd_end_of_data_restrictions = check_policy_service
    inet:127.0.0.1:10031

    ------ /etc/postfix/mynetworks

    192.168.0.0/24

    ------ /etc/cluebringer.conf:

    [server]
    protocols=<<EOT
    Postfix
    EOT
    modules=<<EOT
    Core
    Quotas
    AccessControl
    EOT
    min_servers=8
    min_spare_servers=8
    max_spare_servers=16
    max_servers=64
    max_requests=1000
    log_level=4
    log_file=/var/log/cbpolicyd.log
    log_mail=maillog
    log_detail=tracking
    [database]
    DSN=DBI:mysql:database=policyd;host=localhost
    Username=policyd
    Password=password
    bypass_mode=tempfail
    bypass_timeout=30
    [AccessControl]
    enable=1
    [Greylisting]
    enable=0
    [CheckHelo]
    enable=0
    [CheckSPF]
    enable=0
    [Quotas]
    enable=1

    ------ Database dump of relevant tables

    INSERT INTO `access_control` VALUES
    (2,7,'MyAccessControl','REJECT','Sender Allowed','MyAccessControl',0);
    INSERT INTO `policies` VALUES (1,'Default',9,'Default System
    Policy',1),(2,'Default Outbound',10,'Default Outbound System
    Policy',1),(3,'Default Inbound',10,'Default Inbound System
    Policy',1),(4,'Default Internal',20,'Default Internal System
    
Policy',1),(7,'AccessPolicy',1,'AccessPolicy',0),(8,'QuotaPolicy',0,'QuotaPolicy',0);
    INSERT INTO `policy_group_members` VALUES
    
(1,1,'10.0.0.0/8',0,NULL),(2,2,'@example.org',0,NULL),(3,2,'@example.com',0,NULL),(4,3,'192.168.0.126',0,'ip'),(6,4,'@testdomain.com',0,'');
    INSERT INTO `policy_groups` VALUES
    
(1,'internal_ips',0,NULL),(2,'internal_domains',0,NULL),(3,'IP',0,'IP'),(4,'Domains',0,'');
    INSERT INTO `policy_members` VALUES
    
(1,1,NULL,NULL,NULL,0),(2,2,'%internal_ips,%internal_domains','!%internal_domains',NULL,0),(3,3,'!%internal_ips,!%internal_domains','%internal_domains',NULL,0),(4,4,'%internal_ips,%internal_domains','%internal_domains',NULL,0),(8,7,'%IP','any','',0),(9,8,'%IP,%Domains','any','',0);
    INSERT INTO `quotas` VALUES (4,8,'Quota','Policy',120,'DEFER','Too
    Many Emails - Try again later','',0);
    INSERT INTO `quotas_limits` VALUES (5,4,'MessageCount',3,'',0);

    ------- Log of 4 attempts with log_level=4 and log_detail=tracking
    and both AccessControl and Quota pointing to the same Policy
    (QuotaPolicy)

    Attachment called log1.txt

    ------- Log of 4 attempts with log_level=4 and
    log_detail=tracking, AccessControl pointing to AccessPolicy, Quota
    pointing to QuotaPolicy

    Attachment called log2.txt

    Hope it's enough. If you need anything else, please let me know.
    Thank you.

    Ricardo.



Please enable full debugging by adding all the options to the 
log_detail line, can you also please paste logs from policyd startup 
first line onwards for your test.




_______________________________________________ Users mailing list 
[email protected] http://lists.policyd.org/mailman/listinfo/users


Hi Nigel,


Here's the log as you requested. This log is a full log with both 
tests performed consecutively.


Thanks,
Ricardo.


Can you include your policyd config file?

Did you enable debugging for modules too on the log_detail line?



Attachment:
smime.p7s

Description: S/MIME Cryptographic Signature


_______________________________________________
Users mailing list
[email protected]
http://lists.policyd.org/mailman/listinfo/users






















					Reply via email to