I was able to verify that cluebringer is indeed functioning.I ran the
following command with nc and this was my results:
[root@myserver ~]# echo 'request=smtpd_access_policy
> protocol_state=RCPT
> protocol_name=ESMTP
> client_address=127.0.0.1
> client_name=myserver
> reverse_client_name=myserver
> helo_name=myserver
> sender=someone@myserver
> recipient=someone@myserver
> recipient_count=0
> queue_id=1E3C749E0
> instance=c6a2. 484aa120. 06ad0.f
> size=1167
> etrn_domain=
> stress=
> sasl_method=LOGIN
> sasl_username=root
> sasl_sender=
> ccert_subject=
> ccert_issuer=
> ccert_fingerprint=
> encryption_protocol=
> encryption_ciper=
> ' | nc localhost 10031
action=DUNNO
So my thought is that i have not configured postfix properly to accept
the messages from cluebringer. So i guess my real question is....how do
i set up postfix to recieve
messages from cluebringer? I have added the line in main.cf:
smtpd_recipient_restrictions = check_policy_service,
inet:127.0.0.1:10031, permit_mynetworks, permit_sasl_authenticated,
reject_unauth_destination
smtpd_end_of_data_restrictions = check_policy_service inet:127.0.0.1:10031
It was my understanding that is all postfix needs. Do i need to add any
lines to master.cf?
And as far as cluebringer no showing me much in the logs, these are my
log settings from cluebringer.conf
log_level=4
log_file=/var/log/cbpolicyd.log
log_mail=mail@syslog:native
log_detail=modules,tracking,policies,protocols
Thanks,
Allan
>Hey Allan,
>
>Can you please clean every comments in main.cf?
>If you can attach them as files it will be great(don't know if the
list allows that)
>You are missing the relevant db fields etc.
>If the DB is kind of clean and unpopulated you can use freely the
mysqldump tool to get the structure of the DB(cleanup the comments).
>
>Thanks,
>Eliezer
>
>On 09/09/2014 09:50 PM, [email protected] wrote:
>
> From what i can tell all my settings are correct ( i am sure i am
> missing something though ), and it does not appear that cluebringer is
> doing anything. My session_tracking db is empty, and the cbpolicyd.log
> only shows start up messages, although i have debug level turned on.
> here is a look at my cluebringer.conf:
>
> #
> # Server configuration
> #
> [server]
>
> # Protocols to load
> protocols=<<EOT
> Postfix
> Bizanga
> EOT
>
> # Modules to load
> modules=<<EOT
> Core
> AccessControl
> CheckHelo
> CheckSPF
> Greylisting
> Quotas
> EOT
>
> # User to run this daemon as
> user=cluebringer
> group=cluebringer
>
> # Filename to store pid of parent process
> pid_file=/var/run/cbpolicyd.pid
>
> # Uncommenting the below option will prevent cbpolicyd going into the
> background
> #background=no
>
> # Preforking configuration
> #
> # min_server - Minimum servers to keep around
> # min_spare_servers - Minimum spare servers to keep around ready to
> # handle requests
> # max_spare_servers - Maximum spare servers to have around doing
nothing
> # max_servers - Maximum servers alltogether
> # max_requests - Maximum number of requests each child will
serve
> #
> # One may want to use the following as a rough guideline...
> # Small mailserver: 2, 2, 4, 10, 1000
> # Medium mailserver: 4, 4, 12, 25, 1000
> # Large mailserver: 8, 8, 16, 64, 1000
> #
> #min_servers=4
> #min_spare_servers=4
> #max_spare_servers=12
> #max_servers=25
> #max_requests=1000
>
> ------------------------------------------------------
>
> And here is my my postfix main.cf:
>
> #soft_bounce = no
>
> queue_directory = /var/spool/postfix
>
> command_directory = /usr/sbin
> daemon_directory = /usr/libexec/postfix
> data_directory = /var/lib/postfix
> mail_owner = postfix
>
> #default_privs = nobody
>
> myhostname = mailout7.ezhostingserver.com
> #myhostname = virtual.domain.tld
>
> mydomain = ezhostingserver.com
>
> #myorigin = $myhostname
> myorigin = $mydomain
>
> inet_interfaces = all
> #inet_interfaces = $myhostname
> #inet_interfaces = $myhostname, localhost
> #inet_interfaces = localhost
>
> inet_protocols = all
>
> #proxy_interfaces =
> #proxy_interfaces = 1.2.3.4
>
> #mydestination = $myhostname, localhost.$mydomain, localhost
> mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain
> #mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain,
> # mail.$mydomain, www.$mydomain, ftp.$mydomain
>
> #local_recipient_maps = unix:passwd.byname $alias_maps
> #local_recipient_maps = proxy:unix:passwd.byname $alias_maps
> #local_recipient_maps =
>
> unknown_local_recipient_reject_code = 550
>
> #mynetworks_style = class
> #mynetworks_style = subnet
> #mynetworks_style = host
>
> mynetworks = 184.175.91.106/28, 127.0.0.0/8
> #mynetworks = $config_directory/mynetworks
> #mynetworks = hash:/etc/postfix>etwork_table
>
> #relay_domains = $mydestination
>
> #relayhost = $mydomain
> #relayhost = [gateway.my.domain]
> #relayhost = [mailserver.isp.tld]
> #relayhost = uucphost
> #relayhost = [an.ip.add.ress]
>
> #relay_recipient_maps = hash:/etc/postfix/relay_recipients
>
> #in_flow_delay = 1s
>
> #alias_maps = dbm:/etc/aliases
> alias_maps = hash:/etc/aliases
> #alias_maps = hash:/etc/aliases, nis:mail.aliases
> #alias_maps = netinfo:/aliases
>
> #recipient_delimiter = +
>
> #home_mailbox = Mailbox
> home_mailbox = Maildir/
>
> #mail_spool_directory = /var/mail
> #mail_spool_directory = /var/spool/mail
> #mailbox_command = /some/where/procmail
> #mailbox_command = /some/where/procmail -a "$EXTENSION"
> #mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp
>
> # mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp
>
> #fallback_transport = lmtp:unix:/var/lib/imap/socket/lmtp
> #fallback_transport =
>
> #luser_relay = [email protected]
> #luser_relay = [email protected]
> #luser_relay = admin+$local
>
> #header_checks = regexp:/etc/postfix/header_checks
> #fast_flush_domains = $relay_domains
>
> #smtpd_banner = $myhostname ESMTP $mail_name
> #smtpd_banner = $myhostname ESMTP $mail_name ($mail_version)
>
> #local_destination_concurrency_limit = 2
> #default_destination_concurrency_limit = 20
>
> debug_peer_level = 2
> #debug_peer_list = 127.0.0.1
> #debug_peer_list = some.domain
> debugger_command =
> PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
> ddd $daemon_directory/$process_name $process_id & sleep 5
> sendmail_path = /usr/sbin/sendmail.postfix
> newaliases_path = /usr/bin>ewaliases.postfix
> mailq_path = /usr/bin/mailq.postfix
> setgid_group = postdrop
> html_directory = no
>
> smtpd_sasl_auth_enable=yes
>
> smtpd_recipient_restrictions = check_policy_service
> inet:127.0.0.1:10031, permit_mynetworks, permit_sasl_authenticated,
> reject_unauth_destination
>
>
> smtpd_end_of_data_restrictions = check_policy_service
inet:127.0.0.1:10031
_______________________________________________
Users mailing list
[email protected]
http://lists.policyd.org/mailman/listinfo/users_lists.policyd.org
On 9/9/2014 5:20 PM, Eliezer Croitoru wrote:
Hey Allan,
Can you please clean every comments in main.cf?
If you can attach them as files it will be great(don't know if the
list allows that)
You are missing the relevant db fields etc.
If the DB is kind of clean and unpopulated you can use freely the
mysqldump tool to get the structure of the DB(cleanup the comments).
Thanks,
Eliezer
On 09/09/2014 09:50 PM, [email protected] wrote:
From what i can tell all my settings are correct ( i am sure i am
missing something though ), and it does not appear that cluebringer is
doing anything. My session_tracking db is empty, and the cbpolicyd.log
only shows start up messages, although i have debug level turned on.
here is a look at my cluebringer.conf:
#
# Server configuration
#
[server]
# Protocols to load
protocols=<<EOT
Postfix
Bizanga
EOT
# Modules to load
modules=<<EOT
Core
AccessControl
CheckHelo
CheckSPF
Greylisting
Quotas
EOT
# User to run this daemon as
user=cluebringer
group=cluebringer
# Filename to store pid of parent process
pid_file=/var/run/cbpolicyd.pid
# Uncommenting the below option will prevent cbpolicyd going into the
background
#background=no
# Preforking configuration
#
# min_server - Minimum servers to keep around
# min_spare_servers - Minimum spare servers to keep around ready to
# handle requests
# max_spare_servers - Maximum spare servers to have around doing
nothing
# max_servers - Maximum servers alltogether
# max_requests - Maximum number of requests each child will
serve
#
# One may want to use the following as a rough guideline...
# Small mailserver: 2, 2, 4, 10, 1000
# Medium mailserver: 4, 4, 12, 25, 1000
# Large mailserver: 8, 8, 16, 64, 1000
#
#min_servers=4
#min_spare_servers=4
#max_spare_servers=12
#max_servers=25
#max_requests=1000
------------------------------------------------------
And here is my my postfix main.cf:
#soft_bounce = no
queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/libexec/postfix
data_directory = /var/lib/postfix
mail_owner = postfix
#default_privs = nobody
myhostname = mailout7.ezhostingserver.com
#myhostname = virtual.domain.tld
mydomain = ezhostingserver.com
#myorigin = $myhostname
myorigin = $mydomain
inet_interfaces = all
#inet_interfaces = $myhostname
#inet_interfaces = $myhostname, localhost
#inet_interfaces = localhost
inet_protocols = all
#proxy_interfaces =
#proxy_interfaces = 1.2.3.4
#mydestination = $myhostname, localhost.$mydomain, localhost
mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain
#mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain,
# mail.$mydomain, www.$mydomain, ftp.$mydomain
#local_recipient_maps = unix:passwd.byname $alias_maps
#local_recipient_maps = proxy:unix:passwd.byname $alias_maps
#local_recipient_maps =
unknown_local_recipient_reject_code = 550
#mynetworks_style = class
#mynetworks_style = subnet
#mynetworks_style = host
mynetworks = 184.175.91.106/28, 127.0.0.0/8
#mynetworks = $config_directory/mynetworks
#mynetworks = hash:/etc/postfix/network_table
#relay_domains = $mydestination
#relayhost = $mydomain
#relayhost = [gateway.my.domain]
#relayhost = [mailserver.isp.tld]
#relayhost = uucphost
#relayhost = [an.ip.add.ress]
#relay_recipient_maps = hash:/etc/postfix/relay_recipients
#in_flow_delay = 1s
#alias_maps = dbm:/etc/aliases
alias_maps = hash:/etc/aliases
#alias_maps = hash:/etc/aliases, nis:mail.aliases
#alias_maps = netinfo:/aliases
#recipient_delimiter = +
#home_mailbox = Mailbox
home_mailbox = Maildir/
#mail_spool_directory = /var/mail
#mail_spool_directory = /var/spool/mail
#mailbox_command = /some/where/procmail
#mailbox_command = /some/where/procmail -a "$EXTENSION"
#mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp
# mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp
#fallback_transport = lmtp:unix:/var/lib/imap/socket/lmtp
#fallback_transport =
#luser_relay = [email protected]
#luser_relay = [email protected]
#luser_relay = admin+$local
#header_checks = regexp:/etc/postfix/header_checks
#fast_flush_domains = $relay_domains
#smtpd_banner = $myhostname ESMTP $mail_name
#smtpd_banner = $myhostname ESMTP $mail_name ($mail_version)
#local_destination_concurrency_limit = 2
#default_destination_concurrency_limit = 20
debug_peer_level = 2
#debug_peer_list = 127.0.0.1
#debug_peer_list = some.domain
debugger_command =
PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
ddd $daemon_directory/$process_name $process_id & sleep 5
sendmail_path = /usr/sbin/sendmail.postfix
newaliases_path = /usr/bin/newaliases.postfix
mailq_path = /usr/bin/mailq.postfix
setgid_group = postdrop
html_directory = no
smtpd_sasl_auth_enable=yes
smtpd_recipient_restrictions = check_policy_service
inet:127.0.0.1:10031, permit_mynetworks, permit_sasl_authenticated,
reject_unauth_destination
smtpd_end_of_data_restrictions = check_policy_service
inet:127.0.0.1:10031
_______________________________________________
Users mailing list
[email protected]
http://lists.policyd.org/mailman/listinfo/users_lists.policyd.org
_______________________________________________
Users mailing list
[email protected]
http://lists.policyd.org/mailman/listinfo/users_lists.policyd.org
