OS is ubuntu 14.04LTS, running postfix v2.11.0, cluebringer package from ubuntu
repos is v2.0.10.
check_policy_service is called once from main.cf, in smtpd_relay_restrictions.
Log entries in mail.log show a double increment of the outgoing message count.
The limit is high enough that it hasn't been an issue - yet. :) I'd like to
address this before it becomes an issue.
mail.log entries (sanitized):
Jun 24 11:54:56 mx1 cbpolicyd[14847]: module=Quotas, mode=update,
host=24.14.69.61, helo=DeniseHP, from=den...@xxxxxx.com,
to=ecampb...@yyyyyy.com, reason=quota_update, policy=9, quota=7, limit=8,
track=Sender:den...@xxxxxx.com, counter=MessageCount, quota=941/1000 (94.1%)
Jun 24 11:54:57 mx1 cbpolicyd[14855]: module=Quotas, mode=update,
host=127.0.0.1, helo=mail1.mustanginternetservices.com, from=den...@xxxxxx.com,
to=ecampb...@yyyyyy.com, reason=quota_update, policy=9, quota=7, limit=8,
track=Sender:den...@xxxxxx.com, counter=MessageCount, quota=942/1000 (94.2%)
Let me guess ? You have two smtpd instances, one listens on port 25 and stuffs
everything through an AV/Spam scanner (10024 ?), the scanner then stuffs the
messages into the second instance on another port (10025 ?)
Your second instance needs to be configured to not use the PolicyD milter -
normally it's configured in master with a load of overides to leave the smtpd_*
restrictions empty.
I am using amavis-new for content-filtering for spam and viruses. Amavis
is listening on port 10024, and re-injects on port 10025.
In master.cf the listener on 10025 is turning off a number of the params
for postfix that aren't necessary since it's already come through them
once to get to amavis in the first place.
This has got to be where policyd is getting called again. The host is
127.0.0.1 which I think proves you are right.
There is a single call to 10031 from smtpd_relay_restrictions. I added
"smtpd_relay_restrictions=" to the section in master.cf that handles the
port 10025 re-injection, but no difference in behavior.
RESOLUTION:
cluebringer is now called from smtpd_end_of_data_restrictions and
smtpd_recipient_restrictions only. Apparently you cannot turn off
smtpd_relay_restrictions from master.cf. I am now seeing a single
increment to the quota.
Dale
--
Dale Morin, Mustang Internet Services, Inc.
"Support Without Compromise"
direct line: 270.522.0180
email: d...@mustanginternet.com
Official Ripperologist #201303272879
_______________________________________________
Users mailing list
Users@lists.policyd.org
http://lists.policyd.org/mailman/listinfo/users_lists.policyd.org
