Jump to content
Froxlor Forum
  • 0

[solved] mailman & externe eMail-Empf?nger-Probleme - Relay access denied 554

Spacey

Asked by Spacey,

Question

Spacey Rookie

Spacey

Posted
Posted

Hallo Froxies,

 

ich habe MailMan in meinem Froxy (Debian Squeeze) und das funktioniert generell schon mal. Ss gibt eine Mailingliste "test@mainedomain.de" (Mail-Alias test@meinedomain.de -> test@liste.mainedomain.de) die soweit gut eingerichtet ist. Ein Test mit einem Listen-Empf?nger auf dem selben Server: Alles wunderbar, kommt an. Aber: Externe Empf?nger mag Mailman bzw. der SMTP nicht!?!

Wohlgemerkt "normale" eMails nach extern (an die selben Adressen wie zum Testen der Mailingliste) gehen jedoch wunderbar. Ich habe schon im Web gesucht aber nichts passendes f?r mich gefunden. Hat hier wer 'nen Tip oder eine Idee?

 

Hier 'nen paar Logs & Configs:


mail.info

May  6 11:21:21 server1 postfix/trivial-rewrite[21867]: warning: do not list domain lists.meinedomain.de in BOTH virtual_mailbox_domains and relay_domains
May  6 11:21:21 server1 postfix/smtpd[21905]: DCEAD202A117: client=localhost[127.0.0.1]
May  6 11:21:21 server1 postfix/cleanup[21898]: DCEAD202A117: message-id=<53F77022-C6B4-4783-97AF-40EC70F96A31@meinedomain.de>
May  6 11:21:21 server1 postfix/smtpd[21905]: disconnect from localhost[127.0.0.1]
May  6 11:21:21 server1 postfix/qmgr[21852]: DCEAD202A117: from=<absender@meinedomain.de>, size=8540, nrcpt=1 (queue active)
May  6 11:21:21 server1 postfix/trivial-rewrite[21867]: warning: do not list domain lists.meinedomain.de in BOTH virtual_mailbox_domains and relay_domains
May  6 11:21:21 server1 amavis[21739]: (21739-15) Passed CLEAN, [1.2.3.4] [1.2.3.4] <absender@meinedomain.de> -> <team@lists.meinedomain.de>, Message-ID: <53F77022-C6B4-4783-97AF-40EC70F96A31@meinedomain.de>, mail_id: FWdxWTk0XH32, Hits: -2.889, size: 8064, queued_as: DCEAD202A117, 7016 ms
May  6 11:21:21 server1 postfix/smtp[21899]: BD578202A109: to=<team@lists.meinedomain.de>, orig_to=<team@meinedomain.de>, relay=127.0.0.1[127.0.0.1]:10024, delay=7.2, delays=0.15/0/0/7, dsn=2.0.0, status=sent (250 2.0.0 Ok, id=21739-15, from MTA([127.0.0.1]:10025): 250 2.0.0 Ok: queued as DCEAD202A117)
May  6 11:21:21 server1 postfix/qmgr[21852]: BD578202A109: removed
May  6 11:21:22 server1 postfix/pipe[21906]: DCEAD202A117: to=<team@lists.meinedomain.de>, relay=mailman, delay=0.53, delays=0.02/0.04/0/0.46, dsn=2.0.0, status=sent (delivered via mailman service)
May  6 11:21:22 server1 postfix/qmgr[21852]: DCEAD202A117: removed
May  6 11:21:23 server1 postfix/smtpd[21860]: connect from server1.meinserver.de[11.22.33.44]
May  6 11:21:23 server1 postfix/smtpd[21860]: NOQUEUE: reject: RCPT from server1.meinserver.de[11.22.33.44]: 554 5.7.1 <empfaenger1@externedomain.de>: Relay access denied; from=<team-bounces@meinedomain.de> to=<empfaenger1@externedomain.de> proto=ESMTP helo=<server1.meinserver.de>
May  6 11:21:23 server1 postfix/smtpd[21860]: NOQUEUE: reject: RCPT from server1.meinserver.de[11.22.33.44]: 554 5.7.1 <cempfaenger2@externedomain.de>: Relay access denied; from=<team-bounces@meinedomain.de> to=<cempfaenger2@externedomain.de> proto=ESMTP helo=<server1.meinserver.de>
May  6 11:21:23 server1 postfix/smtpd[21860]: disconnect from server1.meinserver.de[11.22.33.44]
May  6 11:21:23 server1 postfix/smtpd[21860]: connect from server1.meinserver.de[11.22.33.44]
May  6 11:21:23 server1 postfix/smtpd[21860]: NOQUEUE: reject: RCPT from server1.meinserver.de[11.22.33.44]: 554 5.7.1 <empfaenger3@externedomain.de>: Relay access denied; from=<team-bounces@meinedomain.de> to=<empfaenger3@externedomain.de> proto=ESMTP helo=<server1.meinserver.de>
May  6 11:21:23 server1 postfix/smtpd[21860]: NOQUEUE: reject: RCPT from server1.meinserver.de[11.22.33.44]: 554 5.7.1 <empfaenger4@externedomain.de>: Relay access denied; from=<team-bounces@meinedomain.de> to=<empfaenger4@externedomain.de> proto=ESMTP helo=<server1.meinserver.de>
May  6 11:21:23 server1 postfix/smtpd[21860]: NOQUEUE: reject: RCPT from server1.meinserver.de[11.22.33.44]: 554 5.7.1 <empfaenger5@externedomain.de>: Relay access denied; from=<team-bounces@meinedomain.de> to=<empfaenger5@externedomain.de> proto=ESMTP helo=<server1.meinserver.de>
May  6 11:21:23 server1 postfix/smtpd[21860]: NOQUEUE: reject: RCPT from server1.meinserver.de[11.22.33.44]: 554 5.7.1 <empfaenger6@externedomain.de>: Relay access denied; from=<team-bounces@meinedomain.de> to=<empfaenger6@externedomain.de> proto=ESMTP helo=<server1.meinserver.de>
May  6 11:21:23 server1 postfix/smtpd[21860]: 8CFF0202A109: client=server1.meinserver.de[11.22.33.44]
May  6 11:21:23 server1 postfix/smtpd[21860]: 8CFF0202A109: reject: RCPT from server1.meinserver.de[11.22.33.44]: 554 5.7.1 <empfaenger7@externedomain.de>: Relay access denied; from=<team-bounces@meinedomain.de> to=<empfaenger7@externedomain.de> proto=ESMTP helo=<server1.meinserver.de>
May  6 11:21:23 server1 postfix/cleanup[21898]: 8CFF0202A109: message-id=<53F77022-C6B4-4783-97AF-40EC70F96A31@meinedomain.de>
May  6 11:21:23 server1 postfix/qmgr[21852]: 8CFF0202A109: from=<team-bounces@meinedomain.de>, size=10011, nrcpt=1 (queue active)
May  6 11:21:23 server1 postfix/smtpd[21860]: disconnect from server1.meinserver.de[11.22.33.44]
May  6 11:21:26 server1 postfix/smtpd[21905]: connect from localhost[127.0.0.1]
May  6 11:21:26 server1 postfix/smtpd[21905]: EF3CD202A117: client=localhost[127.0.0.1]
May  6 11:21:26 server1 postfix/cleanup[21898]: EF3CD202A117: message-id=<53F77022-C6B4-4783-97AF-40EC70F96A31@meinedomain.de>
May  6 11:21:26 server1 postfix/smtpd[21905]: disconnect from localhost[127.0.0.1]
May  6 11:21:26 server1 postfix/qmgr[21852]: EF3CD202A117: from=<team-bounces@meinedomain.de>, size=10477, nrcpt=1 (queue active)
May  6 11:21:26 server1 amavis[16254]: (16254-16) Passed CLEAN, [11.22.33.44] [1.2.3.4] <team-bounces@meinedomain.de> -> <absender@meinedomain.de>, Message-ID: <53F77022-C6B4-4783-97AF-40EC70F96A31@meinedomain.de>, mail_id: xGm+IgxRMf9h, Hits: -2.393, size: 10011, queued_as: EF3CD202A117, 3370 ms
May  6 11:21:26 server1 postfix/smtp[21899]: 8CFF0202A109: to=<absender@meinedomain.de>, relay=127.0.0.1[127.0.0.1]:10024, delay=3.5, delays=0.15/0/0/3.4, dsn=2.0.0, status=sent (250 2.0.0 Ok, id=16254-16, from MTA([127.0.0.1]:10025): 250 2.0.0 Ok: queued as EF3CD202A117)
May  6 11:21:26 server1 postfix/qmgr[21852]: 8CFF0202A109: removed
May  6 11:21:27 server1 postfix/virtual[21912]: EF3CD202A117: to=<absender@meinedomain.de>, relay=virtual, delay=0.02, delays=0.01/0.01/0/0.01, dsn=2.0.0, status=sent (delivered to maildir)
May  6 11:21:27 server1 postfix/qmgr[21852]: EF3CD202A117: removed


smtp-failure

May 06 11:21:23 2013 (1954) All recipients refused: {'empfaenger1@externedomain.de': (554, '5.7.1 <empfaenger1@externedomain.de>: Relay access denied'), 'empfaenger2@externedomain.de': (554, '5.7.1 <empfaenger2@externedomain.de>: Relay access denied')}, msgid: <53F77022-C6B4-4783-97AF-40EC70F96A31@tmeinedomain.de>
May 06 11:21:23 2013 (1954) delivery to empfaenger3@externedomain.de failed with code 554: 5.7.1 <empfaenger3@externedomain.de>: Relay access denied
May 06 11:21:23 2013 (1954) delivery to empfaenger2@externedomain.de failed with code 554: 5.7.1 <empfaenger2@externedomain.de>: Relay access denied
May 06 11:21:23 2013 (1954) delivery to empfaenger4@externedomain.de failed with code 554: 5.7.1 <empfaenger4@externedomain.de>: Relay access denied
May 06 11:21:23 2013 (1954) delivery to empfaenger5@externedomain.de failed with code 554: 5.7.1 <empfaenger5@externedomain.de>: Relay access denied
May 06 11:21:23 2013 (1954) delivery to empfaenger1@externedomain.de failed with code 554: 5.7.1 <empfaenger1@externedomain.de>: Relay access denied
May 06 11:21:23 2013 (1954) delivery to empfaenger6@externedomain.de failed with code 554: 5.7.1 <empfaenger6@externedomain.de>: Relay access denied


postconf -n

alias_database = hash:/var/lib/mailman/data/aliases, hash:/etc/aliases
alias_maps = hash:/var/lib/mailman/data/aliases, hash:/etc/aliases
append_dot_mydomain = no
biff = no
broken_sasl_auth_clients = yes
config_directory = /etc/postfix
content_filter = smtp-amavis:[127.0.0.1]:10024
default_destination_concurrency_limit = 20
inet_interfaces = all
local_destination_concurrency_limit = 2
local_transport = local
mailbox_size_limit = 0
message_size_limit = 52428800
mydestination = $myhostname,    $mydomain,      localhost.$myhostname,  localhost.$mydomain,    localhost
mydomain = server1.meinedomain.de
myhostname = server1.meinedomain.de
mynetworks = 127.0.0.0/8
relay_domains = mysql:/etc/postfix/mysql-mailman_relay.cf
smtp_tls_note_starttls_offer = yes
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
smtpd_client_restrictions = permit_mynetworks,        permit_sasl_authenticated
smtpd_helo_required = yes
smtpd_recipient_restrictions = permit_mynetworks,        permit_sasl_authenticated,        reject_unauth_destination,        reject_unknown_sender_domain,        reject_non_fqdn_sender,        reject_unauth_pipelining,        reject_non_fqdn_recipient
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain = $myhostname
smtpd_sender_login_maps = mysql:/etc/postfix/mysql-virtual_sender_permissions.cf
smtpd_sender_restrictions = permit_mynetworks,        permit_sasl_authenticated,        reject_unknown_helo_hostname,        reject_unknown_recipient_domain,        reject_unknown_sender_domain
smtpd_tls_CAfile = /etc/postfix/ssl/cacert.pem
smtpd_tls_cert_file = /etc/postfix/ssl/smtpd.crt
smtpd_tls_key_file = /etc/postfix/ssl/smtpd.key
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_security_level = may
smtpd_tls_session_cache_timeout = 3600s
strict_rfc821_envelopes = yes
tls_random_source = dev:/dev/urandom
transport_maps = mysql:/etc/postfix/mysql-mailman_transport.cf
virtual_alias_maps = mysql:/etc/postfix/mysql-virtual_alias_maps.cf
virtual_gid_maps = static:2000
virtual_mailbox_base = /var/customers/mail/
virtual_mailbox_domains = mysql:/etc/postfix/mysql-virtual_mailbox_domains.cf
virtual_mailbox_limit = 0
virtual_mailbox_maps = mysql:/etc/postfix/mysql-virtual_mailbox_maps.cf
virtual_uid_maps = static:2000

mm_cfg.py



# -*- python -*-

# Copyright (C) 1998,1999,2000 by the Free Software Foundation, Inc.
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
# 02110-1301 USA


"""This is the module which takes your site-specific settings.

From a raw distribution it should be copied to mm_cfg.py.  If you
already have an mm_cfg.py, be careful to add in only the new settings
you want.  The complete set of distributed defaults, with annotation,
are in ./Defaults.  In mm_cfg, override only those you want to
change, after the

  from Defaults import *

line (see below).

Note that these are just default settings - many can be overridden via the
admin and user interfaces on a per-list or per-user basis.

Note also that some of the settings are resolved against the active list
setting by using the value as a format string against the
list-instance-object's dictionary - see the distributed value of
DEFAULT_MSG_FOOTER for an example."""


#######################################################
#    Here's where we get the distributed defaults.    #

from Defaults import *

##############################################################
# Put YOUR site-specific configuration below, in mm_cfg.py . #
# See Defaults.py for explanations of the values.            #

#-------------------------------------------------------------
# The name of the list Mailman uses to send password reminders
# and similar. Don't change if you want mailman-owner to be
# a valid local part.
MAILMAN_SITE_LIST = 'mailman'

#-------------------------------------------------------------
# If you change these, you have to configure your http server
# accordingly (Alias and ScriptAlias directives in most httpds)
DEFAULT_URL_PATTERN = 'http://%s/cgi-bin/mailman/'
PRIVATE_ARCHIVE_URL = '/cgi-bin/mailman/private'
IMAGE_LOGOS         = '/images/mailman/'

#-------------------------------------------------------------
# Default domain for email addresses of newly created MLs
DEFAULT_EMAIL_HOST = 'server1.meinedomain.de'
#-------------------------------------------------------------
# Default host for web interface of newly created MLs
DEFAULT_URL_HOST   = 'server1.meinedoamin.de'
#-------------------------------------------------------------
# Required when setting any of its arguments.
add_virtualhost(DEFAULT_URL_HOST, DEFAULT_EMAIL_HOST)
#-------------------------------------------------------------
# The default language for this server.
DEFAULT_SERVER_LANGUAGE = 'en'

#-------------------------------------------------------------
# Iirc this was used in pre 2.1, leave it for now
USE_ENVELOPE_SENDER    = 0              # Still used?

#-------------------------------------------------------------
# Unset send_reminders on newly created lists
DEFAULT_SEND_REMINDERS = 0

#-------------------------------------------------------------
# Uncomment this if you configured your MTA such that it
# automatically recognizes newly created lists.
# (see /usr/share/doc/mailman/README.Exim4.Debian or
# /usr/share/mailman/postfix-to-mailman.py)
# MTA=None   # Misnomer, suppresses alias output on newlist

#-------------------------------------------------------------
# Uncomment if you use Postfix virtual domains (but not
# postfix-to-mailman.py), but be sure to see
# /usr/share/doc/mailman/README.Debian first.
# MTA='Postfix'

#-------------------------------------------------------------
# Uncomment if you want to filter mail with SpamAssassin. For
# more information please visit this website:
# http://www.jamesh.id.au/articles/mailman-spamassassin/
# GLOBAL_PIPELINE.insert(1, 'SpamAssassin')

# Note - if you're looking for something that is imported from mm_cfg, but you 
master.cf


#
# Postfix master process configuration file.  For details on the format
# of the file, see the master(5) manual page (command: "man 5 master").
#
# Do not forget to execute "postfix reload" after editing this file.
#
# ==========================================================================
# service type  private unpriv  chroot  wakeup  maxproc command + args
#               (yes)   (yes)   (yes)   (never) (100)
# ==========================================================================
smtp      inet  n       -       -       -       -       smtpd
#submission inet n       -       -       -       -       smtpd
#  -o smtpd_tls_security_level=encrypt
#  -o smtpd_sasl_auth_enable=yes
#  -o smtpd_client_restrictions=permit_sasl_authenticated,reject
#  -o milter_macro_daemon_name=ORIGINATING
smtps     inet  n       -       -       -       -       smtpd
  -o smtpd_tls_wrappermode=yes
  -o smtpd_sasl_auth_enable=yes
  -o smtpd_client_restrictions=permit_sasl_authenticated,reject
  -o milter_macro_daemon_name=ORIGINATING
#628       inet  n       -       -       -       -       qmqpd
pickup    fifo  n       -       -       60      1       pickup
   -o content_filter=
   -o receive_override_options=no_header_body_checks
cleanup   unix  n       -       -       -       0       cleanup
qmgr      fifo  n       -       n       300     1       qmgr
#qmgr     fifo  n       -       -       300     1       oqmgr
tlsmgr    unix  -       -       -       1000?   1       tlsmgr
rewrite   unix  -       -       -       -       -       trivial-rewrite
bounce    unix  -       -       -       -       0       bounce
defer     unix  -       -       -       -       0       bounce
trace     unix  -       -       -       -       0       bounce
verify    unix  -       -       -       -       1       verify
flush     unix  n       -       -       1000?   0       flush
proxymap  unix  -       -       n       -       -       proxymap
proxywrite unix -       -       n       -       1       proxymap
smtp      unix  -       -       -       -       -       smtp
# When relaying mail as backup MX, disable fallback_relay to avoid MX loops
relay     unix  -       -       -       -       -       smtp
        -o smtp_fallback_relay=
#       -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq     unix  n       -       -       -       -       showq
error     unix  -       -       -       -       -       error
retry     unix  -       -       -       -       -       error
discard   unix  -       -       -       -       -       discard
local     unix  -       n       n       -       -       local
virtual   unix  -       n       n       -       -       virtual
lmtp      unix  -       -       -       -       -       lmtp
anvil     unix  -       -       -       -       1       anvil
scache    unix  -       -       -       -       1       scache
#
# ====================================================================
# Interfaces to non-Postfix software. Be sure to examine the manual
# pages of the non-Postfix software to find out what options it wants.
#
# Many of the following services use the Postfix pipe(8) delivery
# agent.  See the pipe(8) man page for information about ${recipient}
# and other message envelope options.
# ====================================================================
#
# maildrop. See the Postfix MAILDROP_README file for details.
# Also specify in main.cf: maildrop_destination_recipient_limit=1
#
#maildrop  unix  -       n       n       -       -       pipe
#  flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}
#
# ====================================================================
#
# Recent Cyrus versions can use the existing "lmtp" master.cf entry.
#
# Specify in cyrus.conf:
#   lmtp    cmd="lmtpd -a" listen="localhost:lmtp" proto=tcp4
#
# Specify in main.cf one or more of the following:
#  mailbox_transport = lmtp:inet:localhost
#  virtual_transport = lmtp:inet:localhost
#
# ====================================================================
#
# Cyrus 2.1.5 (Amos Gouaux)
# Also specify in main.cf: cyrus_destination_recipient_limit=1
#
#cyrus     unix  -       n       n       -       -       pipe
#  user=cyrus argv=/cyrus/bin/deliver -e -r ${sender} -m ${extension} ${user}
#
# ====================================================================
# Old example of delivery via Cyrus.
#
#old-cyrus unix  -       n       n       -       -       pipe
#  flags=R user=cyrus argv=/cyrus/bin/deliver -e -m ${extension} ${user}
#
# ====================================================================
#
# See the Postfix UUCP_README file for configuration details.
#
uucp      unix  -       n       n       -       -       pipe
  flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
#
# Other external delivery methods.
#
ifmail    unix  -       n       n       -       -       pipe
  flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp     unix  -       n       n       -       -       pipe
  flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender $recipient
scalemail-backend unix  -       n       n       -       2       pipe
  flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store ${nexthop} ${user} ${extension}
mailman   unix  -       n       n       -       -       pipe
  flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
  ${nexthop} ${user}

smtp-amavis     unix    -       -       -       -       2       smtp
   -o smtp_data_done_timeout=1200
   -o smtp_send_xforward_command=yes
   -o disable_dns_lookups=yes
   -o max_use=20

127.0.0.1:10025 inet    n       -       -       -       -       smtpd
   -o content_filter=
   -o local_recipient_maps=
   -o relay_recipient_maps=
   -o smtpd_restriction_classes=
   -o smtpd_delay_reject=no
   -o smtpd_client_restrictions=permit_mynetworks,reject
   -o smtpd_helo_restrictions=
   -o smtpd_sender_restrictions=
   -o smtpd_recipient_restrictions=permit_mynetworks,reject
   -o smtpd_data_restrictions=reject_unauth_pipelining
   -o smtpd_end_of_data_restrictions=
   -o mynetworks=127.0.0.0/8
   -o smtpd_error_sleep_time=0
   -o smtpd_soft_error_limit=1001
   -o smtpd_hard_error_limit=1000
   -o smtpd_client_connection_count_limit=0
   -o smtpd_client_connection_rate_limit=0
   -o receive_override_options=no_header_body_checks,no_unknown_recipient_checks

P.S.: Auf 'nem anderen Debian Lenny Server geht das alles einwandfrei.

Link to comment
Share on other sites

1 answer to this question

Recommended Posts

Spacey Rookie

Spacey

Posted
  • Author
Posted

Gel?st im IRC dank Shortie & Sephi  :)

main.cf ->

mynetworks = 127.0.0.0/8, EigeneServerIP/32

Mailman versucht sich anscheinend nicht auf localhost zu connecten sondern auf der IP des Servers.  :huh:

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

Go to question listing


×
×
  • Create New...