Ubuntu-fr

seb1359

problème postfix envoi certain mail bloquer

Bonjour
voila mon problème j'ai certain logs d'erreur qui me disent que certaines adresses ne passe pas

to=<truc@domaine.com>, relay=none, delay=63600, delays=63600/0.02/0/0.03, dsn=4.7.1, status=deferred (delivery temporarily suspended: host mx02.domaine.com[adresse IP de host mx02.domaine.com] refused to talk to me: 554 5.7.1 Delivery not authorized)

j'aimerais savoir comment résoudre ce probleme

Dernière modification par seb1359 (Le 14/06/2013, à 10:17)

Pseudo supprimé

Re : problème postfix envoi certain mail bloquer

bonjour,
il me semble que ta machine ne sait pas où livrer domaine.com. problème de transport & routage.
voir mydestination, relay_domains, transport_maps

ensuite, cela dépend de l'approche que tu utilises;
a/ méthode virtual
b/ méthode unix users system avec du pam.
Le mode opératoire est divergent selon le cas.

seb1359

Re : problème postfix envoi certain mail bloquer

Pourrais tu m'en dire plus car je ne suis pas très fort pour la configuration de postfix sinon voila exactement les logs que j'ai :

Jul  9 08:41:43 leader-infra postfix/smtp[30251]: 2D33869918: host mx01.verspieren.com[81.80.80.46] refused to talk to me: 554 5.7.1 Delivery not authorized
Jul  9 08:41:43 leader-infra postfix/smtp[30258]: AEBAA697BA: host mx01.verspieren.com[81.80.80.46] refused to talk to me: 554 5.7.1 Delivery not authorized
Jul  9 08:41:43 leader-infra postfix/smtp[30252]: C3D7369948: host mx01.verspieren.com[81.80.80.46] refused to talk to me: 554 5.7.1 Delivery not authorized
Jul  9 08:41:43 leader-infra postfix/smtp[30253]: C63DB69850: host mx01.verspieren.com[81.80.80.46] refused to talk to me: 554 5.7.1 Delivery not authorized
Jul  9 08:41:43 leader-infra postfix/smtp[30254]: 47455698AB: host mx01.verspieren.com[81.80.80.46] refused to talk to me: 554 5.7.1 Delivery not authorized
Jul  9 08:41:43 leader-infra postfix/smtp[30250]: 2D33869918: host mailin-04.mx.aol.com[64.12.90.66] refused to talk to me: 421 4.7.1 : (DNS:NR) http://postmaster.info.aol.com/errors/421dnsnr.html
Jul  9 08:41:43 leader-infra postfix/smtp[30258]: AEBAA697BA: to=<afkite@verspieren.com>, relay=mx02.verspieren.com[81.80.80.47]:25, delay=386401, delays=386400/0.07/0.45/0, dsn=4.7.1, status=deferred (host mx02.verspieren.com[81.80.80.47] refused to talk to me: 554 5.7.1 Delivery not authorized)
Jul  9 08:41:43 leader-infra postfix/smtp[30253]: C63DB69850: to=<volpack@verspieren.com>, relay=mx02.verspieren.com[81.80.80.47]:25, delay=50702, delays=50702/0.04/0.49/0, dsn=4.7.1, status=deferred (host mx02.verspieren.com[81.80.80.47] refused to talk to me: 554 5.7.1 Delivery not authorized)
Jul  9 08:41:43 leader-infra postfix/smtp[30254]: 47455698AB: to=<volpack@verspieren.com>, relay=mx02.verspieren.com[81.80.80.47]:25, delay=63415, delays=63414/0.04/0.48/0, dsn=4.7.1, status=deferred (host mx02.verspieren.com[81.80.80.47] refused to talk to me: 554 5.7.1 Delivery not authorized)
Jul  9 08:41:43 leader-infra postfix/smtp[30252]: C3D7369948: to=<afkite@verspieren.com>, relay=mx02.verspieren.com[81.80.80.47]:25, delay=424661, delays=424661/0.03/0.5/0, dsn=4.7.1, status=deferred (host mx02.verspieren.com[81.80.80.47] refused to talk to me: 554 5.7.1 Delivery not authorized)
Jul  9 08:41:43 leader-infra postfix/smtp[30251]: 2D33869918: to=<volpack@verspieren.com>, relay=mx02.verspieren.com[81.80.80.47]:25, delay=433003, delays=433003/0.03/0.51/0, dsn=4.7.1, status=deferred (host mx02.verspieren.com[81.80.80.47] refused to talk to me: 554 5.7.1 Delivery not authorized)
Jul  9 08:41:43 leader-infra postfix/error[30266]: 91D7F69893: to=<volpack@verspieren.com>, relay=none, delay=48983, delays=48982/0.56/0/0.01, dsn=4.7.1, status=deferred (delivery temporarily suspended: host mx02.verspieren.com[81.80.80.47] refused to talk to me: 554 5.7.1 Delivery not authorized)
Jul  9 08:41:43 leader-infra postfix/error[30267]: BC811698EB: to=<afkite@verspieren.com>, relay=none, delay=386401, delays=386400/0.57/0/0.01, dsn=4.7.1, status=deferred (delivery temporarily suspended: host mx02.verspieren.com[81.80.80.47] refused to talk to me: 554 5.7.1 Delivery not authorized)
Jul  9 08:41:43 leader-infra postfix/error[30266]: 97B38697A9: to=<afkite@verspieren.com>, relay=none, delay=333601, delays=333600/0.57/0/0.01, dsn=4.7.1, status=deferred (delivery temporarily suspended: host mx02.verspieren.com[81.80.80.47] refused to talk to me: 554 5.7.1 Delivery not authorized)
Jul  9 08:41:43 leader-infra postfix/error[30268]: 35093698C4: to=<afkite@verspieren.com>, relay=none, delay=160103, delays=160103/0.57/0/0.01, dsn=4.7.1, status=deferred (delivery temporarily suspended: host mx02.verspieren.com[81.80.80.47] refused to talk to me: 554 5.7.1 Delivery not authorized)
Jul  9 08:41:43 leader-infra postfix/error[30267]: 0FB2B69880: to=<volpack@verspieren.com>, relay=none, delay=235733, delays=235733/0.57/0/0.01, dsn=4.7.1, status=deferred (delivery temporarily suspended: host mx02.verspieren.com[81.80.80.47] refused to talk to me: 554 5.7.1 Delivery not authorized)
Jul  9 08:41:43 leader-infra postfix/error[30266]: E598A69890: to=<volpack@verspieren.com>, relay=none, delay=222984, delays=222984/0.57/0/0.01, dsn=4.7.1, status=deferred (delivery temporarily suspended: host mx02.verspieren.com[81.80.80.47] refused to talk to me: 554 5.7.1 Delivery not authorized)
Jul  9 08:41:43 leader-infra postfix/error[30268]: 762AA698B3: to=<afkite@verspieren.com>, relay=none, delay=160201, delays=160200/0.58/0/0.02, dsn=4.7.1, status=deferred (delivery temporarily suspended: host mx02.verspieren.com[81.80.80.47] refused to talk to me: 554 5.7.1 Delivery not authorized)
Jul  9 08:41:43 leader-infra postfix/error[30269]: D4E926985F: to=<afkite@verspieren.com>, relay=none, delay=231600, delays=231600/0.58/0/0.02, dsn=4.7.1, status=deferred (delivery temporarily suspended: host mx02.verspieren.com[81.80.80.47] refused to talk to me: 554 5.7.1 Delivery not authorized)

je n'arrive pas à ressoudre  le problème.Sachant que leur serveur smtp est fonctionnel.

Voici ci-joint ma configuration de mon main.cf

# See /usr/share/postfix/main.cf.dist for a commented, more complete version


# Debian specific:  Specifying a file name will cause the first
# line of that file to be used as the name.  The Debian default
# is /etc/mailname.
#myorigin = /etc/mailname

smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
biff = no

# appending .domain is the MUA's job.
append_dot_mydomain = no

# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h

readme_directory = no

# TLS parameters
smtpd_tls_cert_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file = /etc/ssl/private/ssl-cert-snakeoil.key
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache

# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
# information on enabling SSL in the smtp client.

myhostname = leaderinfo.com
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = leader-infra.leaderinfo.com, localhost, localhost.localdomain, localhost
mailbox_command = procmail -a "$EXTENSION"
mailbox_size_limit = 0
recipient_delimiter = +
mydomain = leaderinfo.com
mynetworks = 192.168.0.0/16,127.0.0.1/8
smtpd_recipient_restrictions = permit_mynetworks reject_unauth_destination
message_size_limit = 51200000
ignore_mx_lookup_error = yes
fallback_relay = 

Je vous remercie d'avance pour toute l'aide que vous pourrez m'apporter.

Pseudo supprimé

Re : problème postfix envoi certain mail bloquer

je n'arrive pas à ressoudre  le problème.Sachant que leur serveur smtp est fonctionnel.

si tu veux utiliser leur smtp comme relais, il faut utiliser relayhost, ou transport_maps

relayhost=[smtp.ami.tld]
ou 
relayhost=
transport_maps=hash:/etc/postfix/transport

sudo nano /etc/postfix/transport + postmap
mydomain.tld          local:
*                              smtp:[smtp.ami.tld]

__ dans une configuration type nunux ( utilisateur unix du système, pam, stockage de mails sous le home ..) comme cela a l'air d'être ton cas

il te manque

 
relay_domains = $mydomain
et aussi il est souhaitable
relay_recipient_maps = hash:/etc/postfix/all_rcpt_valides

sudo nano /etc/postfix/all_rcpt_valides  + postmap
toto@mydomain.tld     OK
postmaster@mydomain.tld OK

sudo nano /etc/aliases + newaliases
root: toto
postmaster: toto
toto: toto@mydomain.tld

sudo postconf -n

alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
append_dot_mydomain = no
biff = no
broken_sasl_auth_clients = yes
config_directory = /etc/postfix
disable_vrfy_command = yes
home_mailbox = Maildir/
html_directory = /usr/share/doc/postfix/html
inet_interfaces = all
inet_protocols = ipv4
local_recipient_maps = proxy:unix:passwd.byname $alias_maps
mailbox_size_limit = 0
mailbox_transport = lmtp:unix:private/dovecot-lmtp
mydestination = localhost smtp.mydomain.tld
mydomain = mydomain.tld
myhostname = smtp.mydomain.tld
mynetworks = 127.0.0.1
myorigin = /etc/mailname
notify_classes = bounce, 2bounce, delay, policy, protocol, resource, software
readme_directory = /usr/share/doc/postfix
recipient_delimiter = +
relay_domains = $mydomain
relay_recipient_maps = hash:/etc/postfix/all_rcpt_valides 
relayhost =
smtp_cname_overrides_servername = yes
smtp_host_lookup = native, dns
#smtp_sasl_password_maps = hash:/etc/postfix/sasl/sasl_passwd
smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks, reject_unauth_destination
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain = mydomain.tld

smtpd_sasl_path = private/auth
smtpd_sasl_security_options = noanonymous
smtpd_sasl_type = dovecot
transport_maps = hash:/etc/postfix/transport

procmail

c'est archaique ce machin

dovecot version 2

dans dovecot, tu peux éditer les fichiers contenues dans /etc/dovecot/conf.d/* au cas par cas, et/ou en complément de /etc/dovecot/dovecot.conf. Attention donc au doublon de paramètres.
utilise un grep -ri pour vérifier

grep -ri "service lmtp" /etc/dovecot/conf.d  /etc/dovecot/dovecot.conf

sudo doveconf -n 
auth_default_realm = mydomain.tld
auth_mechanisms = plain login
auth_username_format = %Ln
disable_plaintext_auth = no
hostname = imap.mydomain.tld
listen = *
log_path = /var/log/dovecot/dovecot.log
mail_location = maildir:~/Maildir
passdb {
  driver = pam
}
protocols = imap lmtp
service auth {
  unix_listener /var/spool/postfix/private/auth {
    mode = 0666
  }
}
service imap-login {
  inet_listener imap {
    port = 143
  }
}
service lmtp {
  unix_listener /var/spool/postfix/private/dovecot-lmtp {
    group = postfix
    mode = 0666
    user = postfix
  }
}
ssl_cert = </etc/ssl/certs/dovecot.pem
ssl_key = </etc/ssl/private/dovecot.pem
userdb {
  driver = passwd
}

certains substituent smtp.mydomain.tld, imap.mydomain.tld par mail.mydomain.tld; c'est à toi de voir au niveau dns.

/etc/mailname
mydomain.tld

renseigner /etc/hosts
127.0.0.1       smtp.mydomain.tld imap.mydomain.tld  www.mydomain.tld hostname_local localhost
#127.0.1.1
#si ipv6, à tester
::1       smtp.mydomain.tld imap.mydomain.tld  www.mydomain.tld hostname_local ip6-localhost ip6-loopback
# le plus fqdn se trouve à gauche 

hostname -s
ce_que_tu_veux, (c'est le hostname local)

hostname -f
smtp.mydomain.tld

hostname -d 
mydomain.tld
#ou  dnsdomainname -v

host -t mx mydomain.tld  renvoie sur ta machine, là où est concrètement installé ton postfix

il n'y a rien à mettre dans le master.cf

seb1359

Re : problème postfix envoi certain mail bloquer

Je te remercie pour ton aide mais j'ai réussi à trouver la solution.
Il manquait un reverse dns que nous avons renseigner à notre FAI qui a fait le nécessaire depuis tous les mails passent même les adresses qui ne passé pas.

Cordialement