List Info

Thread: Maia on multiple machines
Maia on multiple machines
user name
 2006-08-23 07:15:00 
Brian McCullough wrote:
> I know that several of you have encountered this issue
and have
> everything working well, so I hope that you can point
me in the right
> direction.
> 
> 
> I am coming from an RC5+ ( partly 1.0.0 ) + QMail +
PostgreSQL system, 
> all on one machine, to a 1.0.1 + Postfix + PostgreSQL
system, where each
> component is in a different machine. ( DNS, PostgreSQL,
Maia and
> Postfix, and Apache )
> 
> Using the configuration of the Installation
Instructions, Maia and
> Postfix seem to be working well.  Originally I had
ports 10024 and 10025
> configured to be localhost, as instructed.  However,
when I tried to
> "rescue" some non-spam through the web
interface, I got a message about
> "can't connect to socket, no route to
host".  
> 
> I figured out that the localhost had a lot to do with
that, so changed 
> 10025 to be the eth0 port on the mail machine. 
Unfortunately, I still
> can't re-direct non-spam from the web interface.  The
web interface
> "Downstream SMTP server" settings have
always been the external name of
> the mail machine ( FQDN ) and port 10025.
> 
> Any hints or suggestions?

How does the line for the donwstream-smtpd in
/etc/postfix/master.cf
look like? This one is often restricted to only accept mail
from
localhost, not from another machine in the LAN (most
examples show the
config for the all-in-one-machine-solution). Use
permit_mynetworks here
to allow your LAN/machine in.

"No route to host" could also say "Can't
resolve hostname". What about
that? Is the Web-host able to resolve the FQDN of the
Mail-host?

Greets, Stefan.

_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users
Maia on multiple machines
user name
 2006-08-23 15:34:53 
On Wed, Aug 23, 2006 at 09:15:00AM +0200, Stefan G.
Weichinger wrote:
> Brian McCullough wrote:
> > 
> > I figured out that the localhost had a lot to do
with that, so changed 
> > 10025 to be the eth0 port on the mail machine. 
Unfortunately, I still
> > can't re-direct non-spam from the web interface. 
The web interface
> > "Downstream SMTP server" settings have
always been the external name of
> > the mail machine ( FQDN ) and port 10025.
> > 
> > Any hints or suggestions?
> 
> How does the line for the donwstream-smtpd in
/etc/postfix/master.cf
> look like? This one is often restricted to only accept
mail from
> localhost, not from another machine in the LAN (most
examples show the
> config for the all-in-one-machine-solution). Use
permit_mynetworks here
> to allow your LAN/machine in.
> 

Sorry, didn't show that, did I?


192.168.1.133:10025 inet n  -       n       -       -  smtpd
    -o content_filter=
    -o local_recipient_maps=
    -o relay_recipient_maps=
    -o smtpd_restriction_classes=
    -o smtpd_client_restrictions=
    -o smtpd_helo_restrictions=
    -o smtpd_sender_restrictions=
    -o smtpd_recipient_restrictions=permit_mynetworks,reject
    -o mynetworks=192.168.1.0/24
    -o strict_rfc821_envelopes=yes
    -o smtpd_error_sleep_time=0
    -o smtpd_soft_error_limit=1001
    -o smtpd_hard_error_limit=1000


Not being very familiar with Postfix, I tried to change as
little as
possible.  .1.133 is the mail host, .1.135 is the web host.

I tried both /24 and /25, since both the mail host and web
host are >
128, but neither one seems to work.  Amavis seems to be
connecting to
the eth0 port successfully from the same machine as Postfix,
but I don't
expect that that helps a lot.


> "No route to host" could also say
"Can't resolve hostname". What about
> that? Is the Web-host able to resolve the FQDN of the
Mail-host?

Yes, I did think of that, but I _can_ ping the mail host by
name, both 
short and long, from the web host.


> Greets, Stefan.


Thank you for the help,
Brian

_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users
Maia on multiple machines
user name
 2006-08-23 18:00:36 
Brian McCullough wrote:
> On Wed, Aug 23, 2006 at 09:15:00AM +0200, Stefan G.
Weichinger wrote:
>> Brian McCullough wrote:
>>> I figured out that the localhost had a lot to
do with that, so changed 
>>> 10025 to be the eth0 port on the mail machine. 
Unfortunately, I still
>>> can't re-direct non-spam from the web
interface.  The web interface
>>> "Downstream SMTP server" settings
have always been the external name of
>>> the mail machine ( FQDN ) and port 10025.
>>>
>>> Any hints or suggestions?
>> How does the line for the donwstream-smtpd in
/etc/postfix/master.cf
>> look like? This one is often restricted to only
accept mail from
>> localhost, not from another machine in the LAN
(most examples show the
>> config for the all-in-one-machine-solution). Use
permit_mynetworks here
>> to allow your LAN/machine in.
>>
> 
> Sorry, didn't show that, did I?
> 
> 
> 192.168.1.133:10025 inet n  -       n       -       - 
smtpd
>     -o content_filter=
>     -o local_recipient_maps=
>     -o relay_recipient_maps=
>     -o smtpd_restriction_classes=
>     -o smtpd_client_restrictions=
>     -o smtpd_helo_restrictions=
>     -o smtpd_sender_restrictions=
>     -o
smtpd_recipient_restrictions=permit_mynetworks,reject
>     -o mynetworks=192.168.1.0/24
>     -o strict_rfc821_envelopes=yes
>     -o smtpd_error_sleep_time=0
>     -o smtpd_soft_error_limit=1001
>     -o smtpd_hard_error_limit=1000
> 
> 
> Not being very familiar with Postfix, I tried to change
as little as
> possible.  .1.133 is the mail host, .1.135 is the web
host.
> 
> I tried both /24 and /25, since both the mail host and
web host are >
> 128, but neither one seems to work.  

Try
mynetworks=192.168.1.133,192.168.1.135
to pin it down.

Try to remove that line for a test (only for the test ...)

> Amavis seems to be connecting to
> the eth0 port successfully from the same machine as
Postfix, but I don't
> expect that that helps a lot.

You said, you changed the master.cf, and that your are not
so
experienced with it. Did you restart postfix after editing
master.cf?

>> "No route to host" could also say
"Can't resolve hostname". What about
>> that? Is the Web-host able to resolve the FQDN of
the Mail-host?
> 
> Yes, I did think of that, but I _can_ ping the mail
host by name, both 
> short and long, from the web host.

What does telnet give you?

webhost# telnet mailhost 10025

Does the host answer?

Also check /etc/hosts.{allow,deny}, maybe someone has done
it really
safe ...

On mailhost: check with something like netstat if there is
really
something listening on 10025.

Stefan

_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users
Maia on multiple machines
user name
 2006-08-23 23:45:49 
On Wed, Aug 23, 2006 at 08:00:36PM +0200, Stefan G.
Weichinger wrote:
> 
> >> "No route to host" could also say
"Can't resolve hostname". What about
> >> that? Is the Web-host able to resolve the FQDN
of the Mail-host?
> > 
> > Yes, I did think of that, but I _can_ ping the
mail host by name, both 
> > short and long, from the web host.
> 
> What does telnet give you?
> 
> webhost# telnet mailhost 10025
> 
> Stefan


Thank you for all of the help, Stefan.

It turns out that the problem was a missing iptables entry
for port
10025, nothing to do with Postfix or the web server at all.


When all else fails, check the obvious again.

Brian

_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users
Maia on multiple machines
user name
 2006-08-25 21:26:45 
Brian McCullough wrote:

> Thank you for all of the help, Stefan.
> 
> It turns out that the problem was a missing iptables
entry for port
> 10025, nothing to do with Postfix or the web server at
all.

So you blocked that access from the other host?

> When all else fails, check the obvious again.

Good old rule, yes 
Over and over again, until success.
Nice to hear it's working now.

Stefan
_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users
Maia on multiple machines
user name
 2006-08-27 02:55:04 
On Fri, Aug 25, 2006 at 11:26:45PM +0200, Stefan G.
Weichinger wrote:
> Brian McCullough wrote:
> > It turns out that the problem was a missing
iptables entry for port
> > 10025, nothing to do with Postfix or the web
server at all.
> 
> So you blocked that access from the other host?

Because it was not "open" _no_ access was
permitted at all to any
machine outside the mail server.



> Nice to hear it's working now.

Yes, thank you.


> Stefan

Brian


_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users
[1-6]

about | contact  Other archives ( Real Estate discussion Medical topics )