1

Topic: Greylisting in iRedMail

==== Required information ====
- iRedMail version: 0.8.3
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): LDAP
- Linux/BSD distribution name and version: Ubuntu 12.04
- Related log if you're reporting an issue:
====
When I sent a mail today to one of the accounts on our newly set up iRedMail server (using a Thunderbird mail client), I got the message back:

Cannot send mail to xxyz@mydomain.com because greylisting is in effect. Try to send the mail again later.

This is awkward because greylisting normally does not prompt any response in an email client.
Also I am not aware that there is greylisting set up anywhere and cannot find any option in the iRedAdminPro panel.
The message appears only if I try to send emails to that specific mail account.
In fact, trying from another mail server gave me the response "user  unknown". But I have a mail box in iRed Mail for that user.

(I seem to remember that a greylisting option did show up in the open source panel before I installed iRedAdminPro - is there one?)

I do not want any greylisting going on. Can you help me disable it?
It might be something different, not greylisting, which is going on. Any idea where to look?

2

Re: Greylisting in iRedMail

Could you please show us output of command "postconf -n"? We need it for troubleshooting.

3

Re: Greylisting in iRedMail

Output of postconf -n:

alias_database = hash:/etc/postfix/aliases
alias_maps = hash:/etc/postfix/aliases
allow_min_user = no
append_dot_mydomain = no
biff = no
bounce_queue_lifetime = 1d
broken_sasl_auth_clients = yes
config_directory = /etc/postfix
content_filter = smtp-amavis:[127.0.0.1]:10024
delay_warning_time = 0h
disable_vrfy_command = yes
dovecot_destination_recipient_limit = 1
enable_original_recipient = no
home_mailbox = Maildir/
inet_interfaces = all
inet_protocols = ipv4
mailbox_command = /usr/lib/dovecot/deliver
mailbox_size_limit = 0
maximal_backoff_time = 4000s
maximal_queue_lifetime = 1d
message_size_limit = 15728640
minimal_backoff_time = 300s
mydestination = $myhostname, localhost, localhost.localdomain, localhost.$myhostname
mydomain = newerapub.com
myhostname = mx1.newerapub.com
mynetworks = 127.0.0.0/8
mynetworks_style = subnet
myorigin = mx1.newerapub.com
proxy_read_maps = $canonical_maps $lmtp_generic_maps $local_recipient_maps $mydestination $mynetworks $recipient_bcc_maps $recipient_canonical_maps $relay_domains $relay_recipient_maps $relocated_maps $sender_bcc_maps $sender_canonical_maps $smtp_generic_maps $smtpd_sender_login_maps $transport_maps $virtual_alias_domains $virtual_alias_maps $virtual_mailbox_domains $virtual_mailbox_maps $smtpd_sender_restrictions
queue_run_delay = 300s
readme_directory = no
recipient_bcc_maps = proxy:ldap:/etc/postfix/ldap/recipient_bcc_maps_user.cf, proxy:ldap:/etc/postfix/ldap/recipient_bcc_maps_domain.cf
recipient_delimiter = +
relay_domains = $mydestination, proxy:ldap:/etc/postfix/ldap/relay_domains.cf
relayhost =
sender_bcc_maps = proxy:ldap:/etc/postfix/ldap/sender_bcc_maps_user.cf, proxy:ldap:/etc/postfix/ldap/sender_bcc_maps_domain.cf
smtp-amavis_destination_recipient_limit = 1
smtp_data_init_timeout = 240s
smtp_data_xfer_timeout = 600s
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
smtpd_data_restrictions = reject_unauth_pipelining
smtpd_end_of_data_restrictions = check_policy_service inet:127.0.0.1:10031
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_mynetworks,permit_sasl_authenticated, check_helo_access pcre:/etc/postfix/helo_access.pcre
smtpd_recipient_restrictions = reject_unknown_sender_domain, reject_unknown_recipient_domain, reject_non_fqdn_sender, reject_non_fqdn_recipient, reject_unlisted_recipient, check_policy_service inet:127.0.0.1:7777, check_policy_service inet:127.0.0.1:10031, permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, reject_non_fqdn_helo_hostname, reject_invalid_helo_hostname
smtpd_reject_unlisted_recipient = yes
smtpd_reject_unlisted_sender = yes
smtpd_sasl_auth_enable = yes
smtpd_sasl_authenticated_header = no
smtpd_sasl_local_domain =
smtpd_sasl_path = ./dovecot-auth
smtpd_sasl_security_options = noanonymous
smtpd_sasl_type = dovecot
smtpd_sender_login_maps = proxy:ldap:/etc/postfix/ldap/sender_login_maps.cf
smtpd_sender_restrictions = permit_mynetworks, reject_sender_login_mismatch, permit_sasl_authenticated
smtpd_tls_CAfile = /etc/ssl/certs/iRedMail_CA.pem
smtpd_tls_cert_file = /etc/ssl/certs/iRedMail_CA.pem
smtpd_tls_key_file = /etc/ssl/private/iRedMail.key
smtpd_tls_loglevel = 0
smtpd_tls_security_level = may
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtpd_use_tls = yes
tls_random_source = dev:/dev/urandom
transport_maps = proxy:ldap:/etc/postfix/ldap/transport_maps_user.cf, proxy:ldap:/etc/postfix/ldap/transport_maps_domain.cf
virtual_alias_domains =
virtual_alias_maps = proxy:ldap:/etc/postfix/ldap/virtual_alias_maps.cf, proxy:ldap:/etc/postfix/ldap/virtual_group_maps.cf, proxy:ldap:/etc/postfix/ldap/virtual_group_members_maps.cf, proxy:ldap:/etc/postfix/ldap/catchall_maps.cf
virtual_gid_maps = static:1001
virtual_mailbox_base = /maildisk
virtual_mailbox_domains = proxy:ldap:/etc/postfix/ldap/virtual_mailbox_domains.cf
virtual_mailbox_maps = proxy:ldap:/etc/postfix/ldap/virtual_mailbox_maps.cf
virtual_minimum_uid = 1001
virtual_transport = dovecot
virtual_uid_maps = static:1001

4

Re: Greylisting in iRedMail

Postfix config looks just fine. No idea yet. sad
Could you please extract related log from Postfix log file (/var/log/mail.log), and the original error message displayed in Thunderbird?

5

Re: Greylisting in iRedMail

Hello.
I have the same problem.
- iRedMail version: 0.8.3
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): LDAP
- Linux/BSD distribution name and version: Ubuntu 12.04

I send the email from Thunderbird with .jpg file and his do not deliver, thereafter i send email  from Thunderbird with out anything, only text and his deliver.

/var/log/mail.log
Mar 13 19:24:26 mail postfix/smtpd[9027]: connect from smtp45.i.mail.ru[94.100.177.105]
Mar 13 19:24:26 mail cbpolicyd[1776]: module=Greylisting, action=defer, host=94.100.177.105, helo=smtp45.i.mail.ru, from=adm_allopizza@mail.ru, to=megaadmin@allopizza.msk.ru, reason=greylisted
Mar 13 19:24:26 mail postfix/smtpd[9027]: NOQUEUE: reject: RCPT from smtp45.i.mail.ru[94.100.177.105]: 451 4.7.1 <megaadmin@allopizza.msk.ru>: Recipient address rejected: Greylisting in effect, please come back later; from=<adm_allopizza@mail.ru> to=<megaadmin@allopizza.msk.ru> proto=ESMTP helo=<smtp45.i.mail.ru>
Mar 13 19:24:26 mail postfix/smtpd[9027]: disconnect from smtp45.i.mail.ru[94.100.177.105]

Mar 13 19:59:32 mail postfix/smtpd[9373]: connect from smtp53.i.mail.ru[94.100.177.113]
Mar 13 19:59:32 mail cbpolicyd[7826]: module=Greylisting, action=pass, host=94.100.177.113, helo=smtp53.i.mail.ru, from=adm_allopza@mail.ru, to=megaadmin@allopizza.msk.ru, reason=authenticated
Mar 13 19:59:32 mail postfix/smtpd[9373]: 504055962: client=smtp53.i.mail.ru[94.100.177.113]
Mar 13 19:59:33 mail postfix/cleanup[9378]: 504055962: message-id=<5140A265.7040604@mail.ru>
Mar 13 19:59:33 mail postfix/qmgr[1735]: 504055962: from=<adm_allopizza@mail.ru>, size=1675, nrcpt=1 (queue active)
Mar 13 19:59:33 mail postfix/smtpd[9373]: disconnect from smtp53.i.mail.ru[94.100.177.113]
Mar 13 19:59:52 mail postfix/smtpd[9384]: connect from localhost[127.0.0.1]
Mar 13 19:59:52 mail postfix/smtpd[9384]: 963815965: client=localhost[127.0.0.1]
Mar 13 19:59:52 mail postfix/cleanup[9378]: 963815965: message-id=<5140A265.7040604@mail.ru>
Mar 13 19:59:52 mail postfix/qmgr[1735]: 963815965: from=<adm_allopizza@mail.ru>, size=2321, nrcpt=1 (queue active)
Mar 13 19:59:52 mail postfix/smtpd[9384]: disconnect from localhost[127.0.0.1]
Mar 13 19:59:52 mail amavis[1664]: (01664-13) Passed CLEAN, LOCAL [94.100.177.113] [94.100.177.113] <adm_allopizza@mail.ru> -> <maadmin@allopizza.msk.ru>, Message-ID: <5140A265.7040604@mail.ru>, mail_id: TTJcdKtubfCe, Hits: 0.121, size: 1673, queued_as: 9638965, 19258 ms
Mar 13 19:59:52 mail postfix/smtp[9380]: 504055962: to=<megaadmin@allopizza.msk.ru>, relay=127.0.0.1[127.0.0.1]:10024, delay=20, lays=1.2/0.02/0.01/19, dsn=2.0.0, status=sent (250 2.0.0 from MTA([127.0.0.1]:10025): 250 2.0.0 Ok: queued as 963815965)
Mar 13 19:59:52 mail postfix/qmgr[1735]: 504055962: removed
Mar 13 19:59:52 mail postfix/pipe[9385]: 963815965: to=<megaadmin@allopizza.msk.ru>, relay=dovecot, delay=0.18, delays=0.02/0.05/0.1, dsn=2.0.0, status=sent (delivered via dovecot service)
Mar 13 19:59:52 mail postfix/qmgr[1735]: 963815965: removed





root@mail:~# postconf -n
alias_database = hash:/etc/postfix/aliases
alias_maps = hash:/etc/postfix/aliases
allow_min_user = no
append_dot_mydomain = no
biff = no
bounce_queue_lifetime = 1d
broken_sasl_auth_clients = yes
config_directory = /etc/postfix
content_filter = smtp-amavis:[127.0.0.1]:10024
delay_warning_time = 0h
disable_vrfy_command = yes
dovecot_destination_recipient_limit = 1
enable_original_recipient = no
home_mailbox = Maildir/
inet_interfaces = all
inet_protocols = ipv4
mailbox_command = /usr/lib/dovecot/deliver
mailbox_size_limit = 0
maximal_backoff_time = 4000s
maximal_queue_lifetime = 1d
message_size_limit = 15728640
minimal_backoff_time = 300s
mydestination = $myhostname, localhost, localhost.localdomain, localhost.$myhostname
mydomain = allopizza.msk
myhostname = mail.allopizza.msk.ru
mynetworks = 127.0.0.0/8
mynetworks_style = subnet
myorigin = mail.allopizza.msk.ru
proxy_read_maps = $canonical_maps $lmtp_generic_maps $local_recipient_maps $mydestination $mynetworks $recipient_bcc_maps $recipient_canonical_maps $relay_domains $relay_recipient_maps $relocated_maps $sender_bcc_maps $sender_canonical_maps $smtp_generic_maps $smtpd_sender_login_maps $transport_maps $virtual_alias_domains $virtual_alias_maps $virtual_mailbox_domains $virtual_mailbox_maps $smtpd_sender_restrictions
queue_run_delay = 300s
readme_directory = no
recipient_bcc_maps = proxy:ldap:/etc/postfix/ldap/recipient_bcc_maps_user.cf, proxy:ldap:/etc/postfix/ldap/recipient_bcc_maps_domain.cf
recipient_delimiter = +
relay_domains = $mydestination, proxy:ldap:/etc/postfix/ldap/relay_domains.cf
relayhost =
sender_bcc_maps = proxy:ldap:/etc/postfix/ldap/sender_bcc_maps_user.cf, proxy:ldap:/etc/postfix/ldap/sender_bcc_maps_domain.cf
smtp-amavis_destination_recipient_limit = 1
smtp_data_init_timeout = 240s
smtp_data_xfer_timeout = 600s
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
smtpd_data_restrictions = reject_unauth_pipelining
smtpd_end_of_data_restrictions = check_policy_service inet:127.0.0.1:10031
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_mynetworks,permit_sasl_authenticated, check_helo_access pcre:/etc/postfix/helo_access.pcre
smtpd_recipient_restrictions = reject_unknown_sender_domain, reject_unknown_recipient_domain, reject_non_fqdn_sender, reject_non_fqdn_recipient, reject_unlisted_recipient, check_policy_service inet:127.0.0.1:7777, check_policy_service inet:127.0.0.1:10031, permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, reject_non_fqdn_helo_hostname, reject_invalid_helo_hostname
smtpd_reject_unlisted_recipient = yes
smtpd_reject_unlisted_sender = yes
smtpd_sasl_auth_enable = yes
smtpd_sasl_authenticated_header = no
smtpd_sasl_local_domain =
smtpd_sasl_path = ./dovecot-auth
smtpd_sasl_security_options = noanonymous
smtpd_sasl_type = dovecot
smtpd_sender_login_maps = proxy:ldap:/etc/postfix/ldap/sender_login_maps.cf
smtpd_sender_restrictions = permit_mynetworks, reject_sender_login_mismatch, permit_sasl_authenticated
smtpd_tls_CAfile = /etc/ssl/certs/iRedMail_CA.pem
smtpd_tls_cert_file = /etc/ssl/certs/iRedMail_CA.pem
smtpd_tls_key_file = /etc/ssl/private/iRedMail.key
smtpd_tls_loglevel = 0
smtpd_tls_security_level = may
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtpd_use_tls = yes
tls_random_source = dev:/dev/urandom
transport_maps = proxy:ldap:/etc/postfix/ldap/transport_maps_user.cf, proxy:ldap:/etc/postfix/ldap/transport_maps_domain.cf
virtual_alias_domains =
virtual_alias_maps = proxy:ldap:/etc/postfix/ldap/virtual_alias_maps.cf, proxy:ldap:/etc/postfix/ldap/virtual_group_maps.cf, proxy:ldap:/etc/postfix/ldap/virtual_group_members_maps.cf, proxy:ldap:/etc/postfix/ldap/catchall_maps.cf
virtual_gid_maps = static:1001
virtual_mailbox_base = /var/vmail
virtual_mailbox_domains = proxy:ldap:/etc/postfix/ldap/virtual_mailbox_domains.cf
virtual_mailbox_maps = proxy:ldap:/etc/postfix/ldap/virtual_mailbox_maps.cf
virtual_minimum_uid = 1001
virtual_transport = dovecot
virtual_uid_maps = static:1001

6

Re: Greylisting in iRedMail

i repeat test with .jpg and message was delivered. O_o what could be the problem?

7 (edited by Starc12344 2013-04-10 22:46:28)

Re: Greylisting in iRedMail

How i Grey-listing in iRedMail?

urine drug test