1

Topic: Issues with migration to new server (issue 2 of 2)

==== Required information ====
- iRedMail version (check /etc/iredmail-release): 0.9.2
- Linux/BSD distribution name and version: FreeBSD 10.2
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): MySQL
- Web server (Apache or Nginx): Apache 2.4
- Manage mail accounts with iRedAdmin-Pro? Yes
- Related log if you're reporting an issue: errorReports.txt
====

Since migrating from a previous iRedMail / iRedAdmin-Pro server, the postmaster email address is receiving 5-7 messages per minute with indicating that relay attempts are denied.

I don't need to receive these messages. The old server did not send them, at least not to me (as postmaster).

How to disable these emails?

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2

Re: Issues with migration to new server (issue 2 of 2)

Could you please show us the messages? so that we can know which application/program/daemon sent them and disable them.

3

Re: Issues with migration to new server (issue 2 of 2)

Sorry, I thought a sample message (just one of 3645 (!) received overnight) was attached. I have pasted its contents below.


Subject:
Postfix SMTP server: errors from mail10.ewe.pl[194.50.37.254]
From:
MAILER-DAEMON@mail.example.org (Mail Delivery System)
Date:
10/15/15, 8:52 PM
To:
postmaster@mail.example.org (Postmaster)

Transcript of session follows.

Out: 220 mail.example.org ESMTP Postfix
In:  EHLO mail10.ewe.pl
Out: 250-mail.example.org
Out: 250-PIPELINING
Out: 250-SIZE 15728640
Out: 250-ETRN
Out: 250-STARTTLS
Out: 250-ENHANCEDSTATUSCODES
Out: 250-8BITMIME
Out: 250 DSN
In:  STARTTLS
Out: 454 4.7.0 TLS not available due to local problem
In:  MAIL FROM:<> SIZE=10211
Out: 250 2.1.0 Ok
In:  RCPT TO:<djvtxe@domain2.com>
Out: 454 4.7.1 <djvtxe@domain2.com>: Relay access denied
In:  QUIT
Out: 221 2.0.0 Bye


For other details, see the local mail logfile

4

Re: Issues with migration to new server (issue 2 of 2)

cvcvelo wrote:

Out: 454 4.7.0 TLS not available due to local problem

Looks like there's something wrong with your TLS setting in Postfix.

*) Any error in /var/log/maillog right after restarting postfix service?
*) Show us the output of below commands, please try it on the server AND on a external machine (e.g. your laptop/workstation):

# telnet [your_server_address] 25

helo test.com
starttls

You type 'helo test.com', then type 'starttls', show us the terminal output please.

5

Re: Issues with migration to new server (issue 2 of 2)

Thanks, the log messages when restarting Postfix pointed to the problem -- I had not installed the correct certificate, key, and CA cert bundle on the new server. With these items in place, the TLS errors cleared up.

A related question: Will blacklisting in iRedMail prevent a host from completing the TLS handsake?

In 12 hours the new server received more than 5,300 of these bad relay requests, or about one every 8 seconds. Many appear to originate from the same addresses. Can I cut down on these opening up connections through blacklisting?

Thanks again!

6

Re: Issues with migration to new server (issue 2 of 2)

It's better to handle it with Fail2ban. If you have fail2ban running, it should block it with default iRedMail settings.