mail to unknown local recipient gets too many hops
Posted: Mon Apr 30, 2007 12:01 pm
Hi All,
an interesting problem i just found while trying to replicate another. It happens on multiple scalix installations, feodra or redhat/centos.
scalix version: 11.0.3
my server: mail.mydomain.com 192.168.1.254
my domain: mydomain.com
a valid user: les@mydomain.com
a non-existent user: nobody@mydomain.com
All my scalix installations are fairly much bog standard out of the box, especially related to this particular problem.
smtpfilter=true is setup and spamass-milter is in use as per normal setup instructions. Thus all mail, internal and external gets kicked through the milter.
Ok, here's what happens
Using outlook connector, or telnet to port 25 of the scalix server i send an email from les@mydomain.com to nobody@mydomain.com
i would expect a user unknown to come back.
Scalix accepts the mail, determines there is no user and forwards it to my upstream isp's smtp server, which is sendmail's configured smart host. In turn the isp smtp server ships it back to our server. It then proceeds to loop around until we get too many hops and sendmail panics.
i get nothing back to say the mail message never made it. Postmaster gets a rejection message of too many hops, although your lucky if you get that, when sendmail panics it cant deliver the message, even to postmaster and it simply leaves it behind in the mail queue, renamed. But thats another issue.
Back to the problem at hand....I should immediately get a rejection of user unknown, but the message loops and leaves the server for sendmail's smart host.
Its got to be something with the milter setup or the smtpd cfg but im not sure. I'm really starting to dislike the spamass-milter setup as it cannot be configured to only scan inbound mail.
p.s. i also used my external yahoo account to send an email to nobody@mydomain.com. Watching the logs it too also looped until too many hops but i never got anything back to the yahoo account. I should have got a user doesn't exist.
my smtpd.cfg
Can anyone shed some light on why this is happening?
why also when i telnet to my scalix smtp port, do i NOT get a user unknown when i type in the following at the "rcpt to" reply?...
[root@mail ~]# telnet 192.168.1.254 25
Trying 192.168.1.254...
Connected to mail.mydomain.com (192.168.1.254).
Escape character is '^]'.
220 mail.mydomain.com ESMTP Scalix SMTP Relay 11.0.3.10719; Tue, 01 May 2007 01:34:21 +1000 (EST)
ehlo me
250-mail.mydomain.com Hello mail.mydomain.com [192.168.1.254], pleased to meet you
250-AUTH LOGIN GSSAPI DIGEST-MD5 CRAM-MD5 PLAIN
250-AUTH=LOGIN
250-DSN
250 8BITMIME
mail from: <les@mydomain.com>
250 john@mydomain.com... Sender ok
rcpt to: <nobody@mydomain.com>
250 Ok
quit
221 mail.mydomain.com closing connection
Connection closed by foreign host.
You have new mail in /var/spool/mail/root
[root@mail ~]#
TIA
an interesting problem i just found while trying to replicate another. It happens on multiple scalix installations, feodra or redhat/centos.
scalix version: 11.0.3
my server: mail.mydomain.com 192.168.1.254
my domain: mydomain.com
a valid user: les@mydomain.com
a non-existent user: nobody@mydomain.com
All my scalix installations are fairly much bog standard out of the box, especially related to this particular problem.
smtpfilter=true is setup and spamass-milter is in use as per normal setup instructions. Thus all mail, internal and external gets kicked through the milter.
Ok, here's what happens
Using outlook connector, or telnet to port 25 of the scalix server i send an email from les@mydomain.com to nobody@mydomain.com
i would expect a user unknown to come back.
Scalix accepts the mail, determines there is no user and forwards it to my upstream isp's smtp server, which is sendmail's configured smart host. In turn the isp smtp server ships it back to our server. It then proceeds to loop around until we get too many hops and sendmail panics.
i get nothing back to say the mail message never made it. Postmaster gets a rejection message of too many hops, although your lucky if you get that, when sendmail panics it cant deliver the message, even to postmaster and it simply leaves it behind in the mail queue, renamed. But thats another issue.
Back to the problem at hand....I should immediately get a rejection of user unknown, but the message loops and leaves the server for sendmail's smart host.
Its got to be something with the milter setup or the smtpd cfg but im not sure. I'm really starting to dislike the spamass-milter setup as it cannot be configured to only scan inbound mail.
p.s. i also used my external yahoo account to send an email to nobody@mydomain.com. Watching the logs it too also looped until too many hops but i never got anything back to the yahoo account. I should have got a user doesn't exist.
my smtpd.cfg
# Filter via SpamAssassin
SMTPFILTER=TRUE
# NB Authenticated RELAYs are always allowed
RELAY accept 127.0.0.1
RELAY accept 192.168.1.0/24
RELAY accept .mydomain.com
RELAY Log_Reject ALL
# extra rules added to prevent open relay usage
RECIPIENT Log_Reject *@*@*
RECIPIENT Log_Reject *%*
RECIPIENT Log_Reject *!*
RECIPIENT Log_Reject *#*@*
Can anyone shed some light on why this is happening?
why also when i telnet to my scalix smtp port, do i NOT get a user unknown when i type in the following at the "rcpt to" reply?...
[root@mail ~]# telnet 192.168.1.254 25
Trying 192.168.1.254...
Connected to mail.mydomain.com (192.168.1.254).
Escape character is '^]'.
220 mail.mydomain.com ESMTP Scalix SMTP Relay 11.0.3.10719; Tue, 01 May 2007 01:34:21 +1000 (EST)
ehlo me
250-mail.mydomain.com Hello mail.mydomain.com [192.168.1.254], pleased to meet you
250-AUTH LOGIN GSSAPI DIGEST-MD5 CRAM-MD5 PLAIN
250-AUTH=LOGIN
250-DSN
250 8BITMIME
mail from: <les@mydomain.com>
250 john@mydomain.com... Sender ok
rcpt to: <nobody@mydomain.com>
250 Ok
quit
221 mail.mydomain.com closing connection
Connection closed by foreign host.
You have new mail in /var/spool/mail/root
[root@mail ~]#
TIA