NOQUEUE: reject: ... 451 4.3.5 Server configuration error

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
9 messages Options
Reply | Threaded
Open this post in threaded view
|

NOQUEUE: reject: ... 451 4.3.5 Server configuration error

lestraw
Hello Postfix Familty,

I have configured it according to the postfix manuals a Postfix SASL e-mail server with Dovecot. And I'm having the following error, when I'm going to send an email from a client

451 4.3.5 Server configuration error

Postfix version 2.6.6 + Dovecot Version 2.0.9


### ~> Postfix main.cf CENTOS6_X64
command_directory = /usr/sbin
daemon_directory = /usr/libexec/postfix

mydomain = domain.example
myorigin = $mydomain
unknown_local_recipient_reject_code = 550
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
home_mailbox = Maildir/
smtpd_banner = $mydomain
debug_peer_level = 2
debugger_command =
         PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
         xxgdb $daemon_directory/$process_name $process_id & sleep 5
sendmail_path = /usr/sbin/sendmail.postfix
newaliases_path = /usr/bin/newaliases.postfix
mailq_path = /usr/bin/mailq.postfix
setgid_group = postdrop
html_directory = no
manpage_directory = /usr/share/man
sample_directory = /usr/share/doc/postfix-2.3.3/samples
readme_directory = /usr/share/doc/postfix-2.3.3/README_FILES

#sasl autentication start
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth
smtpd_sasl_authenticated_header = yes
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
smtpd_sasl_tls_security_options = $smtpd_sasl_security_options
smtpd_sasl_local_domain = $myhostname
broken_sasl_auth_clients = yes
relay_domains = $mydestination, second.example, domain.example
smtpd_sender_login_maps = hash:/etc/postfix/controlled_envelope_senders
smtpd_recipient_restrictions = permit_mynetworks permit_sasl_authenticated permit_inet_interfaces check_relay_domains reject_sender_login_mismatch
#sasl autentication end

delay_warning_time = 2h
fast_flush_refresh_time = 15m
fast_flush_purge_time = 30m
smtpd_recipient_limit = 776
bounce_queue_lifetime = 30m
maximal_queue_lifetime = 2h
mailbox_size_limit = 0
message_size_limit = 0
smtp_connection_cache_on_demand = no
smtpd_peername_lookup = no
default_process_limit = 776
qmgr_message_active_limit = 40000
qmgr_message_recipient_limit = 40000
default_destination_concurrency_limit = 776
default_destination_recipient_limit = 776
smtp_mx_session_limit = 776
smtpd_client_connection_count_limit = 400
smtp_destination_concurrency_limit = 400
maximal_backoff_time = 1000s
minimal_backoff_time = 300s
virtual_alias_maps = hash:/etc/postfix/virtual
sender_bcc_maps = hash:/etc/postfix/bcc
mailbox_command = /usr/bin/procmail-wrapper -o -a $DOMAIN -d $LOGNAME
mydestination = /etc/postfix/mydestination
allow_percent_hack = no
recipient_bcc_maps = hash:/etc/postfix/recipient_bcc

# TLS parameters start
smtpd_tls_key_file = /home/maillion/ssl.key
smtpd_tls_CAfile = /home/maillion/ssl.ca
smtpd_tls_cert_file = /home/maillion/ssl.cert
smtp_use_tls = yes
smtpd_tls_security_level = may
# TLS parameters end

smtpd_client_restrictions = permit_mynetworks permit_inet_interfaces permit_tls_all_clientcerts reject_rbl_client reject_rbl_client reject_rbl_client reject_rbl_client reject_rbl_client reject_rbl_client reject_rbl_client psbl.surriel.com reject_rhsbl_client bl.spamcop.net combined.rbl.msrbl.net reject_rbl_client reject_rhsbl_client reject_rbl_client reject_rhsbl_client bl.spamcannibal.org
mynetworks = 127.0.0.0/8



There is any error?


Please help me!!
Reply | Threaded
Open this post in threaded view
|

Re: NOQUEUE: reject: ... 451 4.3.5 Server configuration error

Wietse Venema
lestraw:

> Hello Postfix Familty,
>
> I have configured it according to the postfix manuals a Postfix SASL e-mail
> server with Dovecot. And I'm having the following error, when I'm going to
> send an email from a client
>
> *451 4.3.5 Server configuration error *
>
> Postfix version 2.6.6 + Dovecot Version 2.0.9
>
>
> ### ~> Postfix main.cf CENTOS6_X64
> command_directory = /usr/sbin
> daemon_directory = /usr/libexec/postfix
>
> mydomain = domain.example
> myorigin = $mydomain
> unknown_local_recipient_reject_code = 550
> alias_maps = hash:/etc/aliases
> alias_database = hash:/etc/aliases
> home_mailbox = Maildir/
> smtpd_banner = $mydomain
> debug_peer_level = 2
> debugger_command =
> PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
> xxgdb $daemon_directory/$process_name $process_id & sleep 5
> sendmail_path = /usr/sbin/sendmail.postfix
> newaliases_path = /usr/bin/newaliases.postfix
> mailq_path = /usr/bin/mailq.postfix
> setgid_group = postdrop
> html_directory = no
> manpage_directory = /usr/share/man
> sample_directory = /usr/share/doc/postfix-2.3.3/samples
> readme_directory = /usr/share/doc/postfix-2.3.3/README_FILES
>
> #sasl autentication start
> smtpd_sasl_type = dovecot
> smtpd_sasl_path = private/auth
> smtpd_sasl_authenticated_header = yes
> smtpd_sasl_auth_enable = yes
> smtpd_sasl_security_options = noanonymous
> smtpd_sasl_tls_security_options = $smtpd_sasl_security_options
> smtpd_sasl_local_domain = $myhostname
> broken_sasl_auth_clients = yes
> relay_domains = $mydestination, second.example, domain.example
> smtpd_sender_login_maps = hash:/etc/postfix/controlled_envelope_senders
> smtpd_recipient_restrictions = permit_mynetworks permit_sasl_authenticated
> permit_inet_interfaces check_relay_domains reject_sender_login_mismatch
> #sasl autentication end
>
> delay_warning_time = 2h
> fast_flush_refresh_time = 15m
> fast_flush_purge_time = 30m
> smtpd_recipient_limit = 776
> bounce_queue_lifetime = 30m
> maximal_queue_lifetime = 2h
> mailbox_size_limit = 0
> message_size_limit = 0
> smtp_connection_cache_on_demand = no
> smtpd_peername_lookup = no
> default_process_limit = 776
> qmgr_message_active_limit = 40000
> qmgr_message_recipient_limit = 40000
> default_destination_concurrency_limit = 776
> default_destination_recipient_limit = 776
> smtp_mx_session_limit = 776
> smtpd_client_connection_count_limit = 400
> smtp_destination_concurrency_limit = 400
> maximal_backoff_time = 1000s
> minimal_backoff_time = 300s
> virtual_alias_maps = hash:/etc/postfix/virtual
> sender_bcc_maps = hash:/etc/postfix/bcc
> mailbox_command = /usr/bin/procmail-wrapper -o -a $DOMAIN -d $LOGNAME
> mydestination = /etc/postfix/mydestination
> allow_percent_hack = no
> recipient_bcc_maps = hash:/etc/postfix/recipient_bcc
>
> # TLS parameters start
> smtpd_tls_key_file = /home/maillion/ssl.key
> smtpd_tls_CAfile = /home/maillion/ssl.ca
> smtpd_tls_cert_file = /home/maillion/ssl.cert
> smtp_use_tls = yes
> smtpd_tls_security_level = may
> # TLS parameters end
>
> smtpd_client_restrictions = permit_mynetworks permit_inet_interfaces
> permit_tls_all_clientcerts reject_rbl_client reject_rbl_client
> reject_rbl_client reject_rbl_client reject_rbl_client reject_rbl_client
> reject_rbl_client psbl.surriel.com reject_rhsbl_client bl.spamcop.net
> combined.rbl.msrbl.net reject_rbl_client reject_rhsbl_client
> reject_rbl_client reject_rhsbl_client bl.spamcannibal.org
> mynetworks = 127.0.0.0/8
>
>
> *
> There is any error?*
>
> Please help me!!

TO REPORT A PROBLEM see http://www.postfix.org/DEBUG_README.html#mail

TO (UN)SUBSCRIBE see http://www.postfix.org/lists.html

Thank you for using Postfix.
Reply | Threaded
Open this post in threaded view
|

Re: NOQUEUE: reject: ... 451 4.3.5 Server configuration error

lestraw
Hi postfix familiy,

I'm using thunderbird as a email client, and when sending an email is giving me the following error on /var/log/maillog:

Mar 18 19:54:39 server postfix/smtpd[21712]: NOQUEUE: reject: RCPT from unknown[DDD.D.DDD.DDD]: 451 4.3.5 Server configuration error; from=<AAAAAA@AAAAAAAAA.com> to=<AAAAAAA@AAAAA.com> proto=ESMTP helo=<[DD.D.D.DD]>

Postconf - n shows the following:

alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
allow_percent_hack = no
bounce_queue_lifetime = 30m
broken_sasl_auth_clients = yes
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/libexec/postfix
debug_peer_level = 2
default_destination_concurrency_limit = 776
default_destination_recipient_limit = 776
default_process_limit = 776
delay_warning_time = 2h
fast_flush_purge_time = 30m
fast_flush_refresh_time = 15m
home_mailbox = Maildir/
html_directory = no
mailbox_command = /usr/bin/procmail-wrapper -o -a $DOMAIN -d $LOGNAME
mailbox_size_limit = 0
mailq_path = /usr/bin/mailq.postfix
manpage_directory = /usr/share/man
maximal_backoff_time = 1000s
maximal_queue_lifetime = 2h
message_size_limit = 0
minimal_backoff_time = 300s
mydestination = /etc/postfix/mydestination
mydomain = AAAAAAAA.AAA
mynetworks = 127.0.0.0/8
myorigin = $mydomain
newaliases_path = /usr/bin/newaliases.postfix
qmgr_message_active_limit = 40000
qmgr_message_recipient_limit = 40000
readme_directory = /usr/share/doc/postfix-2.3.3/README_FILES
recipient_bcc_maps = hash:/etc/postfix/recipient_bcc
relay_domains = $mydestination, bonofull.com, maillion.net, unityfull.com
sample_directory = /usr/share/doc/postfix-2.3.3/samples
sender_bcc_maps = hash:/etc/postfix/bcc
sendmail_path = /usr/sbin/sendmail.postfix
setgid_group = postdrop
smtp_connection_cache_on_demand = no
smtp_destination_concurrency_limit = 400
smtp_mx_session_limit = 776
smtp_use_tls = yes
smtpd_banner = $mydomain
smtpd_client_connection_count_limit = 400
smtpd_client_restrictions = permit_mynetworks permit_inet_interfaces permit_tls_all_clientcerts reject_rbl_client reject_rbl_client reject_rbl_client reject_rbl_client reject_rbl_client reject_rbl_client reject_rbl_client psbl.surriel.com reject_rhsbl_client bl.spamcop.net combined.rbl.msrbl.net reject_rbl_client reject_rhsbl_client reject_rbl_client reject_rhsbl_client bl.spamcannibal.org
smtpd_peername_lookup = no
smtpd_recipient_limit = 776
smtpd_recipient_restrictions = permit_mynetworks permit_sasl_authenticated permit_inet_interfaces check_relay_domains reject_sender_login_mismatch
smtpd_sasl_auth_enable = yes
smtpd_sasl_authenticated_header = yes
smtpd_sasl_exceptions_networks = !DDD.DD.DD.D, DDD.DDD.D.D/DD
smtpd_sasl_local_domain = $myhostname
smtpd_sasl_path = private/auth
smtpd_sasl_security_options = noanonymous
smtpd_sasl_tls_security_options = $smtpd_sasl_security_options
smtpd_sasl_type = dovecot
smtpd_sender_login_maps = hash:/etc/postfix/controlled_envelope_senders
smtpd_tls_CAfile = /home/maillion/ssl.ca
smtpd_tls_cert_file = /home/AAAAAAAA/ssl.cert
smtpd_tls_key_file = /home/AAAAAAAA/ssl.key
smtpd_tls_security_level = may
unknown_local_recipient_reject_code = 550
virtual_alias_maps = hash:/etc/postfix/virtual


What is wrong with this configuration?
Reply | Threaded
Open this post in threaded view
|

Re: NOQUEUE: reject: ... 451 4.3.5 Server configuration error

Wietse Venema
lestraw:
> Hi postfix familiy,
>
> I'm using thunderbird as a email client, and when sending an email is giving
> me the following error on /var/log/maillog:
>
> Mar 18 19:54:39 server postfix/smtpd[21712]: NOQUEUE: reject: RCPT from
> unknown[DDD.D.DDD.DDD]: 451 4.3.5 Server configuration error;
> from=<[hidden email]> to=<[hidden email]> proto=ESMTP
> helo=<[DD.D.D.DD]>

That text is sent to the remote client, and therefore it has no
configuration details.

Instead, Postfix logs internal details BEFORE replying to the client.

        Wietse
Reply | Threaded
Open this post in threaded view
|

Re: NOQUEUE: reject: ... 451 4.3.5 Server configuration error

lestraw
I put the result of postconf -n

I will put it back, I will also place the most detailed result of the postfix log


Postfix LOG:


Mar 18 21:03:27 server postfix/smtpd[28381]: warning: unknown[DD.D.D.DD]: SASL LOGIN authentication failed: AAAAAAA
Mar 18 21:03:27 server postfix/smtpd[26211]: warning: unknown smtpd restriction: "combined.rbl.msrbl.net"
Mar 18 21:03:27 server postfix/smtpd[26211]: NOQUEUE: reject: RCPT from unknown[DDD.D.DDD.DDD]: 451 4.3.5 Server configuration error; from=<AAAAAA@AAAAAAAAA.com> to=<AAAAAAA@AAAAA.com> proto=ESMTP helo=<[DD.D.D.DD]>
Mar 18 21:03:27 server postfix/smtpd[28381]: lost connection after AUTH from unknown[DD.D.D.DD]
Mar 18 21:03:27 server postfix/smtpd[28381]: disconnect from unknown[DD.D.D.DD]
Mar 18 21:03:28 server postfix/cleanup[30157]: C1077620DF6: message-id=<20170319010328.C1077620DF6@AAAAAAAAA.com>



Postconf - N:

alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
allow_percent_hack = no
bounce_queue_lifetime = 30m
broken_sasl_auth_clients = yes
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/libexec/postfix
debug_peer_level = 2
default_destination_concurrency_limit = 776
default_destination_recipient_limit = 776
default_process_limit = 776
delay_warning_time = 2h
fast_flush_purge_time = 30m
fast_flush_refresh_time = 15m
home_mailbox = Maildir/
html_directory = no
mailbox_command = /usr/bin/procmail-wrapper -o -a $DOMAIN -d $LOGNAME
mailbox_size_limit = 0
mailq_path = /usr/bin/mailq.postfix
manpage_directory = /usr/share/man
maximal_backoff_time = 1000s
maximal_queue_lifetime = 2h
message_size_limit = 0
minimal_backoff_time = 300s
mydestination = /etc/postfix/mydestination
mydomain = AAAAAAAA.AAA
mynetworks = 127.0.0.0/8
myorigin = $mydomain
newaliases_path = /usr/bin/newaliases.postfix
qmgr_message_active_limit = 40000
qmgr_message_recipient_limit = 40000
readme_directory = /usr/share/doc/postfix-2.3.3/README_FILES
recipient_bcc_maps = hash:/etc/postfix/recipient_bcc
relay_domains = $mydestination, bonofull.com, maillion.net, unityfull.com
sample_directory = /usr/share/doc/postfix-2.3.3/samples
sender_bcc_maps = hash:/etc/postfix/bcc
sendmail_path = /usr/sbin/sendmail.postfix
setgid_group = postdrop
smtp_connection_cache_on_demand = no
smtp_destination_concurrency_limit = 400
smtp_mx_session_limit = 776
smtp_use_tls = yes
smtpd_banner = $mydomain
smtpd_client_connection_count_limit = 400
smtpd_client_restrictions = permit_mynetworks permit_inet_interfaces permit_tls_all_clientcerts reject_rbl_client reject_rbl_client reject_rbl_client reject_rbl_client reject_rbl_client reject_rbl_client reject_rbl_client psbl.surriel.com reject_rhsbl_client bl.spamcop.net combined.rbl.msrbl.net reject_rbl_client reject_rhsbl_client reject_rbl_client reject_rhsbl_client bl.spamcannibal.org
smtpd_peername_lookup = no
smtpd_recipient_limit = 776
smtpd_recipient_restrictions = permit_mynetworks permit_sasl_authenticated permit_inet_interfaces check_relay_domains reject_sender_login_mismatch
smtpd_sasl_auth_enable = yes
smtpd_sasl_authenticated_header = yes
smtpd_sasl_exceptions_networks = !DDD.DD.DD.D, DDD.DDD.D.D/DD
smtpd_sasl_local_domain = $myhostname
smtpd_sasl_path = private/auth
smtpd_sasl_security_options = noanonymous
smtpd_sasl_tls_security_options = $smtpd_sasl_security_options
smtpd_sasl_type = dovecot
smtpd_sender_login_maps = hash:/etc/postfix/controlled_envelope_senders
smtpd_tls_CAfile = /home/maillion/ssl.ca
smtpd_tls_cert_file = /home/AAAAAAAA/ssl.cert
smtpd_tls_key_file = /home/AAAAAAAA/ssl.key
smtpd_tls_security_level = may
unknown_local_recipient_reject_code = 550
virtual_alias_maps = hash:/etc/postfix/virtual


Please, help me
Reply | Threaded
Open this post in threaded view
|

Re: NOQUEUE: reject: ... 451 4.3.5 Server configuration error

lestraw
Problem solved


It turns out that in smtpd_client_restrictions =

I was missing the permit_sasl_authenticated sentence


Thanks for everything
Reply | Threaded
Open this post in threaded view
|

Re: NOQUEUE: reject: ... 451 4.3.5 Server configuration error

Wietse Venema
In reply to this post by lestraw
lestraw:
> Mar 18 21:03:27 server postfix/smtpd[26211]: warning: unknown smtpd
> restriction: "combined.rbl.msrbl.net"

You forgot to have 'reject_rbl_client' before 'combined.rbl.msrbl.net'

> smtpd_client_restrictions = permit_mynetworks permit_inet_interfaces
> permit_tls_all_clientcerts reject_rbl_client reject_rbl_client
> reject_rbl_client reject_rbl_client reject_rbl_client reject_rbl_client
> reject_rbl_client psbl.surriel.com reject_rhsbl_client bl.spamcop.net
> combined.rbl.msrbl.net reject_rbl_client reject_rhsbl_client ...

There are some other typos as well - multiple reject_rbl_client.

        Wietse
Reply | Threaded
Open this post in threaded view
|

Re: NOQUEUE: reject: ... 451 4.3.5 Server configuration error

Viktor Dukhovni

> On Mar 19, 2017, at 11:19 AM, Wietse Venema <[hidden email]> wrote:
>
> There are some other typos as well - multiple reject_rbl_client.

And bare RBL domain names with no reject_rbl_client or similar.

--
        Viktor.

Reply | Threaded
Open this post in threaded view
|

Re: NOQUEUE: reject: ... 451 4.3.5 Server configuration error

lestraw
Certainly, I have already corrected them

Thanks for all Postfix Family

2017-03-19 11:26 GMT-04:00 Viktor Dukhovni <[hidden email]>:

> On Mar 19, 2017, at 11:19 AM, Wietse Venema <[hidden email]> wrote:
>
> There are some other typos as well - multiple reject_rbl_client.

And bare RBL domain names with no reject_rbl_client or similar.

--
        Viktor.




--
Lester Montilla
CEO
Oficina. 809-957-5764
Móvil . 829-766-3570
E-mail :[hidden email]
Skype: lestraw
Whatsaap: 829-766-3570



Pagad a todos lo que debáis: al que impuesto, impuesto; al que tributo, tributo; al que temor, temor; al que honor, honor.

Romanos 13:17