On Wednesday 01 May 2002 09:13 pm, you wrote:
Scott A. Zanke wrote:
Hello, I am running RH 7.0 with 2.2.16-22 kernel and 8.11.6 sendmail on my server box. This box has all of the latest updated via up2date. I have noticed a slowdown in mail for the last couple of days and a friend said his mail to me bounced. Looking at /var/log/maillog I see mail to my zank zank com mail bouncing with realying denied messages.
Look carefully at the logs of the bounced messages and see which ruleset was causing the bounce. That'll help sort it out.
Also, be aware that some older 2.2 kernels had problems with the DNS cache filling up and not expiring. Restarting sendmail or rebooting will fix it. So will upgrading to a 2.4 kernel.
Yes, RH7.0 will run on a 2.4 kernel, but you'll have to update your modutils and initrd RPMs to ones from RH7.1 or later (at least ones compatible with 2.4 kernels).
Rick,
I got messages from you and karlp. I hope you got my response.
I'll have a closer look at the logs.
I am planning on migrating the server box to 7.2 and a 2.4 kernel. I just want to plan the migration process through as the server has been running fine until this sendmail snafu.
I have built custom kernels and upgraded kernels before. I just want to be careful not to break what's working :)
Here's a snipet of maillog slightly edited from 05/01/02 that hints at a DNS error.
Thanks, Scott
May 1 16:44:20 zank sendmail[8291]: g41KiKe08291: from=<zank zank com>, size=247, class=0, nrcpts=1, msgid=<200205012044 g41KiKe08291 zank>, proto=SMTP, daemon=MTA, relay=XXXX [XXX.XXX.XXX.XXX]
May 1 16:44:20 zank sendmail[8293]: g41KiKe08291: SYSERR(root): zank.com. config error: mail loops back to me (MX problem?)
May 1 16:44:20 zank sendmail[8294]: NOQUEUE: XXXX [XXX.XXX.XXX.XXX} did not issue MAIL/EXPN/VRFY/ETRN during connection to MTA
This will be seen if someone is probing your port 25 or if you're being checked by a load balancer such as an Alteon ACEDirector. It means someone connected to port 25, then disconnected. If you see a lot of these, you may wish to set up ipchains or iptables to log initial connection attempts to port 25. This way, you can see who's port scanning you (I doubt you're being load balanced).
May 1 16:44:20 zank sendmail[8293]: g41KiKe08291: to=<zank zank com>, delay=00:00:00, xdelay=00:00:00, mailer=esmtp, pri=30247, relay=zank.com. [65.188.247.117], dsn=5.3.5, stat=Local configuration error
May 1 16:44:20 zank sendmail[8293]: g41KiKe08291: g41KiKe08293: DSN: Local configuration error
May 1 16:44:20 zank sendmail[8293]: g41KiKe08293: to=<zank zank com>, delay=00:00:00, xdelay=00:00:00, mailer=esmtp, pri=60347, relay=zank.com., dsn=5.3.5, stat=Local configuration error
May 1 16:44:20 zank sendmail[8293]: g41KiKe08293: to=root, delay=00:00:00, xdelay=00:00:00, mailer=local, pri=60347, dsn=2.0.0, stat=Sent
May 1 16:44:20 zank sendmail[8293]: g41KiKe08293: g41KiKf08293: return to sender: Local configuration error
May 1 16:44:20 zank sendmail[8293]: g41KiKf08293: to=root, delay=00:00:00, xdelay=00:00:00, mailer=local, pri=30447, dsn=2.0.0, stat=Sent
If you've made no changes to the sendmail.cf file, then these all indicate DNS failures. ---------------------------------------------------------------------- - Rick Stevens, SSE, VitalStream, Inc. rstevens vitalstream com - - 949-743-2010 (Voice) http://www.vitalstream.com - - - - "Yeah, but you're taking the universe out of context." - ----------------------------------------------------------------------