[Eisfair] Probleme mit mehreren Smarthosts
Oliver Mack
omack at proaktive.info
So Jan 7 22:27:00 CET 2024
On 07.01.24 22:05, Oliver Mack wrote:
> On 07.01.24 20:10, Marcus Röckrath wrote:
>> Hallo Oliver,
>>
>> Marcus Röckrath wrote:
>>
>>> SMTP_SMARTHOST_ONE_FOR_ALL='no'
>>> SMTP_SMARTHOST_ROUTE_TYPE='addr'
>>
>> Das fehlt wohl noch, damit die internen Mailclients akzeptiert werden,
>> natürlich mit für deine Verhältnisse angepassten IPs:
>>
>> SMTP_RELAY_FROM_HOST_N='3'
>> SMTP_RELAY_FROM_HOST_1='127.0.0.1'
>> SMTP_RELAY_FROM_HOST_2='192.168.1.0/24'
>>
>
>
> ja ist die logische Konfiguration, so hatte ich mir das zuerst auch
> gedacht und meine internen Netze habe ich natürlich auch eingetragen, es
> geht aber nicht.
>
> ich ziehe die Konfig noch mal lesbarer, ich habe in der Console gerade
> auch gesehen, dass in der /etc/config.d/mail Datei noch Einträge sind
> die er mir in der "GUI" nicht anzeigt.
>
hier das Log von zwei e-Mails für die eigentlich Smarthost Domain2
benutzt werden sollte.
An gmail
2024-01-07 22:20:24 1rMaZD-0001tq-3D <= omack at domain2.com
H=mymail.homelab.intranet [172.22.22.5] P=esmtp S=1835
id=kcEE.jnrfgHOnTFKE32+N7rKpew.gMUXU69B2gE at mymail.homelab.intranet ▒
2024-01-07 22:20:24 1rMaZD-0001tq-3D H=gmail-smtp-in.l.google.com
[2a00:1450:400c:c0b::1b] Network is unreachable
▒
2024-01-07 22:20:24 1rMaZD-0001tq-3D [64.233.184.26] SSL verify error:
depth=2 error=unable to get local issuer certificate cert=/C=US/O=Google
Trust Services LLC/CN=GTS Root R1 ▒
2024-01-07 22:20:24 1rMaZD-0001tq-3D [64.233.184.26] SSL verify error:
depth=0 error=unable to get certificate CRL cert=/CN=mx.google.com
▒
2024-01-07 22:20:24 1rMaZD-0001tq-3D [64.233.184.26] SSL verify error:
depth=1 error=unable to get certificate CRL cert=/C=US/O=Google Trust
Services LLC/CN=GTS CA 1C3 ▒
2024-01-07 22:20:24 1rMaZD-0001tq-3D [64.233.184.26] SSL verify error:
depth=2 error=unable to get certificate CRL cert=/C=US/O=Google Trust
Services LLC/CN=GTS Root R1 ▒
2024-01-07 22:20:24 1rMaZD-0001tq-3D ** xyz at gmail.com R=dnslookup
T=remote_smtp H=gmail-smtp-in.l.google.com [64.233.184.26]
X=TLS1.3:TLS_AES_256_GCM_SHA384:256 CV=no DN="/CN=▒
2024-01-07 22:20:25 1rMaZE-0001tx-3A <= <> R=1rMaZD-0001tq-3D U=exim
P=local S=4368
▒
2024-01-07 22:20:25 1rMaZE-0001tx-3A error in smart_route router: no
host(s) specified for domain domain2.com
▒
2024-01-07 22:20:25 1rMaZE-0001tx-3A == omack at domain2.com R=smart_route
defer (-1): error in smart_route router: no host(s) specified for domain
proaktive.info ▒
2024-01-07 22:20:25 1rMaZD-0001tq-3D Completed
▒
2024-01-07 22:20:41 1rMaZV-0001u0-1d <= omack at domain2.com
H=mymail.homelab.intranet [172.22.22.5] P=esmtp S=1823
id=kcEE.P2kld8l0Su6sLZpP0Jb8Dw.gFrSXa9B2gE at mymail.homelab.intranet ▒
2024-01-07 22:20:41 1rMaZV-0001u0-1d [85.13.xxx.xxx] SSL verify error:
depth=0 error=unable to get certificate CRL cert=/CN=*.kasserver.com
▒
2024-01-07 22:20:41 1rMaZV-0001u0-1d [85.13.xxx.xxx] SSL verify error:
depth=1 error=unable to get certificate CRL cert=/C=GB/ST=Greater
Manchester/L=Salford/O=Sectigo Limited/CN=Secti▒
2024-01-07 22:20:42 1rMaZV-0001u0-1d => omack at extern.de R=dnslookup
T=remote_smtp H=xyz.kasserver.com [85.13.xxx.xxx]
X=TLS1.3:TLS_AES_256_GCM_SHA384:256 CV=no DN="/CN=*.kasserver▒
2024-01-07 22:20:42 1rMaZV-0001u0-1d Completed
Aktuelle Konfig
│ START_SMTP = yes
│ SMTP_QUALIFY_DOMAIN = dmz.intern
│ SMTP_HOSTNAME = mailhub.dmz.intern
│ SMTP_QUEUE_INTERVAL = 15
│ SMTP_QUEUE_OUTBOUND_MAIL = no
│ SMTP_QUEUE_ACCEPT_PER_CONNECTION = 10
│ SMTP_LISTEN_PORT =
│ SMTP_MAIL_TO_UNKNOWN_USERS = bounce
│ SMTP_ALLOW_EXIM_FILTERS = no
│ SMTP_CHECK_RECIPIENTS =
│ SMTP_CHECK_SPOOL_SPACE = 500
│ SMTP_CHECK_SPOOL_INODES =
│ SMTP_LIMIT =
│ SMTP_REMOVE_RECEIPT_REQUEST = no
│ SMTP_SERVER_TRANSPORT = default
│ SMTP_IDENT_CALLBACKS = yes
│ SMTP_SERVER_TLS_ADVERTISE_HOSTS =
│ SMTP_SERVER_TLS_VERIFY_HOSTS =
│ SMTP_SERVER_TLS_TRY_VERIFY_HOSTS =
│ SMTP_SERVER_SSMTP = no
│ SMTP_SERVER_SSMTP_LISTEN_PORT =
│ SMTP_RELAY_FROM_HOST_N = 5
│ SMTP_RELAY_FROM_HOST_1 = 127.0.0.1
│ SMTP_RELAY_FROM_HOST_2 = 172.21.21.0/24
│ SMTP_RELAY_FROM_HOST_3 = 172.22.22.0/24
│ SMTP_RELAY_FROM_HOST_4 = 172.23.23.0/24
│ SMTP_RELAY_FROM_HOST_5 = 172.24.24.0/24
│ SMTP_LOCAL_DOMAIN_N = 3
│ SMTP_LOCAL_DOMAIN_1 = @
│ SMTP_LOCAL_DOMAIN_2 = localhost
│ SMTP_LOCAL_DOMAIN_3 = dmz.intern
│ SMTP_RELAY_TO_DOMAIN_N = 3
│ SMTP_RELAY_TO_DOMAIN_1 = domain1.com
│ SMTP_RELAY_TO_DOMAIN_2 = domain2.com
│ SMTP_RELAY_TO_DOMAIN_3 = domain3.com
SMTP_SMARTHOST_ONE_FOR_ALL = no
│ SMTP_SMARTHOST_DOMAINS =
│ SMTP_SMARTHOST_ROUTE_TYPE = addr
│
│ SMTP_SMARTHOST_N = 3
│ SMTP_SMARTHOST_1_HOST = smtp.domain1.com
│ SMTP_SMARTHOST_1_AUTH_TYPE = login
│ SMTP_SMARTHOST_1_ADDR = info at domain1.com
│ SMTP_SMARTHOST_1_DOMAIN = domain1.com
│ SMTP_SMARTHOST_1_USER = wpxyz-user
│ SMTP_SMARTHOST_1_PASS = ************
│ SMTP_SMARTHOST_1_FORCE_AUTH = yes
│ SMTP_SMARTHOST_1_FORCE_TLS = yes
│ SMTP_SMARTHOST_1_FORCE_OCSP = no
│ SMTP_SMARTHOST_1_PORT =
│
│ SMTP_SMARTHOST_2_HOST = smtp.domain2.com
│ SMTP_SMARTHOST_2_AUTH_TYPE = login
│ SMTP_SMARTHOST_2_ADDR = omack at domain2
│ SMTP_SMARTHOST_2_DOMAIN = domain2.com
│ SMTP_SMARTHOST_2_USER = wpxyz-user
│ SMTP_SMARTHOST_2_PASS = ************
│ SMTP_SMARTHOST_2_FORCE_AUTH = yes
│ SMTP_SMARTHOST_2_FORCE_TLS = yes
│ SMTP_SMARTHOST_2_FORCE_OCSP = no
│ SMTP_SMARTHOST_2_PORT =
│ SMTP_SMARTHOST_2_HOST = smtp.domain3.com
│ SMTP_SMARTHOST_2_AUTH_TYPE = login
│ SMTP_SMARTHOST_2_ADDR = omack at domain3
│ SMTP_SMARTHOST_2_DOMAIN = domain3.com
│ SMTP_SMARTHOST_2_USER = wpxyz-user
│ SMTP_SMARTHOST_2_PASS = ************
│ SMTP_SMARTHOST_2_FORCE_AUTH = yes
│ SMTP_SMARTHOST_2_FORCE_TLS = yes
│ SMTP_SMARTHOST_2_FORCE_OCSP = no
│ SMTP_SMARTHOST_2_PORT =
Mehr Informationen über die Mailingliste Eisfair