Page 1 of 1
Mails weiterleiten
Posted: Fri 14. Oct 2022, 11:40
by maximid
Ich bin sicher, dass die Ursache des Problems bei KeyHelp liegt
Ja
Server-Betriebssystem + Version
Debian 11.5 (64-bit)
Eingesetzte Server-Virtualisierung-Technologie
KVM
KeyHelp-Version + Build-Nummer
22.2 (Build 2838)
Problembeschreibung / Fehlermeldungen
Mails an ein Postfach werden, egal ob nur Weiterleitungskonto oder Postfach mit Weiterleitung nicht weitergeleitet.
Re: Mails weiterleiten
Posted: Fri 14. Oct 2022, 11:42
by MLan
maximid wrote: ↑Fri 14. Oct 2022, 11:40
Ich bin sicher, dass die Ursache des Problems bei KeyHelp liegt
Ja
Server-Betriebssystem + Version
Debian 11.5 (64-bit)
Eingesetzte Server-Virtualisierung-Technologie
KVM
KeyHelp-Version + Build-Nummer
22.2 (Build 2838)
Problembeschreibung / Fehlermeldungen
Mails an ein Postfach werden, egal ob nur Weiterleitungskonto oder Postfach mit Weiterleitung nicht weitergeleitet.
Deine logfiles sind wo zu finden ?
Re: Mails weiterleiten
Posted: Fri 14. Oct 2022, 12:58
by maximid
Sorry, hätte ich noch dazu schreiben sollen. Mit welchen Logfiles kann man denn hier was anfangen?
Re: Mails weiterleiten
Posted: Fri 14. Oct 2022, 13:03
by Jolinar
maximid wrote: ↑Fri 14. Oct 2022, 12:58
Mit welchen Logfiles kann man denn hier was anfangen?
Fragst du das jetzt ernsthaft...?
Da dein Problem mit Mails zu tun hat, sollte man sinnvollerweise mal ins Log vom Mailserver schauen...
Re: Mails weiterleiten
Posted: Fri 14. Oct 2022, 13:16
by maximid
Jolinar wrote: ↑Fri 14. Oct 2022, 13:03
maximid wrote: ↑Fri 14. Oct 2022, 12:58
Mit welchen Logfiles kann man denn hier was anfangen?
Fragst du das jetzt ernsthaft...?
Da dein Problem mit Mails zu tun hat, sollte man sinnvollerweise mal ins Log vom Mailserver schauen...
Eher wie ich diese denn abfrage. Per Keyhelp oder direkt per Terminal?
Re: Mails weiterleiten
Posted: Fri 14. Oct 2022, 13:19
by @ITS
Shell z.B. mit tail, less oder cat
/var/log/mail.log
per Interface leider (noch) nicht - zumindest nicht entdeckt bisher.
Re: Mails weiterleiten
Posted: Fri 14. Oct 2022, 13:53
by maximid
@ITS wrote: ↑Fri 14. Oct 2022, 13:19
Shell z.B. mit tail, less oder cat
/var/log/mail.log
per Interface leider (noch) nicht - zumindest nicht entdeckt bisher.
Danke
Hier der Log nach dem senden einer Mail
Code: Select all
Oct 14 13:46:11 vweb01 postfix/qmgr[644034]: D64886033A: from=<>, size=9240, nrcpt=1 (queue active)
Oct 14 13:46:12 vweb01 postfix/smtp[650412]: D64886033A: to=<www-data@post.milesmoredeu.eu>, relay=none, delay=172475, delays=172475/0.01/0.82/0, dsn=4.4.3, status=deferred (Host or domain name not found. Name service error for name=post.milesmoredeu.eu type=MX: Host not found, try again)
Oct 14 13:46:15 vweb01 postfix/smtpd[650414]: connect from mail-fr2deu01on2087.outbound.protection.outlook.com[40.107.135.87]
Oct 14 13:46:15 vweb01 postfix/smtpd[650414]: TLS SNI vweb01.whatsbeef.de from mail-fr2deu01on2087.outbound.protection.outlook.com[40.107.135.87] not matched, using default chain
Oct 14 13:46:15 vweb01 policyd-spf[650417]: prepend Received-SPF: Pass (mailfrom) identity=mailfrom; client-ip=40.107.135.87; helo=deu01-fr2-obe.outbound.protection.outlook.com; envelope-from=peter.glück@whatsbeef.de; receiver=<UNKNOWN>
Oct 14 13:46:15 vweb01 postfix/smtpd[650414]: D3D645FDC0: client=mail-fr2deu01on2087.outbound.protection.outlook.com[40.107.135.87]
Oct 14 13:46:15 vweb01 postfix/cleanup[650418]: D3D645FDC0: message-id=<BE1P281MB16175523431F0937ACB28F1497249@BE1P281MB1617.DEUP281.PROD.OUTLOOK.COM>
Oct 14 13:46:17 vweb01 opendkim[472]: D3D645FDC0: failed to parse authentication-results: header field
Oct 14 13:46:17 vweb01 opendkim[472]: D3D645FDC0: s=selector1 d=whatsbeef.de a=rsa-sha256 SSL
Oct 14 13:46:17 vweb01 postfix/qmgr[644034]: D3D645FDC0: from=<peter.glück@whatsbeef.de>, size=238622, nrcpt=2 (queue active)
Oct 14 13:46:17 vweb01 amavis[627329]: (627329-04) (!)connect to /var/run/clamav/clamd.ctl failed, attempt #1: Can't connect to a UNIX socket /var/run/clamav/clamd.ctl: Connection refused
Oct 14 13:46:18 vweb01 amavis[627329]: (627329-04) (!)connect to /var/run/clamav/clamd.ctl failed, attempt #1: Can't connect to a UNIX socket /var/run/clamav/clamd.ctl: Connection refused
Oct 14 13:46:18 vweb01 amavis[627329]: (627329-04) (!)ClamAV-clamd: All attempts (1) failed connecting to /var/run/clamav/clamd.ctl, retrying (2)
Oct 14 13:46:18 vweb01 postfix/smtpd[650414]: disconnect from mail-fr2deu01on2087.outbound.protection.outlook.com[40.107.135.87] ehlo=2 starttls=1 mail=1 rcpt=1 bdat=1 quit=1 commands=7
Oct 14 13:46:24 vweb01 amavis[627329]: (627329-04) (!)connect to /var/run/clamav/clamd.ctl failed, attempt #1: Can't connect to a UNIX socket /var/run/clamav/clamd.ctl: Connection refused
Oct 14 13:46:24 vweb01 amavis[627329]: (627329-04) (!)ClamAV-clamd av-scanner FAILED: run_av error: Too many retries to talk to /var/run/clamav/clamd.ctl (All attempts (1) failed connecting to /var/run/clamav/clamd.ctl) at (eval 99) line 659.\n
Oct 14 13:46:24 vweb01 amavis[627329]: (627329-04) (!)WARN: all primary virus scanners failed, considering backups
Oct 14 13:46:24 vweb01 postfix/smtps/smtpd[650016]: connect from unknown[5.34.207.157]
Oct 14 13:46:38 vweb01 postfix/smtpd[650427]: connect from localhost[127.0.0.1]
Oct 14 13:46:38 vweb01 postfix/smtpd[650427]: 7A85E65943: client=localhost[127.0.0.1]
Oct 14 13:46:38 vweb01 postfix/cleanup[650418]: 7A85E65943: message-id=<BE1P281MB16175523431F0937ACB28F1497249@BE1P281MB1617.DEUP281.PROD.OUTLOOK.COM>
Oct 14 13:46:38 vweb01 postfix/smtpd[650427]: disconnect from localhost[127.0.0.1] ehlo=1 mail=1 rcpt=2 data=1 quit=1 commands=6
Oct 14 13:46:38 vweb01 postfix/qmgr[644034]: 7A85E65943: from=<peter.glück@whatsbeef.de>, size=239210, nrcpt=2 (queue active)
Oct 14 13:46:38 vweb01 amavis[627329]: (627329-04) Passed CLEAN {RelayedInbound,RelayedOpenRelay}, [40.107.135.87]:42176 [40.107.135.87] <peter.glück@whatsbeef.de> -> <iamsnasty@gmail.com>,<test@connbyte.de>, Queue-ID: D3D645FDC0, Message-ID: <BE1P281MB16175523431F0937ACB28F1497249@be1p281mb1617.deup281.prod.outlook.com>, mail_id: 5igvAUm_GKYO, Hits: -0.799, size: 238772, queued_as: 7A85E65943, 21227 ms
Oct 14 13:46:38 vweb01 postfix/smtp[650419]: D3D645FDC0: to=<iamsnasty@gmail.com>, orig_to=<test@connbyte.de>, relay=127.0.0.1[127.0.0.1]:10024, delay=23, delays=1.7/0/0/21, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 7A85E65943)
Oct 14 13:46:38 vweb01 postfix/smtp[650419]: D3D645FDC0: to=<test@connbyte.de>, relay=127.0.0.1[127.0.0.1]:10024, delay=23, delays=1.7/0/0/21, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 7A85E65943)
Oct 14 13:46:38 vweb01 postfix/qmgr[644034]: D3D645FDC0: removed
Oct 14 13:46:38 vweb01 dovecot: lmtp(650429): Connect from local
Oct 14 13:46:38 vweb01 dovecot: lmtp(test@connbyte.de)<650429><mY/xHh5MSWO97AkAdT+yVg>: msgid=<BE1P281MB16175523431F0937ACB28F1497249@BE1P281MB1617.DEUP281.PROD.OUTLOOK.COM>: saved mail to
INBOX
Oct 14 13:46:38 vweb01 dovecot: lmtp(650429): Disconnect from local: Client has quit the connection (state=READY)
Oct 14 13:46:38 vweb01 postfix/lmtp[650428]: 7A85E65943: to=<test@connbyte.de>, relay=vweb01.whatsbeef.de[private/dovecot-lmtp], delay=0.02, delays=0.01/0/0.01/0.01, dsn=2.0.0, status=sent (250 2.0.0 <test@connbyte.de> mY/xHh5MSWO97AkAdT+yVg Saved)
Oct 14 13:46:40 vweb01 postfix/smtp[650412]: 7A85E65943: to=<iamsnasty@gmail.com>, relay=gmail-smtp-in.l.google.com[74.125.196.27]:25, delay=2.2, delays=0.01/0/0.9/1.3, dsn=2.0.0, status=sent (250 2.0.0 OK 1665748000 d19-20020a67e113000000b003a8b34546fasi26107vsl.103 - gsmtp)
Oct 14 13:46:40 vweb01 postfix/qmgr[644034]: 7A85E65943: removed
Oct 14 13:46:51 vweb01 postfix/smtps/smtpd[650016]: lost connection after CONNECT from unknown[5.34.207.157]
Oct 14 13:46:51 vweb01 postfix/smtps/smtpd[650016]: disconnect from unknown[5.34.207.157] commands=0/0
Oct 14 13:47:15 vweb01 postfix/smtps/smtpd[650016]: connect from unknown[5.34.207.194]
Oct 14 13:47:22 vweb01 postfix/smtps/smtpd[650485]: connect from unknown[5.34.207.157]
Oct 14 13:47:26 vweb01 postfix/smtps/smtpd[650016]: warning: unknown[5.34.207.194]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct 14 13:47:26 vweb01 postfix/smtps/smtpd[650016]: lost connection after AUTH from unknown[5.34.207.194]
Oct 14 13:47:26 vweb01 postfix/smtps/smtpd[650016]: disconnect from unknown[5.34.207.194] ehlo=1 auth=0/1 rset=1 commands=2/3
Oct 14 13:47:29 vweb01 postfix/submission/smtpd[650086]: connect from unknown[141.98.10.82]
Oct 14 13:47:34 vweb01 postfix/submission/smtpd[650086]: warning: unknown[141.98.10.82]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct 14 13:47:34 vweb01 postfix/submission/smtpd[650086]: disconnect from unknown[141.98.10.82] ehlo=2 starttls=1 auth=0/1 quit=1 commands=4/5
Oct 14 13:47:51 vweb01 postfix/smtps/smtpd[650485]: lost connection after CONNECT from unknown[5.34.207.157]
Oct 14 13:47:51 vweb01 postfix/smtps/smtpd[650485]: disconnect from unknown[5.34.207.157] commands=0/0
Oct 14 13:48:05 vweb01 postfix/submission/smtpd[650086]: connect from unknown[45.125.66.24]
Oct 14 13:48:09 vweb01 postfix/submission/smtpd[650086]: warning: unknown[45.125.66.24]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct 14 13:48:09 vweb01 postfix/submission/smtpd[650086]: disconnect from unknown[45.125.66.24] ehlo=2 starttls=1 auth=0/1 quit=1 commands=4/5
Oct 14 13:48:17 vweb01 postfix/submission/smtpd[650086]: warning: hostname swear.medyamol.com does not resolve to address 141.98.11.112
Oct 14 13:48:17 vweb01 postfix/submission/smtpd[650086]: connect from unknown[141.98.11.112]
Oct 14 13:48:23 vweb01 postfix/submission/smtpd[650086]: warning: unknown[141.98.11.112]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct 14 13:48:23 vweb01 postfix/submission/smtpd[650086]: disconnect from unknown[141.98.11.112] ehlo=2 starttls=1 auth=0/1 quit=1 commands=4/5
Oct 14 13:48:38 vweb01 postfix/smtps/smtpd[650016]: connect from unknown[5.34.207.157]
Oct 14 13:49:12 vweb01 postfix/smtps/smtpd[650016]: warning: unknown[5.34.207.157]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct 14 13:49:14 vweb01 postfix/smtps/smtpd[650016]: lost connection after AUTH from unknown[5.34.207.157]
Oct 14 13:49:14 vweb01 postfix/smtps/smtpd[650016]: disconnect from unknown[5.34.207.157] ehlo=1 auth=0/1 rset=1 commands=2/3
Re: Mails weiterleiten
Posted: Fri 14. Oct 2022, 14:01
by Ralph
Code: Select all
Oct 14 13:46:17 vweb01 amavis[627329]: (627329-04) (!)connect to /var/run/clamav/clamd.ctl failed, attempt #1: Can't connect to a UNIX socket /var/run/clamav/clamd.ctl: Connection refused
Oct 14 13:46:18 vweb01 amavis[627329]: (627329-04) (!)connect to /var/run/clamav/clamd.ctl failed, attempt #1: Can't connect to a UNIX socket /var/run/clamav/clamd.ctl: Connection refused
Dein clamav service läuft nicht ...
Re: Mails weiterleiten
Posted: Fri 14. Oct 2022, 15:03
by Florian
Hallo,
ist das Ziel der Weiterleitung die Google Adresse? Falls ja dann ging das problemlos:
Code: Select all
to=<iamsnasty@gmail.com>, relay=gmail-smtp-in.l.google.com[74.125.196.27]:25, delay=2.2, delays=0.01/0/0.9/1.3, dsn=2.0.0, status=sent (250 2.0.0 OK 1665748000 d19-20020a67e113000000b003a8b34546fasi26107vsl.103 - gsmtp)
Re: Mails weiterleiten
Posted: Fri 14. Oct 2022, 15:59
by maximid
ElonMusk wrote: ↑Fri 14. Oct 2022, 14:01
Code: Select all
Oct 14 13:46:17 vweb01 amavis[627329]: (627329-04) (!)connect to /var/run/clamav/clamd.ctl failed, attempt #1: Can't connect to a UNIX socket /var/run/clamav/clamd.ctl: Connection refused
Oct 14 13:46:18 vweb01 amavis[627329]: (627329-04) (!)connect to /var/run/clamav/clamd.ctl failed, attempt #1: Can't connect to a UNIX socket /var/run/clamav/clamd.ctl: Connection refused
Dein clamav service läuft nicht ...
Dieser sollte eig schon laufen. Auch nach einem Neustart steht dieser wieder auf active.
Code: Select all
root@vweb01:~# systemctl status clamav-daemon
● clamav-daemon.service - Clam AntiVirus userspace daemon
Loaded: loaded (/lib/systemd/system/clamav-daemon.service; enabled; vendor preset: enabled)
Drop-In: /etc/systemd/system/clamav-daemon.service.d
└─extend.conf
Active: active (running) since Fri 2022-10-14 14:42:32 CEST; 39min ago
Docs: man:clamd(8)
man:clamd.conf(5)
https://docs.clamav.net/
Main PID: 490 (clamd)
Tasks: 2 (limit: 4677)
Memory: 1.7G
CPU: 24.266s
CGroup: /system.slice/clamav-daemon.service
└─490 /usr/sbin/clamd --foreground=true
Florian wrote: ↑Fri 14. Oct 2022, 15:03
Hallo,
ist das Ziel der Weiterleitung die Google Adresse? Falls ja dann ging das problemlos:
Code: Select all
to=<iamsnasty@gmail.com>, relay=gmail-smtp-in.l.google.com[74.125.196.27]:25, delay=2.2, delays=0.01/0/0.9/1.3, dsn=2.0.0, status=sent (250 2.0.0 OK<tcxspan tcxhref="1665748000" title="Call 1665748000 via 3CX"> 1665748000 </tcxspan>d19-20020a67e113000000b003a8b34546fasi26107vsl.103 - gsmtp)
Lag wohl im Spam... hatte mal per Anydesk in der Mail nachgeschaut. Weiß jemadn wie man sich bei Google whitelisten lässt? Bei DTAG etc. war das einfach.