The problem found on maillog,please help.
Can someone help me read and explains the maillog below, It appears that the relay server pwn00110.hotpot.com is not accepting the mail relay from our MTA. Is it correct? then how to reslove?
Aug 12 14:05:25 hotman01 sendmail[5887]: p7C65OkJ005887: to=13245@hotpot.com, ctladdr=MonAgt (14442/14442), delay=00:00:01, xdelay=00:00:01, mailer=relay, pri=33499, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (p7C65OcT005888 Message accepted for delivery) Aug 12 14:05:27 hotman01 sendmail[5890]: STARTTLS=client, relay=pwn00110.hotpot.com., version=TLSv1/SSLv3, verify=FAIL, cipher=AES128-SHA, bits=128/128 Aug 12 14:05:33 hotman01 sendmail[5890]: p7C65OcT005888: to=<13245@hotpot.com>, delay=00:00:09, xdelay=00:00:08, mailer=esmtp, pri=123824, relay=pwn00110.hotpot.com. [163.11.28.96], dsn=5.0.0, stat=Service unavailable Aug 12 14:05:33 hotman01 sendmail[5890]: p7C65OcT005888: to=<MonAgt@hotpot.com>, delay=00:00:09, mailer=local, pri=123824, dsn=5.1.1, stat=User unknown Aug 12 14:05:33 hotman01 sendmail[5890]: p7C65OcT005888: p7C65XcT005890: postmaster notify: User unknown Aug 12 14:05:33 hotman01 sendmail[5890]: p7C65XcT005890: to=root, delay=00:00:00, xdelay=00:00:00, mailer=local, pri=35083, dsn=2.0.0, stat=Sent |
it seems that it doesn't find the user or something like that. But why do you still use sendmail ? why don't you use postfix ?
spring logout |
Actually its saying the mail service isn't available at the server:
Quote:
dig pwn00110.hotspot.com ; <<>> DiG 9.7.0-P2-RedHat-9.7.0-5.P2.el6_0.1 <<>> pwn00110.hotspot.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36640 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;pwn00110.hotspot.com. IN A ;; AUTHORITY SECTION: hotspot.com. 10756 IN SOA ns1.dreamhost.com. hostmaster.dreamhost.com. 2009111100 15293 1800 1814400 857 ;; Query time: 0 msec ;; SERVER: 10.0.4.51#53(10.0.4.51) ;; WHEN: Thu Aug 18 14:53:18 2011 ;; MSG SIZE rcvd: 99 [root@atlbks01 ~]# dig -t mx hotspot.com ; <<>> DiG 9.7.0-P2-RedHat-9.7.0-5.P2.el6_0.1 <<>> -t mx hotspot.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 13231 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 2 ;; QUESTION SECTION: ;hotspot.com. IN MX ;; ANSWER SECTION: hotspot.com. 14372 IN MX 0 mx1.sub4.homie.mail.dreamhost.com. hotspot.com. 14372 IN MX 0 mx2.sub4.homie.mail.dreamhost.com. ;; ADDITIONAL SECTION: mx1.sub4.homie.mail.dreamhost.com. 14399 IN A 208.97.132.226 mx2.sub4.homie.mail.dreamhost.com. 14399 IN A 208.97.132.227 ;; Query time: 108 msec ;; SERVER: 10.0.4.51#53(10.0.4.51) ;; WHEN: Thu Aug 18 14:53:22 2011 ;; MSG SIZE rcvd: 127 P.S. Ignore the comment about using Postfix over Sendmail - that is not your issue but rather someone's personal preference. |
Quote:
|
Oops - In my prior post I did a dig -t mx for "hotSpot.com" but on reread realize it should be "hotpot.com" without the S.
Quote:
If you own hotpot.com then yes you need to create an MX record for it. However, MTAs like Sendmail (and Postfix) do lookups for MX records so I'm wondering how your sendmail found the name it did. Did you recently make changes to your DNS for this? What's in the /etc/resolv.conf on your sendmail server? If you do a dig @<server> -t mx hotpot.com from the server(s) specified in resolv.conf do you get an answer? This may be something you can only reach on internal DNS. |
Quote:
Aug 12 14:05:25 hotman01 sendmail[5887]: p7C65OkJ005887: to=13245@corp.ds.hotpot.com, ctladdr=MonAgt (14442/14442), delay=00:00:01, xdelay=00:00:01, mailer=relay, pri=33499, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (p7C65OcT005888 Message accepted for delivery) Aug 12 14:05:27 hotman01 sendmail[5890]: STARTTLS=client, relay=pwn00110.hotpot.com., version=TLSv1/SSLv3, verify=FAIL, cipher=AES128-SHA, bits=128/128 Aug 12 14:05:33 hotman01 sendmail[5890]: p7C65OcT005888: to=<13245@corp.ds.hotpot.com>, delay=00:00:09, xdelay=00:00:08, mailer=esmtp, pri=123824, relay=pwn00110.corp.ds.hotpot.com. [163.11.28.96], dsn=5.0.0, stat=Service unavailable Aug 12 14:05:33 hotman01 sendmail[5890]: p7C65OcT005888: to=<MonAgt@hotman01.apac.hotpot.com>, delay=00:00:09, mailer=local, pri=123824, dsn=5.1.1, stat=User unknown Aug 12 14:05:33 hotman01 sendmail[5890]: p7C65OcT005888: p7C65XcT005890: postmaster notify: User unknown Aug 12 14:05:33 hotman01 sendmail[5890]: p7C65XcT005890: to=root, delay=00:00:00, xdelay=00:00:00, mailer=local, pri=35083, dsn=2.0.0, stat=Sent |
Quote:
[root@hotman01 ~]# dig pwn00110.corp.ds.hotpot.com ; <<>> DiG 9.2.4 <<>> pwn00110.corp.ds.hotpot.com ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 32466 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 4 ;; QUESTION SECTION: ;pwn00110.corp.ds.hotpot.com. IN A ;; ANSWER SECTION: pwn00110.corp.ds.hotpot.com. 444 IN A 163.11.28.96 ;; AUTHORITY SECTION: ds.hotpot.com. 7660 IN NS land.hotpot.com. ds.hotpot.com. 7660 IN NS mempdsd01.ds.hotpot.com. ds.hotpot.com. 7660 IN NS mempdsd02.ds.hotpot.com. ds.hotpot.com. 7660 IN NS kate.hotpot.com. ;; ADDITIONAL SECTION: kate.hotpot.com. 6353 IN A 199.21.122.13 land.hotpot.com. 6353 IN A 199.21.135.8 mempdsd01.ds.hotpot.com. 1378 IN A 199.22.52.4 mempdsd02.ds.hotpot.com. 460 IN A 199.22.52.5 ;; Query time: 287 msec ;; SERVER: 155.161.222.18#53(155.161.222.18) ;; WHEN: Fri Aug 19 05:21:41 2011 ;; MSG SIZE rcvd: 210 [root@hotman01 ~]# dig -t mx corp.ds.hotpot.com ; <<>> DiG 9.2.4 <<>> -t mx corp.ds.hotpot.com ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 46904 ;; flags: qr rd ra; QUERY: 1, ANSWER: 10, AUTHORITY: 4, ADDITIONAL: 6 ;; QUESTION SECTION: ;corp.ds.hotpot.com. IN MX ;; ANSWER SECTION: corp.ds.hotpot.com. 1800 IN MX 100 pwn00110.corp.ds.hotpot.com. corp.ds.hotpot.com. 1800 IN MX 100 pwn00111.corp.ds.hotpot.com. corp.ds.hotpot.com. 1800 IN MX 100 pwn00112.corp.ds.hotpot.com. corp.ds.hotpot.com. 1800 IN MX 100 pwn00113.corp.ds.hotpot.com. corp.ds.hotpot.com. 1800 IN MX 200 cosexec01v.corp.ds.hotpot.com. corp.ds.hotpot.com. 1800 IN MX 250 smtp.zmd.hotpot.com. corp.ds.hotpot.com. 1800 IN MX 300 smtp.dmz.hotpot.com. ;; AUTHORITY SECTION: ds.hotpot.com. 8699 IN NS mempdsd01.ds.hotpot.com. ds.hotpot.com. 8699 IN NS mempdsd02.ds.hotpot.com. ds.hotpot.com. 8699 IN NS kate.hotpot.com. ds.hotpot.com. 8699 IN NS land.hotpot.com. ;; ADDITIONAL SECTION: kate.hotpot.com. 7392 IN A 199.21.122.13 land.hotpot.com. 7392 IN A 199.21.135.8 mempdsd01.ds.hotpot.com. 2417 IN A 199.22.52.4 mempdsd02.ds.hotpot.com. 1499 IN A 199.22.52.5 ;; Query time: 528 msec ;; SERVER: 155.161.222.18#53(155.161.222.18) ;; WHEN: Fri Aug 19 05:04:22 2011 ;; MSG SIZE rcvd: 478 And the contents in /etc/resolv.conf is below: nameserver 155.161.222.18 domain apac.hotpot.com search apac.hotpot.com network.hotpot.com corp.hotpot.com Actually the problem is our mail group(team@corp.ds.hotpot.com) is unable to receive the emails from MonAgt@hotman01.apac.hotpot.com. So in view of above, what do you think the root cause is? Hope get your helps... |
It appears your lookup is working to find the MX record so its not a DNS issue.
What happens if you try "ping pwn00110.corp.ds.hotpot.com"? What happens if you try "telnet pwn00110.corp.ds.hotpot.com 25" to access the mail port? See link for how to do testing this way: http://www.elandsys.com/resources/sendmail/ |
Quote:
[root@hotman01 ~]# ping pwn00110.corp.ds.hotpot.com PING pwn00110.corp.ds.hotpot.com (163.11.28.96) 56(84) bytes of data. 64 bytes from 163.11.28.96: icmp_seq=0 ttl=117 time=286 ms 64 bytes from 163.11.28.96: icmp_seq=1 ttl=117 time=285 ms 64 bytes from 163.11.28.96: icmp_seq=2 ttl=117 time=285 ms 64 bytes from 163.11.28.96: icmp_seq=3 ttl=117 time=285 ms 64 bytes from 163.11.28.96: icmp_seq=4 ttl=117 time=287 ms 64 bytes from 163.11.28.96: icmp_seq=5 ttl=117 time=285 ms 64 bytes from 163.11.28.96: icmp_seq=6 ttl=117 time=285 ms 64 bytes from 163.11.28.96: icmp_seq=7 ttl=117 time=285 ms 64 bytes from 163.11.28.96: icmp_seq=8 ttl=117 time=285 ms --- pwn00110.corp.ds.hotpot.com ping statistics --- 9 packets transmitted, 9 received, 0% packet loss, time 19412ms rtt min/avg/max/mdev = 285.130/285.653/287.589/0.981 ms, pipe 2 Here the result of the SMTP testing: [root@hotman01 ~]# telnet pwn00110.corp.ds.hotpot.com 25 Trying 163.11.28.96... Connected to pwn00110.corp.ds.hotpot.com (163.11.28.96). Escape character is '^]'. 220 PWN00110.corp.ds.hotpot.com Microsoft ESMTP MAIL Service ready at Fri, 19 Aug 2011 18:18:09 +0000 HELO corp.ds.hotpot.com 250 PWN00110.corp.ds.hotpot.com Hello [155.161.87.23] MAIL FROM:<MonAgt@hotman01.apac.hotpot.com> 530 5.7.1 Client was not authenticated Connection closed by foreign host. I try use MonAgt@hotman01.apac.hotpot.com to send mail, Why it was not authenticated? |
Quote:
|
All times are GMT -5. The time now is 06:26 PM. |