Forums

Resolved
0 votes
I have installad on a Virtual Machine clearos-release-7-7.2.v7 with only active directory connector, imap e pop3 and smtp.
The problem is that smtp d'ont delivery mail. there the log file...

Nov 19 12:32:54 comune postfix/trivial-rewrite[6304]: warning: dict_ldap_lookup: /etc/postfix/imap-groups.cf: Search base 'ou=Groups,ou=Accounts,dc=system,dc=lan' not found: 32: No such object
Nov 19 12:32:54 comune postfix/trivial-rewrite[6304]: warning: ldap:/etc/postfix/imap-groups.cf: table lookup problem
Nov 19 12:32:54 comune postfix/trivial-rewrite[6304]: warning: dict_ldap_lookup: /etc/postfix/imap-groups.cf: Search base 'ou=Groups,ou=Accounts,dc=system,dc=lan' not found: 32: No such object
Nov 19 12:32:54 comune postfix/trivial-rewrite[6304]: warning: ldap:/etc/postfix/imap-groups.cf: table lookup problem
Nov 19 12:32:54 comune postfix/trivial-rewrite[6304]: warning: virtual_alias_domains lookup failure
Nov 19 12:32:54 comune postfix/smtpd[6303]: NOQUEUE: reject: RCPT from unknown[192.168.50.12]: 451 4.3.0 <___________@gmail.com>: Temporary lookup failure; from=<favarato@posta.interna> to=<___________@gmail.com> proto=ESMTP helo=<_____________.cpianezza.local>
Nov 19 12:32:54 comune postfix/trivial-rewrite[6304]: warning: dict_ldap_lookup: /etc/postfix/imap-groups.cf: Search base 'ou=Groups,ou=Accounts,dc=system,dc=lan' not found: 32: No such object
Nov 19 12:32:54 comune postfix/trivial-rewrite[6304]: warning: ldap:/etc/postfix/imap-groups.cf: table lookup problem
Nov 19 12:32:54 comune postfix/smtpd[6303]: warning: dict_ldap_lookup: /etc/postfix/imap-aliases.cf: Search base 'ou=Users,ou=Accounts,dc=system,dc=lan' not found: 32: No such object
Nov 19 12:32:54 comune postfix/smtpd[6303]: warning: ldap:/etc/postfix/imap-aliases.cf lookup error for "______________@posta.interna"
Nov 19 12:32:54 comune postfix/smtpd[6303]: NOQUEUE: reject: RCPT from unknown[192.168.50.12]: 451 4.3.0 <________________@posta.interna>: Temporary lookup failure; from=<favarato@posta.interna> to=<______________@posta.interna> proto=ESMTP helo=<_____________1.cpianezza.local>
Nov 19 12:32:54 comune postfix/smtpd[6303]: disconnect from unknown[192.168.50.12]
Tuesday, November 19 2019, 04:30 PM
Share this post:
Responses (13)
  • Accepted Answer

    Friday, November 22 2019, 04:55 PM - #Permalink
    Resolved
    0 votes
    I am just about at the end of what I can do. The only thing I notice is your transport.db does not match your transport file. In the webconfig, please change the Mail Forwarding section. If it is empty, please add something then remove it. If it is not empty, please change it then change it back. Also is there anything active in the virtual file? Something like this should show it:
    sed -e '/#.*$/d' -e '/^$/d' /etc/postfix/virtual
    I don't think you'll find anything as I think it is the original packaged file.
    The reply is currently minimized Show
  • Accepted Answer

    Friday, November 22 2019, 12:21 PM - #Permalink
    Resolved
    0 votes
    <[root@comune ~]# postconf -n
    alias_database = hash:/etc/aliases
    alias_maps = hash:/etc/aliases
    bounce_queue_lifetime = 72h
    broken_sasl_auth_clients = yes
    command_directory = /usr/sbin
    config_directory = /etc/postfix
    content_filter = mailprefilter
    daemon_directory = /usr/libexec/postfix
    data_directory = /var/lib/postfix
    debug_peer_level = 2
    debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id & sleep 5
    header_checks = regexp:/etc/postfix/header_checks
    html_directory = no
    inet_interfaces = all
    inet_protocols = ipv4
    local_recipient_maps = $alias_maps $virtual_alias_maps
    luser_relay =
    mail_owner = postfix
    mailbox_size_limit = 102400000
    mailbox_transport = mailpostfilter
    mailq_path = /usr/bin/mailq.postfix
    manpage_directory = /usr/share/man
    maximal_queue_lifetime = 72h
    message_size_limit = 51200000
    message_strip_characters = \0
    mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain, posta.interna
    mydomain = posta.comune.pianezza.to.it
    myhostname = smtpout.comune.pianezza.to.it
    mynetworks = 127.0.0.0/8, 192.168.50.0/24
    myorigin = $mydomain
    newaliases_path = /usr/bin/newaliases.postfix
    queue_directory = /var/spool/postfix
    readme_directory = /usr/share/doc/postfix-2.6.6/README_FILES
    recipient_delimiter = +
    relay_domains = comune.pianezza.to.it
    relayhost = [151.11.50.156]:587
    sample_directory = /usr/share/doc/postfix-2.6.6/samples
    sendmail_path = /usr/sbin/sendmail.postfix
    setgid_group = postdrop
    smtp_sasl_auth_enable = yes
    smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
    smtp_sasl_security_options = noanonymous
    smtp_tls_security_level = may
    smtp_use_tls = yes
    smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks, reject_unauth_destination
    smtpd_sasl_auth_enable = yes
    smtpd_sasl_local_domain = $mydomain
    smtpd_sasl_security_options = noanonymous
    smtpd_tls_cert_file = /etc/postfix/cert.pem
    smtpd_tls_key_file = /etc/postfix/key.pem
    smtpd_tls_loglevel = 1
    smtpd_use_tls = yes
    transport_maps = hash:/etc/postfix/transport
    unknown_local_recipient_reject_code = 550
    virtual_alias_maps = $alias_maps, $virtual_maps, ldap:/etc/postfix/imap-aliases.cf, ldap:/etc/postfix/imap-groups.cf




    [root@comune ~]# ls -l /etc/postfix
    totale 204
    -rw-r--r--. 1 root root 20876 30 ott 2018 access
    -rw-r--r--. 1 root root 11883 30 ott 2018 canonical
    -rw-------. 1 root root 1363 19 nov 09.41 cert.pem
    -rw-r--r--. 1 root root 10106 30 ott 2018 generic
    -rw-r--r--. 1 root root 21545 30 ott 2018 header_checks
    -rw------- 1 root root 359 19 nov 12.12 imap-aliases.cf
    -rw-r--r-- 1 root root 395 19 nov 12.12 imap-groups.cf
    -rw-------. 1 root root 1679 19 nov 09.41 key.pem
    -rw-r--r-- 1 root root 27929 21 nov 15.41 main.cf
    -rw-r--r-- 1 root root 5298 19 nov 11.49 master.cf
    -rw-r--r--. 1 root root 6816 30 ott 2018 relocated
    -rw-r--r-- 1 root root 65 20 nov 12.02 sasl_passwd
    -rw-r--r-- 1 root root 12288 20 nov 12.02 sasl_passwd.db
    -rw-r--r-- 1 root root 64 19 nov 12.25 searchdomains
    -rw-r--r--. 1 root root 12288 19 nov 12.25 searchdomains.db
    -rw-r--r--. 1 root root 12549 30 ott 2018 transport
    -rw-r--r--. 1 root root 12288 19 nov 09.41 transport.db
    -rw-r--r--. 1 root root 12696 30 ott 2018 virtual


    [root@comune ~]# cat /etc/postfix/searchdomains
    posta.interna yes
    posta.comune.pianezza.to.it yes
    localhost yes
    The reply is currently minimized Show
  • Accepted Answer

    Friday, November 22 2019, 08:33 AM - #Permalink
    Resolved
    0 votes
    That looks OK, I think. They are using the same search_base and it ties up with LDAP.

    I am really struggling. What is the output to:
    postconf -n
    ls -l /etc/postfix
    cat /etc/postfix/searchdomains
    Please put your results between code tags (the piece of paper icon with a <> on it)
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, November 21 2019, 10:44 PM - #Permalink
    Resolved
    0 votes
    # grep suffix.*dc /etc/openldap/slapd.conf
    suffix "dc=system,dc=lan"


    imap-group.cf
    server_host = ldap://127.0.0.1:389
    search_base = ou=Groups,ou=Accounts,dc=system,dc=lan
    query_filter = (&(objectClass=clearMailGroupAccount)(clearMailDistributionList=1)(cn=%s))
    result_attribute =
    leaf_result_attribute = mail
    special_result_attribute = member
    result_format = %u
    search_timeout = 15
    scope = sub
    bind = no
    version = 3



    imap-aliases.cf
    # Please do not edit - this file is automatically generated.

    server_host = ldap://127.0.0.1:389
    search_base = ou=Users,ou=Accounts,dc=system,dc=lan
    query_filter = (|(clearMailAliases=%u)(mail=%u@*))
    domain = hash:/etc/postfix/searchdomains
    result_attribute = mail, clearMailForwarders
    result_format = %s
    search_timeout = 15
    scope = sub
    bind = no
    version = 3
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, November 21 2019, 05:00 PM - #Permalink
    Resolved
    0 votes
    What do you get from:
    grep suffix.*dc /etc/openldap/slapd.conf
    And what are the contents of /etc/postfix/imap-aliases.cf and /etc/postfix/imap-groups.cf?
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, November 21 2019, 03:12 PM - #Permalink
    Resolved
    0 votes
    Between old and new I only copied / etc / postfix / sasl_passwd and /etc/postfix/sasl_passwd.db.
    I modified the main.cf as reported in the previous post.
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, November 21 2019, 08:44 AM - #Permalink
    Resolved
    0 votes
    How much of your config did you copy in from your old system? If you copied in things like /etc/postfix/imap-aliases.cf and /etc/postfix/imap-groups.cf, with a new installation, your ldap parameters may have changed. Also did you copy in your /etc/postfix/sasl_passwd and /etc/postfix/sasl_passwd.db?
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, November 20 2019, 09:48 PM - #Permalink
    Resolved
    0 votes
    Nick Howitt wrote:

    If gmail.com is not resolving then you have a DNS issue which needs to be resolved. have you used the AD Connector to specify your AD DNS Server? How have you configured your DNS in the IP settings screen?


    sorry type mismatch

    [root@comune ~]# host gmail.com
    gmail.com has address 216.58.198.5
    gmail.com has IPv6 address 2a00:1450:4002:801::2005
    gmail.com mail is handled by 40 alt4.gmail-smtp-in.l.google.com.
    gmail.com mail is handled by 10 alt1.gmail-smtp-in.l.google.com.
    gmail.com mail is handled by 30 alt3.gmail-smtp-in.l.google.com.
    gmail.com mail is handled by 5 gmail-smtp-in.l.google.com.
    gmail.com mail is handled by 20 alt2.gmail-smtp-in.l.google.com.
    [root@comune ~]#
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, November 20 2019, 03:53 PM - #Permalink
    Resolved
    0 votes
    If gmail.com is not resolving then you have a DNS issue which needs to be resolved. have you used the AD Connector to specify your AD DNS Server? How have you configured your DNS in the IP settings screen?
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, November 20 2019, 03:28 PM - #Permalink
    Resolved
    0 votes
    Nick Howitt wrote:

    Are you a member of the imap_plugin and smtp_plugin groups? What is the result of:
    id {your_username}
    wbinfo -t
    host gmail.com


    What is your Mail Hostname set to? You could use your poweredbyclear.com Dynamic DNS name


    Yes i am a member of smtp_plugin groups

    the result is
    uid=20001104(favarato) gid=20000513(domain users) gruppi=20001104(favarato),20000513(domain users),20001194(assicurazioni),20001198(economato),20001345(smtp_plugin),20001342(openfire_plugin),20001341(imap_plugin),20000512(domain admins),20001210(sipal),20001201(patrimonio),20001340(ftp_plugin),20001105(ragioneria),20001205(technicaldesign),20001339(web_proxy_plugin),20001346(user_certificates_plugin),20001206(tributi),20000572(denied rodc password replication group),20000001(BUILTIN+users),20000000(BUILTIN+administrators)


    [root@comune ~]# wbinfo -t
    checking the trust secret for domain CPIANEZZA via RPC calls succeeded

    [root@comune ~]# host gmail
    [root@comune ~]#


    main.cf of postfix is
    relay_domains = comune.pianezza.to.it
    relayhost = [151.11.50.156]:587
    smtp_sasl_auth_enable = yes
    smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
    smtp_sasl_security_options = noanonymous
    smtp_use_tls = yes
    myhostname = smtpout.comune.pianezza.to.it

    This configuration worked in my clearos 6.6.0


    I already had the 6.6 version that works properly but I didn't have the connection with active directory.

    I installed version 7 with active directory and copied the postfix parameters but it doesn't work
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, November 20 2019, 12:23 PM - #Permalink
    Resolved
    0 votes
    Are you a member of the imap_plugin and smtp_plugin groups? What is the result of:
    id {your_username}
    wbinfo -t
    host gmail.com


    What is your Mail Hostname set to? You could use your poweredbyclear.com Dynamic DNS name
    The reply is currently minimized Show
  • Accepted Answer

    Tuesday, November 19 2019, 08:39 PM - #Permalink
    Resolved
    0 votes
    Yes i have set up the plugin groups for smtp and cyrus-imapd.
    _____________1.cpianezza.local is the name of my pc in active directory
    192.168.50.12 is my ip address in local network
    The reply is currently minimized Show
  • Accepted Answer

    Tuesday, November 19 2019, 05:21 PM - #Permalink
    Resolved
    0 votes
    If you're using the AD Connector have you set up the plugin groups for smtp and cyrus-imapd? Please see the App Policies section of the documentation here.

    You also have all sorts of DNS issues. It looks like you have set your mail hostname to _____________1.cpianezza.local. This should match you publicly available MX record for posta.interna and it does not as neither domain is valid on the internet. Google, therefore, does not like you. Also who is 192.168.50.12? Is that an internal SMTP server?
    The reply is currently minimized Show
Your Reply