From: Chris Boyd (chris_d_b71 at domain yahoo.com)
Date: Sat 06 Oct 2001 - 20:23:52 IST
I recently upgraded my RH 6.2 to RH 7.1. I got
sendmail up and running but cannot get sendmail to
relay an internal IP when trying to send a message
out. The PC's all are internal IP's (192.168.0.0).
When one tries to send out mail through our mailserver
the maillog gives the following error msg:
(irelands-web.ie is local domain)
Oct 6 20:04:26 leviathan sendmail[32441]:
f96J4Bd32441: ruleset=check_rcpt,
arg1=<chris_d_b71 at domain yahoo.com>, relay=[192.168.0.6],
reject=550 5.7.1 <bob at domain yahoo.com>... Relaying denied
Oct 6 20:04:26 leviathan sendmail[32441]:
f96J4Bd32441: from=<user at domain irelands-web.ie>, size=0,
class=0, nrcpts=0, proto=ESMTP, relay=[192.168.0.6]
I cannot figure out why it won't relay an internal IP.
(I do a "makemap hash access.db < access and then
restart sendmail to update)
In access.db:
localhost.localdomain RELAY
localhost RELAY
irelands-web.ie RELAY
192.168.0. RELAY
(also tried 192.168.0.0.)
in /etc/hosts.allow:
ALL: 194.125.22. (server IP's)
ALL: 194.125.4.
ALL: 192.168.0.
in sendmail.cf:
### check_rcpt -- check SMTP `RCPT TO:' command
argument
######################################################################
SLocal_check_rcpt
Scheck_rcpt
R$* $: $1 $| $>"Local_check_rcpt"
$1
R$* $| $#$* $#$2
R$* $| $* $ at domain $>"Basic_check_rcpt" $1
SBasic_check_rcpt
# check for deferred delivery mode
R$* $: < ${deliveryMode} > $1
R< d > $* $ at domain deferred
R< $* > $* $: $2
R$* $: $>ParseRecipient $1
strip relayable hosts
# blacklist local users or any host from receiving
mail
R$* $: <?> $1
R<?> $+ < at domain $=w > $: <> <$1 < at domain $2 >> $|
<F:$1 at domain $2> <U:$1 at domain > <H:$2>
R<?> $+ < at domain $* > $: <> <$1 < at domain $2 >> $|
<F:$1 at domain $2> <H:$2>
R<?> $+ $: <> <$1> $| <U:$1 at domain >
R<> <$*> $| <$+> $: < at domain > <$1> $| $>SearchList
<+To> $| <$2> <>
R< at domain > <$*> $| <$*> $: <$2> <$1>
reverse result
R<?> <$*> $: at domain $1 mark address
as no match
R<$={Accept}> <$*> $: at domain $2 mark address
as no match
R<REJECT> $* $#error $ at domain 5.2.1 $: "550
Mailbox disabled for this recipient"
R<DISCARD> $* $#discard $: discard
R<ERROR:$-.$-.$-:$+> $* $#error $ at domain $1.$2.$3 $:
$4
R<ERROR:$+> $* $#error $: $1
R<$+> $* $#error $: $1 error
from access db
R at domain $* $1 remove mark
# authenticated?
R$* $: $1 $| $>RelayAuth $1 $| $&{verify}
client authenticated?
R$* $| $# $+ $# $2
error/ok?
R$* $| $* $: $1
no
# authenticated by a trusted mechanism?
R$* $: $1 $| $&{auth_type}
R$* $| $: $1
R$* $| $={TrustAuthMech} $# RELAYAUTH
R$* $| $* $: $1
# anything terminating locally is ok
R$+ < at domain $=w > $ at domain RELAYTO
R$+ < at domain $* $=R > $ at domain RELAYTO
R$+ < at domain $+ > $: $>LookUpDomain <$2> <?> <$1
< at domain $2 >> <+To>
R<RELAY> $* $ at domain RELAYTO
R<$*> <$*> $: $2
# check for local user (i.e. unqualified address)
R$* $: <?> $1
R<?> $* < at domain $+ > $: <REMOTE> $1 < at domain $2 >
# local user is ok
R<?> $+ $ at domain RELAYTOLOCAL
R<$+> $* $: $2
# anything originating locally is ok
# check IP address
R$* $: $&{client_addr}
R$ at domain $ at domain RELAYFROM
originated locally
R0 $ at domain RELAYFROM
originated locally
R$=R $* $ at domain RELAYFROM
relayable IP address
R$* $: $>LookUpAddress <$1> <?>
<$1> <+Connect>
R<RELAY> $* $ at domain RELAYFROM
relayable IP address
R<$*> <$*> $: $2
R$* $: [ $1 ] put
brackets around it...
R$=w $ at domain RELAYFROM ...
and see if it is local
# check client name: first: did it resolve?
R$* $: < $&{client_resolve} >
R<TEMP> $#error $ at domain 4.7.1 $: "450
Relaying temporarily denied. Cannot resolve PTR record
for " $&{client_addr}
R<FORGED> $#error $ at domain 5.7.1 $: "550
Relaying denied. IP name possibly forged "
$&{client_name}
R<FAIL> $#error $ at domain 5.7.1 $: "550
Relaying denied. IP name lookup failed "
$&{client_name}
R$* $: <?> $&{client_name}
# pass to name server to make hostname canonical
R<?> $* $~P $:<?> $[ $1 $2 $]
R$* . $1 strip
trailing dots
R<?> $ at domain RELAYFROM
R<?> $=w $ at domain RELAYFROM
R<?> $* $=R $ at domain RELAYFROM
R<?> $* $: $>LookUpDomain <$1> <?>
<$1> <+Connect>
R<RELAY> $* $ at domain RELAYFROM
R<$*> <$*> $: $2
# anything else is bogus
R$* $#error $ at domain 5.7.1 $: "550
Relaying denied"
Any ideas as I'm not sure where else to look?
Thanks,
=====
"They that give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." -- Benjamin Franklin, 1759.
Chris Boyd
Home: 353 1 671 9858
Cell: 353 87 955 9519
__________________________________________________
Do You Yahoo!?
NEW from Yahoo! GeoCities - quick and easy web site hosting, just $8.95/month.
http://geocities.yahoo.com/ps/info1
This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:12:35 GMT