Issue Amavis (10024: Connection refused) no transport

[fckp]

i hate plesk every day little bit more.

every day i have any issue with my mailserver..

Now i have a problem with a fresh install server.

First:

I install Plesk

Plesk ist perfectly running

- mails going out, mail coming in everything is fine

now i will install kolab, i buy a licence a install kolab. after i install kolab i cant become emails.



########################### Log from a incoming mail ##################################

Feb 23 11:59:32 w6 postfix/smtpd[22476]: connect from mail-io1-f45.google.com[209.85.166.45
Feb 23 11:59:33 w6 postfix/smtpd[22476]: warning:45.166.85.209.sbl.spamhaus.org: RBL lookup error: Host or domain name not found. Name service error for name=45.166.85.209.sbl.spamhaus.org type=A: Host not found, try agai
Feb 23 11:59:33 w6 postfix/smtpd[22476]: warning: 45.166.85.209.xbl.spamhaus.org: RBL lookup error: Host or domain name not found. Name service error for name=45.166.85.209.xbl.spamhaus.org type=A: Host not found, try again
Feb 23 11:59:33 w6 postfix/smtpd[22476]: warning: 45.166.85.209.zen.spamhaus.org: RBL lookup error: Host or domain name not found. Name service error for name=45.166.85.209.zen.spamhaus.org type=A: Host not found, try again
Feb 23 11:59:33 w6 postfix/smtpd[22476]: 58A03AA2190: client=mail-io1-f45.google.com[209.85.166.45]
Feb 23 11:59:33 w6 postfix/cleanup[25674]: 58A03AA2190: message-id=<CAD3uk-Bsh_1HcXEoQe2zh9VmVFGO-zZ09a7jJ=[email protected]>
Feb 23 11:59:33 w6 psa-pc-remote[20077]: handlers_stderr: SKIP
Feb 23 11:59:33 w6 psa-pc-remote[20077]: SKIP during call 'limit-out' handler
Feb 23 11:59:33 w6 check-quota[25680]: Starting the check-quota filter...
Feb 23 11:59:33 w6 psa-pc-remote[20077]: handlers_stderr: SKIP
Feb 23 11:59:33 w6 psa-pc-remote[20077]: SKIP during call 'check-quota' handler
Feb 23 11:59:33 w6 spf[25682]: Starting the spf filter...
Feb 23 11:59:33 w6 spf[25682]: SPF result: pass
Feb 23 11:59:33 w6 spf[25682]: SPF status: PASS
Feb 23 11:59:33 w6 psa-pc-remote[20077]: handlers_stderr: PASS
Feb 23 11:59:33 w6 psa-pc-remote[20077]: PASS during call 'spf' handler
Feb 23 11:59:33 w6 postfix/qmgr[19975]: 58A03AA2190: from=<[email protected]>, size=2489, nrcpt=1 (queue active)
Feb 23 11:59:33 w6 postfix/qmgr[19975]: warning: connect to transport private/amavis: No such file or directory
Feb 23 11:59:33 w6 postfix/error[25683]: 58A03AA2190: to=<[email protected]>, relay=none, delay=0.36, delays=0.34/0.01/0/0.01, dsn=4.3.0, status=deferred (mail transport unavailable)
Feb 23 11:59:33 w6 postfix/smtpd[22476]: disconnect from mail-io1-f45.google.com[209.85.166.45] ehlo=2 starttls=1 mail=1 rcpt=1 bdat=1 quit=1 commands=7



Feb 23 12:36:31 w6 postfix/qmgr[3841]: 9F2B9AA2233: from=<[email protected]>, size=10664, nrcpt=1 (queue active)
Feb 23 12:36:31 w6 postfix/error[3842]: 9F2B9AA2233: to=<[email protected]>, relay=none, delay=0.31, delays=0.29/0/0/0.02, dsn=4.3.0, status=deferred (mail transport unavailable)



AND AFTER: postqueue -f
Feb 23 12:38:18 w6 postfix/error[4020]: 0C9CCAA1EC5: to=<[email protected]>, orig_to=<unknownc.dauxxxxn@kxxxxxx>, relay=none, delay=43240, delays=43240/0.02/0/0.01, dsn=4.4.1, status=deferred (delivery temporarily suspended: connect to 127.0.0.1[127.0.0.1]:10024: Connection refused)


##################################################################################



root@w6 /etc/postfix # ifconfig |grep -C 1 127

lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536

inet 127.0.0.1 netmask 255.0.0.0

loop txqueuelen 1000 (Local Loopback)

root@w6 /etc/postfix # netstat -tanp|grep 10024

root@w6 /etc/postfix # netstat -tanp|grep 10025

tcp 0 0 127.0.0.1:10025 0.0.0.0:* LISTEN 19971/master

root@w6 /etc/postfix #

root@w6 /etc/postfix # /etc/init.d/amavis status

● amavis.service - LSB: Starts amavisd-new mailfilter

Loaded: loaded (/etc/init.d/amavis; generated)

Active: active (exited) since Sun 2020-02-23 11:34:29 CET; 23min ago

Docs: man:systemd-sysv-generator(8)

Tasks: 0 (limit: 4915)

CGroup: /system.slice/amavis.service



Feb 23 11:34:28 w6.myowndomain.com amavis[1788]: Starting amavisd: changed ownership of '/var/run/amavis' from root:root to amavis:amavis

Feb 23 11:34:29 w6.myowndomain.com amavis[1888]: starting. /usr/sbin/amavisd-new at w6.myowndomain.com amavisd-new-2.11.0 (20160426), Unicode aware, LC_ALL="C", LANG="en_US.UTF-8"

Feb 23 11:34:29 w6.myowndomain.com amavis[1788]: amavisd-new.

Feb 23 11:34:27 w6.myowndomain.com systemd[1]: Starting LSB: Starts amavisd-new mailfilter...

Feb 23 11:34:29 w6.myowndomain.com systemd[1]: Started LSB: Starts amavisd-new mailfilter.

##########################

main.cf

readme_directory = /usr/share/doc/postfix/README_FILES
inet_protocols = all
meta_directory = /etc/postfix
shlib_directory = no
inet_interfaces = all
virtual_mailbox_domains = $virtual_mailbox_maps, hash:/var/spool/postfix/plesk/virtual_domains
virtual_alias_maps = $virtual_maps, hash:/var/spool/postfix/plesk/virtual
virtual_mailbox_maps = , hash:/var/spool/postfix/plesk/vmailbox
alias_maps = hash:/etc/aliases, nis:mail.aliases, hash:/var/spool/postfix/plesk/aliases
transport_maps = , hash:/var/spool/postfix/plesk/transport
smtpd_tls_cert_file = /etc/postfix/postfix.pem
smtpd_tls_key_file = $smtpd_tls_cert_file
tls_server_sni_maps = hash:/var/spool/postfix/plesk/certs
smtpd_tls_security_level = may
smtpd_use_tls = yes
smtp_tls_security_level = may
smtp_use_tls = no
smtpd_timeout = 3600s
smtpd_proxy_timeout = 3600s
disable_vrfy_command = yes
mynetworks = , 79.226.119.66/32
smtpd_sender_restrictions = check_sender_access hash:/var/spool/postfix/plesk/blacklists, permit_sasl_authenticated
smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_rbl_client cbl.abuseat.org, reject_rbl_client sbl.spamhaus.org, reject_rbl_client xbl.spamhaus.org, reject_rbl_client zen.spamhaus.org, reject_rbl_client bl.spamcop.net
authorized_flush_users =
authorized_mailq_users =
mydestination = localhost.$mydomain, localhost, localhost.localdomain
smtp_send_xforward_command = yes
smtpd_authorized_xforward_hosts = 127.0.0.0/8 [::1]/128
smtpd_sasl_auth_enable = yes
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
virtual_mailbox_base = /var/qmail/mailnames
virtual_uid_maps = static:30
virtual_gid_maps = static:31
smtpd_milters = , inet:127.0.0.1:12768
sender_dependent_default_transport_maps = hash:/var/spool/postfix/plesk/sdd_transport_maps
virtual_transport = plesk_virtual
plesk_virtual_destination_recipient_limit = 1
mailman_destination_recipient_limit = 1
message_size_limit = 10240000
mailbox_size_limit = 0
virtual_mailbox_limit = 0
smtpd_tls_ciphers = medium
smtpd_tls_mandatory_ciphers = medium
tls_medium_cipherlist = EECDH+AESGCM+AES128:EECDH+AESGCM+AES256:EECDH+CHACHA20:EDH+AESGCM+AES128:EDH+AESGCM+AES256:EDH+CHACHA20:EECDH+SHA256+AES128:EECDH+SHA384+AES256:EDH+SHA256+AES128:EDH+SHA256+AES256:EECDH+SHA1+AES128:EECDH+SHA1+AES256:EDH+SHA1+AES128:EDH+SHA1+AES256:EECDH+HIGH:EDH+HIGH:AESGCM+AES128:AESGCM+AES256:CHACHA20:SHA256+AES128:SHA256+AES256:SHA1+AES128:SHA1+AES256:HIGH:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK:!KRB5:!aECDH
tls_preempt_cipherlist = yes
smtpd_tls_mandatory_protocols = TLSv1 TLSv1.1 TLSv1.2
smtpd_tls_protocols = TLSv1 TLSv1.1 TLSv1.2
recipient_canonical_maps = tcp:127.0.0.1:12346
recipient_canonical_classes = envelope_recipient,header_recipient
content_filter = amavis:[127.0.0.1]:10024




master.cf



plesk_virtual unix - n n - - pipe flags=DORhu user=popuseropuser argv=/usr/lib/plesk-9.0/postfix-local -f ${sender} -d ${recipient} -p /var/qmail/mailnames
127.0.0.1:12346 inet n n n - - spawn user=popuseropuser argv=/usr/lib/plesk-9.0/postfix-srs
mailman unix - n n - - pipe flags=R user=list:list argv=/usr/lib/plesk-9.0/postfix-mailman ${nexthop} ${user} ${recipient}
pickup fifo n - y 60 1 pickup
qmgr fifo n - n 1 1 qmgr
smtps inet n - y - - smtpd -o smtpd_tls_wrappermode=yes

smtp-amavis unix - - - - 2 smtp
-o smtp_data_done_timeout=120
-o smtp_send_xforward_command=yes
-o disable_dns_lookups=yes
-o max_use=20

127.0.0.1:10025 inet n - - - - smtpd
-o content_filter=
-o local_recipient_maps=
-o relay_recipient_maps=
-o smtpd_restriction_classes=
-o smtpd_delay_reject=no
-o smtpd_client_restrictions=permit_mynetworks,reject
-o smtpd_helo_restrictions=
-o smtpd_sender_restrictions=
-o smtpd_recipient_restrictions=permit_mynetworks,reject
-o smtpd_data_restrictions=reject_unauth_pipelining
-o smtpd_end_of_data_restrictions=
-o mynetworks=127.0.0.0/8
-o strict_rfc821_envelopes=yes
-o smtpd_error_sleep_time=0
-o smtpd_soft_error_limit=1001
-o smtpd_hard_error_limit=1000
-o smtpd_client_connection_count_limit=0
-o smtpd_client_connection_rate_limit=0
-o receive_override_options=no_header_body_checks,no_unknown_recipient_checks







plesk_saslauthd unix y y y - 1 plesk_saslauthd status=5 listen=6 dbpath=/plesk/passwd.db

plesk-5.9.96.170- unix - - n - - smtp -o smtp_bind_address=5.9.96.170 -o smtp_bind_address6= -o smtp_address_preference=ipv4

 

[fckp]

small update.:
I see i can send mails as well.
thanks plesk <3

Feb 23 12:52:56 w6 postfix/smtp[5612]: connect to 127.0.0.1[127.0.0.1]:10024: Connection refused

 

[peterbo]

Is your server's loopback interface working (that it can successfully resolve 127.0.0.1)?

Other suspect settings:
The content_filter ("amavis") must be setup as transport in the master.cf with the same name. In this case, it's called "smtp-amavis" in the master.cf, not "amavis".

That may be the reason, why the queue manager fails to connect to the transport layer and therefore postfix fails to accept the mail.

And you should check the correct port back with your amavisd.conf. Maybe the Port you're referencing in the content_filter is not correct.

 

[peterbo]

Did you try any of the proposals/ideas?

 

[Jllynch]

Is your server's loopback interface working (that it can successfully resolve 127.0.0.1)?

Other suspect settings:
The content_filter ("amavis") must be setup as transport in the master.cf with the same name. In this case, it's called "smtp-amavis" in the master.cf, not "amavis".

That may be the reason, why the queue manager fails to connect to the transport layer and therefore postfix fails to accept the mail.

And you should check the correct port back with your amavisd.conf. Maybe the Port you're referencing in the content_filter is not correct.

How do we then add it to the Transport.db then?

Plesk seems to generate this file itself and I can't see how to add to it:
/var/spool/postfix/plesk/transport

 

[pleskpanel]

i hate plesk every day little bit more.

No doubt making some t-shirts or bumper stickers with that very quote can be tempting as is the case with any complex ecosystem.

As previously suggested, have you started by making this change?

content_filter = amavis:[127.0.0.1]:10024

to

content_filter = smtp-amavis:[127.0.0.1]:10024

 

[Jllynch]

Ok we worked out what we were trying to do
Put the transports in here so Plesk didn't overwrite:
/etc/postfix/transport

Then ran this to make the .db file.
postmap /etc/postfix/transport

This may be a little different to what you were trying to do (we were trying to throttle email to certain domains).

 

[cambrantskv]

Ok we worked out what we were trying to do
Put the transports in here so Plesk didn't overwrite:
/etc/postfix/transport

Then ran this to make the .db file.
postmap /etc/postfix/transport/mypascoconnect

This may be a little different to what you were trying to do (we were trying to throttle email to certain domains).

The content_filter ("amavis") must be setup as transport in the master.cf with the same name. In this case, it's called "smtp-amavis" in the master.cf, not "amavis".

That may be the reason, why the queue manager fails to connect to the transport layer and therefore postfix fails to accept the mail.