[Kolab-devel] loops back to myself

Daniel Coletti dcoletti at xtech.com.ar
Sat Apr 15 21:35:14 CEST 2006 

Hi,
	I found the reason why I'm getting this error, I think it's a bug. I'm 
reporting it in a minute.

I have two domains set up in kolab (foo.com -main domain-, and bar.com). Each 
domain has the MX record pointing to:
mail.<domain>

When I created a new user I filled up these form fields (with these values):
1.- First Name: John
2.- Last Name: Doe
[..]
3.- Primary Email Address: jdoe at bar.com
4.- Unique Identity: <blank>
5.- Mailbox Home Server: mail.bar.com

At "5.-" I had a changeable value that said "mail.foo.com", and I changed it 
to what I thought was a more appropiate value.

If I send an email to this account (jdoe at bar.com) postfix will return with the 
error:
``<jdoe at bar.com>: mail for mail.bar.com loops back to myself´´

In order to avoid this error I have to put "mail.foo.com" at the "5.-" field.

Now, I don't really know why postfix returns this error, I searched the error 
at the postfix web site, and all I found regarding this error where at the 
`virtual_alias_domains' and `virtual_mailbox_domains'. So I checked the 
`virtual_maps' configuration in my kolab installation (because 
virtual_alias_domains isn't used at the main.cf and virtual_maps is the 
default value of `virtual_alias_domains'), I found also that the ldap source 
has correct values, since it looks the "alias" and "mail" attributes in the 
directory (not the `kolabHomeServer', which in any case, I think it would 
have been correct also).

Just for the record, here's my /kolab/etc/postfix/ldapvirtual.cf file:

server_host = ldap://127.0.0.1:389
search_base = dc=pepe,dc=com,dc=ar
query_filter = (&(!(kolabDeleteFlag=*))(|(alias=%s)(mail=%s)))
result_attribute = mail
result_filter = %s
search_timeout = 15
scope = sub
bind = yes
bind_dn = cn=nobody,cn=internal,dc=pepe,dc=com,dc=ar
bind_pw = AlJZvHmhw[.........]LsknOg4L7xyJgjYsKo6y
version = 3
#debuglevel = 255

I'm not a postfix hacker, but maybe somebody can tell us why the 
kolabHomeServer field is getting in the way.

thanks,

daniel//

On Wednesday 12 April 2006 14:29, Daniel Coletti wrote:
> Hi,
> 	I'm testing kolab server (kolab-server-2.1-beta-1 / OpenPKG version)
> and after adding a few new domains I get a postfix's error with only one
> domain. (I have three configured).
>
> The error message is <prueba at fundacionlidia.org.ar>: mail for
> mail.fundacionlidia.org.ar loops back to myself
>
> The DNS information is correct. What I do notice is that after adding or
> removing a domain I have to run kolabconf by hand, because the
> configuration files don't change.
>
> thanks for any suggestions...
>
> My /kolab/etc/postfix/main.cf
>
> #   local host
> myhostname = mail.silvercitysoft.com
> mydomain = silvercitysoft.com
> myorigin = $mydomain
>
> #
> masquerade_domains = $mydomain
> masquerade_exceptions = root
>
> #   smtp daemon
> #smtpd_banner = $myhostname ESMTP $mail_name
> #inet_interfaces = 127.0.0.1
>
> #   relaying
> mynetworks = 127.0.0.0/8
> mydestination = silvercitysoft.com fundacionlidia.org.ar
> holdec-mail.xtech.com.ar
> relay_domains =
> #smtpd_recipient_restrictions = permit_mynetworks,
> #                               check_client_access
> hash:/kolab/etc/postfix/access,
> #                               check_relay_domains
>
> #   maps
> canonical_maps = hash:/kolab/etc/postfix/canonical
> virtual_maps =  hash:/kolab/etc/postfix/virtual,
>         ldap:/kolab/etc/postfix/ldapdistlist.cf,
>         ldap:/kolab/etc/postfix/ldapvirtual.cf
> relocated_maps = hash:/kolab/etc/postfix/relocated
> transport_maps = hash:/kolab/etc/postfix/transport,
> ldap:/kolab/etc/postfix/ldaptransport.cf
> alias_maps = hash:/kolab/etc/postfix/aliases
> alias_database = hash:/kolab/etc/postfix/aliases
> #virtual_mailbox_maps = $virtual_maps
> local_recipient_maps = $virtual_maps, $alias_maps
>
> #   local delivery
> recipient_delimiter = +
> #mailbox_transport = lmtp:unix:/kolab/var/kolab/lmtp
> mailbox_transport = kolabmailboxfilter
>
> #TLS settings
> smtpd_use_tls = yes
> smtpd_tls_auth_only = no
> smtpd_starttls_timeout = 300s
> smtpd_timeout = 300s
> #smtpd_tls_CAfile = /kolab/etc/kolab/server.pem
> #smtpd_tls_CApath =
> #smtpd_tls_ask_ccert = no
> #smtpd_tls_ccert_verifydepth = 5
> smtpd_tls_cert_file = /kolab/etc/kolab/cert.pem
> #smtpd_tls_cipherlist =
> #smtpd_tls_dcert_file =
> #smtpd_tls_dh1024_param_file =
> #smtpd_tls_dh512_param_file =
> #smtpd_tls_dkey_file = $smtpd_tls_dcert_file
> #smtpd_tls_key_file = $smtpd_tls_cert_file
> smtpd_tls_key_file = /kolab/etc/kolab/key.pem
> smtpd_tls_loglevel = 1
> smtpd_tls_received_header = no
> #smtpd_tls_req_ccert = no
> #smtpd_tls_session_cache_database =
> smtpd_tls_session_cache_timeout = 3600s
> #smtpd_tls_wrappermode = no
>
> #tls_random_bytes = 32
> tls_random_source = dev:/dev/urandom
> #tls_daemon_random_bytes = 32
> #tls_daemon_random_source =
> #tls_random_exchange_name = ${config_directory}/prng_exch
> #tls_random_prng_update_period = 60s
> #tls_random_reseed_period = 3600s
>
> #smtp_starttls_timeout = 300s
> #smtp_tls_CAfile =
> #smtp_tls_CApath =
> #smtp_tls_cert_file =
> #smtp_tls_cipherlist =
> #smtp_tls_dcert_file =
> #smtp_tls_dkey_file = $smtp_tls_dcert_file
> #smtp_tls_enforce_peername = yes
> #smtp_tls_key_file = $smtp_tls_cert_file
> #smtp_tls_loglevel = 0
> #smtp_tls_note_starttls_offer = no
> #smtp_tls_per_site =
> #smtp_tls_scert_verifydepth = 5
> #smtp_tls_session_cache_database =
> #smtp_tls_session_cache_timeout = 3600s
>
> #   authentication via sasl
>
> ## Kolab Policy Server
> smtpd_recipient_restrictions = permit_mynetworks,permit_sasl_authenticated,
>         reject_unauth_destination, reject_unlisted_recipient,
> check_policy_service unix:private/kolabpolicy
> smtpd_sender_restrictions = permit_mynetworks, check_policy_service
> unix:private/kolabpolicy
> kolabpolicy_time_limit = 3600
> kolabpolicy_max_idle = 20
>
> #smtpd_restriction_classes =
> smtpd_sasl_auth_enable = yes
>
> # We want to allow for uids without any realm
> #smtpd_sasl_local_domain = $myhostname
> smtpd_sasl_local_domain =
>
> smtpd_sasl_security_options = noanonymous
> # Support broken clients like Microsoft Outlook Express 4.x which expect
> AUTH=LOGIN instead of AUTH LOGIN
> broken_sasl_auth_clients = yes
>
> content_filter=kolabfilter

-- 
Daniel E. Coletti
XTech - Soluciones Linux para Empresas
25 de Mayo 293 - 5to. 'B' - ++54 11 5219-0678
http://www.xtech.com.ar

More information about the devel mailing list