outbound relay working from queue but not from user (8.6)

Discuss your pilot or production implementation with other Zimbra admins or our engineers.
Post Reply
User avatar
opsystem
Posts: 33
Joined: Mon Nov 20, 2017 6:32 pm

outbound relay working from queue but not from user (8.6)

Post by opsystem »

Hello,

we just upgraded from ver. 7 to 8.6, all went good, normal mail flow is working.
Our server is configured for outgoing SMTP authentication with these settings (I’ve double checked them)

Code: Select all

zmprov ms [server] zimbraMtaSmtpSaslPasswordMaps texthash:/customfolder/sasl_passwd
zmprov ms [server] zimbraMtaSmtpSaslAuthEnable yes
zmprov ms [server] zimbraMtaSmtpCnameOverridesServername no
zmprov ms [server] zimbraMtaSmtpSaslSecurityOptions noanonymous
zmprov ms [server] zimbraMtaSmtpTlsSecurityLevel may
postconf -e sender_dependent_relayhost_maps=texthash:/customfolder/sender_relay
postconf -e smtp_sender_dependent_authentication=yes
sender_relay:

Code: Select all

@pec.it 127.0.0.1:11465
We’re using stunnel on port 11465 for relay those particular @pec.it emails.

Now the strange thing is: if a message is sent from a user mailbox we got an auth failed error (against 7071 port????):

Code: Select all

postfix/qmgr[21782]: 768223600D0: from=<xxxxxxxxxx@pec.it>, size=1495, nrcpt=1 (queue active)
postfix/amavisd/smtpd[28515]: connect from localhost[127.0.0.1]
postfix/amavisd/smtpd[28515]: Anonymous TLS connection established from localhost[127.0.0.1]: TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)
saslauthd[21031]: zmauth: authenticating against elected url 'https://[zimbrahostname]:7071/service/admin/soap/' ...
saslauthd[21031]: zmpost: url='https://[zimbrahostname]:7071/service/admin/soap/' returned buffer->data='<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope"><soap:Header><context xmlns="urn:zimbra"/></soap:Header><soap:Body><soap:Fault><soap:Code><soap:Value>soap:Sender</soap:Value></soap:Code><soap:Reason><soap:Text>authentication failed for [xxxxxxxxxxx@pec.it]</soap:Text></soap:Reason><soap:Detail><Error xmlns="urn:zimbra"><Code>account.AUTH_FAILED</Code><Trace>qtp509886383-343:https://[zimbrahostIP]:7071/service/admin/soap/:1555697827749:97e101dcecd88351</Trace></Error></soap:Detail></soap:Fault></soap:Body></soap:Envelope>', hti->error=''
saslauthd[21031]: auth_zimbra: xxxxxxxxxxx@pec.it auth failed: authentication failed for [xxxxxxxxxxxx@pec.it]
saslauthd[21031]: do_auth: auth failure: [user=xxxxxxxxxxx@pec.it] [service=smtp] [realm=pec.it] [mech=zimbra] [reason=Unknown]
postfix/amavisd/smtpd[28515]: warning: SASL authentication failure: Password verification failed
postfix/amavisd/smtpd[28515]: warning: localhost[127.0.0.1]: SASL PLAIN authentication failed: authentication failure
the message is then queued. If we do a re-submit from the queue, the message is correctly delivered.
This means that the outbound mapping is working. Only the user submission has that zmauth issue, the message seems not to reach postfix.

Any idea?
Thanks for helping :)
Top
User avatar
opsystem
Posts: 33
Joined: Mon Nov 20, 2017 6:32 pm

Re: outbound relay working from queue but not from user (8.6)

Post by opsystem »

Anyone?
Still no solutions
:(
Top
Post Reply

Return to “Administrators”