Queued/Accepted

T

thebiggeek

Active Member
Jul 23, 2020
41
3
28
52
A few of our senders (while they exist on Whitelist, also their SA Score is either 0 or 1) are getting queued as QUEUED/ACCEPTED. I am unable to locate where these emails are, and here are some obfuscated headers for you to see - I can't locate where these emails are going


Code: 
Aug 3 12:44:44 one postfix/smtpd[11065]: connect from mx98.a.outbound.createsend.com[203.55.21.98]
Aug 3 12:44:45 one postfix/smtpd[11065]: F21372C00BF: client=mx98.a.outbound.createsend.com[203.55.21.98]
Aug 3 12:44:46 one postfix/smtpd[11065]: D458C2C1420: client=mx98.a.outbound.createsend.com[203.55.21.98]
Aug 3 12:44:47 one postfix/cleanup[9710]: D458C2C1420: info: header Subject: RMIT | Important Update from mx98.a.outbound.createsend.com[203.55.21.98]; from=<sender-alias@sender-domain> to=<reciever@client-domain> proto=ESMTP helo=<mx98.a.outbound.createsend.com>
Aug 3 12:44:47 one postfix/cleanup[9710]: D458C2C1420: info: header From: "SENDER-NAME" <sender@remote-end> from mx98.a.outbound.createsend.com[203.55.21.98]; from=<sender-alias@sender-domain> to=<reciever@client-domain> proto=ESMTP helo=<mx98.a.outbound.createsend.com>
Aug 3 12:44:47 one postfix/cleanup[9710]: D458C2C1420: info: header To: "CLIENT" <reciever@client-domain> from mx98.a.outbound.createsend.com[203.55.21.98]; from=<sender-alias@sender-domain> to=<reciever@client-domain> proto=ESMTP helo=<mx98.a.outbound.createsend.com>
Aug 3 12:44:47 one postfix/cleanup[9710]: D458C2C1420: message-id=<cm.1714344065348.jkhyujn.ojidrjduyy.r@cmail19.com>
Aug 3 12:44:47 one postfix/qmgr[7230]: D458C2C1420: from=<sender-alias@sender-domain>, size=35968, nrcpt=1 (queue active)
Aug 3 12:44:47 one pmg-smtp-filter[11084]: 2C14145F27B967346FB: new mail message-id=<cm.1714344065348.jkhyujn.ojidrjduyy.r@cmail19.com>#012
Aug 3 12:44:47 one postfix/smtpd[11065]: 6DE8C2C1424: client=mx98.a.outbound.createsend.com[203.55.21.98]
Aug 3 12:44:48 one postfix/smtpd[11065]: 0A55C2C1428: client=mx98.a.outbound.createsend.com[203.55.21.98]
Aug 3 12:44:48 one postfix/smtpd[11065]: disconnect from mx98.a.outbound.createsend.com[203.55.21.98] ehlo=1 mail=4 rcpt=4 data=4 quit=1 commands=14
Aug 3 12:44:50 one pmg-smtp-filter[11084]: 2C14145F27B967346FB: SA score=3/5 time=2.961 bayes=undefined autolearn=no autolearn_force=no hits=AWL(1.943),DCC_REPUT_70_89(0.1),DKIMWL_WL_MED(-0.001),DKIM_SIGNED(0.1),DKIM_VALID(-0.1),DKIM_VALID_AU(-0.1),HEADER_FROM_DIFFERENT_DOMAINS(0.001),HTML_IMAGE_RATIO_06(0.001),HTML_MESSAGE(0.001),MIME_QP_LONG_LINE(0.001),RCVD_IN_DNSWL_NONE(-0.0001),RCVD_IN_MSPIKE_H2(-0.001),RCVD_IN_SORBS_PROBLEMS(0.5),SPF_HELO_NONE(0.001),SPF_PASS(-0.001),T_KAM_HTML_FONT_INVALID(0.01),T_REMOTE_IMAGE(0.01),URIBL_GREY(1.084)
Aug 3 12:44:50 one pmg-smtp-filter[11084]: 2C14145F27B967346FB: accept mail to <reciever@client-domain> (4BEF42C142E) (rule: default-accept)
Aug 3 12:44:50 one pmg-smtp-filter[11084]: 2C14145F27B967346FB: processing time: 3.193 seconds (2.961, 0.034, 0)
Aug 3 12:44:50 one postfix/lmtp[10782]: D458C2C1420: to=<reciever@client-domain>, relay=127.0.0.1[127.0.0.1]:10024, delay=3.6, delays=0.33/0/0.02/3.2, dsn=2.5.0, status=sent (250 2.5.0 OK (2C14145F27B967346FB))
Aug 3 12:44:50 one postfix/qmgr[7230]: D458C2C1420: removed
 
The logs are missing the information about the postfix instance which is sending the mail out - use the log-tracker or search your logs to find out what happened with the queue-id 4BEF42C142E :
thebiggeek said:
Aug 3 12:44:50 one pmg-smtp-filter[11084]: 2C14145F27B967346FB: accept mail to <reciever@client-domain> (4BEF42C142E) (rule: default-accept)
Click to expand...
 
Stoiko Ivanov said:
The logs are missing the information about the postfix instance which is sending the mail out - use the log-tracker or search your logs to find out what happened with the queue-id 4BEF42C142E :
Click to expand...

This Delivers the email to an onward mail server that runs Postfix, I was able to grep and get the Following information

Code: 
syslog.10:Aug  3 12:44:50 one postfix/smtpd[10796]: 4BEF42C142E: client=localhost.localdomain[127.0.0.1], orig_client=mx98.a.outbound.createsend.com[203.55.21.98]
syslog.10:Aug  3 12:44:50 one postfix/cleanup[10773]: 4BEF42C142E: message-id=<cm.1714344065348.jkhyujn.ojidrjduyy.r@cmail19.com>
syslog.10:Aug  3 12:44:50 one postfix/qmgr[7230]: 4BEF42C142E: from=<sender@remote-end>, size=37656, nrcpt=1 (queue active)
syslog.10:Aug  3 12:44:50 one pmg-smtp-filter[11084]: 2C14145F27B967346FB: accept mail to <viec.jalandhar@vieceducation.com> (4BEF42C142E) (rule: default-accept)
syslog.10:Aug  3 12:44:50 one postfix/smtp[11056]: 4BEF42C142E: to=<reciever@client-domain>, relay=MAIL-SERVER[IP.ADDRESS]:25, delay=0.22, delays=0.1/0/0.05/0.08, dsn=2.0.0, status=sent (250 2.0.0 Ok: queued as DFF9321270)
syslog.10:Aug  3 12:44:50 one postfix/qmgr[7230]: 4BEF42C142E: removed

This helped me get a Remote Queue Email ID as DFF9321270 << sadly on the onward server I can't see it, so analysing where the gap is.
 
You must log in or register to reply here.
Top Bottom