Node2 not run Blacklist Rule!

haihonest83

Member
Aug 20, 2020
7
0
6
41
I config Promox Cluster success with node 1 is master and node2 is slave
1626748931918.png
I create Who Object --> Blacklist with Domain Blacklist.
1626749166252.png
1626749184444.png
I check from Checking Center
Node1 blacklist success:
1626749320874.png
But node2 not blacklist

1626749451438.png

Please help me!
 

Attachments

  • 1626749383054.png
    1626749383054.png
    68.1 KB · Views: 4
Please provide the logs of such a mail. You can see the complete log for a mail by double clicking on it in the tracking center.
 
Please provide the logs of such a mail. You can see the complete log for a mail by double clicking on it in the tracking center.
Thanks you for your answer!

1. Log from node1:
Jul 20 06:46:32 mailgw postfix/smtpd[12074]: warning: hostname bizcloud-uni-frankfurt.de does not resolve to address 46.101.103.88: Name or service not known
Jul 20 06:46:32 mailgw postfix/smtpd[12074]: connect from unknown[46.101.103.88]
Jul 20 06:46:35 mailgw postfix/smtpd[12074]: 11FF4810B7: client=unknown[46.101.103.88]
Jul 20 06:46:35 mailgw postfix/cleanup[11507]: 11FF4810B7: message-id=<20210719234754.1C0B264EC6A870D6@zenbuddy.co.uk>
Jul 20 06:46:35 mailgw postfix/smtpd[12074]: disconnect from unknown[46.101.103.88] ehlo=1 mail=1 rcpt=1 data=1 quit=1 commands=5
Jul 20 06:46:35 mailgw postfix/qmgr[28422]: 11FF4810B7: from=<china@zenbuddy.co.uk>, size=25297, nrcpt=1 (queue active)
Jul 20 06:46:35 mailgw pmg-smtp-filter[12347]: 8116760F60EDB792E6: new mail message-id=<20210719234754.1C0B264EC6A870D6@zenbuddy.co.uk>#012
Jul 20 06:46:37 mailgw pmg-smtp-filter[12347]: 8116760F60EDB792E6: SA score=1/5 time=1.665 bayes=0.00 autolearn=no autolearn_force=no hits=BAYES_00(-1.9),HTML_FONT_SIZE_LARGE(0.001),HTML_MESSAGE(0.001),KAM_COUK(0.85),KAM_DMARC_STATUS(0.01),MIME_HTML_ONLY(0.1),RDNS_NONE(0.793),SPF_HELO_NONE(0.001),SPF_SOFTFAIL(0.665),TO_NO_BRKTS_NORDNS_HTML(1.206),URIBL_BLOCKED(0.001),URI_WP_HACKED(0.001)
Jul 20 06:46:37 mailgw pmg-smtp-filter[12347]: 8116760F60EDB792E6: block mail to <andh@atvina.vn> (rule: Blacklist)
Jul 20 06:46:37 mailgw pmg-smtp-filter[12347]: 8116760F60EDB792E6: processing time: 1.716 seconds (1.665, 0.026, 0)
Jul 20 06:46:37 mailgw postfix/lmtp[12095]: 11FF4810B7: to=<andh@atvina.vn>, relay=127.0.0.1[127.0.0.1]:10024, delay=3.9, delays=2.2/0/0/1.7, dsn=2.7.0, status=sent (250 2.7.0 BLOCKED (8116760F60EDB792E6))
Jul 20 06:46:37 mailgw postfix/qmgr[28422]: 11FF4810B7: removed

2. Log from node2:
Jul 20 09:22:40 mailgw2 postfix/smtpd[18462]: warning: hostname bizcloud-uni-frankfurt.de does not resolve to address 46.101.103.88: Name or service not known
Jul 20 09:22:40 mailgw2 postfix/smtpd[18462]: connect from unknown[46.101.103.88]
Jul 20 09:22:42 mailgw2 postfix/smtpd[18462]: B28FB161F2E: client=unknown[46.101.103.88]
Jul 20 09:22:42 mailgw2 postfix/cleanup[15955]: B28FB161F2E: message-id=<20210720020315.4F7FE64EB19924ED@zenbuddy.co.uk>
Jul 20 09:22:43 mailgw2 postfix/smtpd[18462]: disconnect from unknown[46.101.103.88] ehlo=1 mail=1 rcpt=1 data=1 quit=1 commands=5
Jul 20 09:22:43 mailgw2 postfix/qmgr[26505]: B28FB161F2E: from=<china@zenbuddy.co.uk>, size=25321, nrcpt=1 (queue active)
Jul 20 09:22:43 mailgw2 pmg-smtp-filter[18309]: 161F6260F6337340709: new mail message-id=<20210720020315.4F7FE64EB19924ED@zenbuddy.co.uk>#012
Jul 20 09:22:49 mailgw2 pmg-smtp-filter[18309]: 161F6260F6337340709: SA score=1/5 time=5.763 bayes=0.00 autolearn=no autolearn_force=no hits=AWL(-0.057),BAYES_00(-1.9),HTML_FONT_SIZE_LARGE(0.001),HTML_MESSAGE(0.001),KAM_COUK(0.85),KAM_DMARC_STATUS(0.01),MIME_HTML_ONLY(0.1),RDNS_NONE(0.793),SPF_HELO_NONE(0.001),SPF_SOFTFAIL(0.665),TO_NO_BRKTS_NORDNS_HTML(1.206),URIBL_BLOCKED(0.001),URI_WP_HACKED(0.001)
Jul 20 09:22:49 mailgw2 postfix/smtpd[17227]: connect from localhost.localdomain[127.0.0.1]
Jul 20 09:22:49 mailgw2 postfix/smtpd[17227]: 1300F162194: client=localhost.localdomain[127.0.0.1], orig_client=unknown[46.101.103.88]
Jul 20 09:22:49 mailgw2 postfix/cleanup[15955]: 1300F162194: message-id=<20210720020315.4F7FE64EB19924ED@zenbuddy.co.uk>
Jul 20 09:22:49 mailgw2 postfix/smtpd[17227]: disconnect from localhost.localdomain[127.0.0.1] ehlo=1 xforward=1 mail=1 rcpt=1 data=1 commands=5
Jul 20 09:22:49 mailgw2 pmg-smtp-filter[18309]: 161F6260F6337340709: accept mail to <info@innedvn.com> (1300F162194) (rule: default-accept)
Jul 20 09:22:49 mailgw2 postfix/qmgr[26505]: 1300F162194: from=<china@zenbuddy.co.uk>, size=26685, nrcpt=1 (queue active)
Jul 20 09:22:49 mailgw2 pmg-smtp-filter[18309]: 161F6260F6337340709: processing time: 5.816 seconds (5.763, 0.026, 0)
Jul 20 09:22:49 mailgw2 postfix/lmtp[13779]: B28FB161F2E: to=<info@innedvn.com>, relay=127.0.0.1[127.0.0.1]:10024, delay=7.7, delays=1.9/0/0/5.8, dsn=2.5.0, status=sent (250 2.5.0 OK (161F6260F6337340709))
Jul 20 09:22:49 mailgw2 postfix/qmgr[26505]: B28FB161F2E: removed
Jul 20 09:22:49 mailgw2 postfix/smtp[10689]: 1300F162194: to=<info@innedvn.com>, relay=103.57.223.50[103.57.223.50]:25, delay=0.2, delays=0/0/0.05/0.14, dsn=2.0.0, status=sent (250 2.0.0 Ok: queued as 38857C00FD416)
Jul 20 09:22:49 mailgw2 postfix/qmgr[26505]: 1300F162194: removed

Node2 using default-accept.
 
Is the state for the node2 still syncing? If so, that is likely where the issue is and node2 didn't get the blacklist sync'd . If you check node2's blacklist settings, does it have the blacklist setup with that domain? If not, you need to find out what is causing the syncing issue.
 
Is the state for the node2 still syncing? If so, that is likely where the issue is and node2 didn't get the blacklist sync'd . If you check node2's blacklist settings, does it have the blacklist setup with that domain? If not, you need to find out what is causing the syncing issue.
Thanks! I check node2's blacklist setting domain sync success.
 
The nodes are in syncing state - meaning the cluster synchronization does not seem to work properly

-> check the journal on both nodes for messages from pmgmirror and pmgtunnel.
Once the issues have been resolved the rule-system should get synchronized correctly

The rules displayed on the GUI are always read from the master - they do not reflect the current state on a node if cluster synchronization is not working.

I hope this helps!
 
The nodes are in syncing state - meaning the cluster synchronization does not seem to work properly

-> check the journal on both nodes for messages from pmgmirror and pmgtunnel.
Once the issues have been resolved the rule-system should get synchronized correctly

The rules displayed on the GUI are always read from the master - they do not reflect the current state on a node if cluster synchronization is not working.

I hope this helps!
Thanks!
I check pmgmirror and pmgtunnel with cluster failt:

pmgmirror[1078]: database sync 'mailgw2' failed - large time difference (> 99 seconds) - not syncing
/var/log/daemon.log.1:Aug 2 01:02:29 mailgw2 pmgmirror[1608]: database sync 'mailgw4' failed - DBI connect('dbname=Proxmox_ruledb;host=/run/pmgtunnel;port=5;','root',...) failed: could not connect to server: No such file or directory#012#011Is the server running locally and accepting#012#011connections on Unix domain socket "/run/pmgtunnel/.s.PGSQL.5"? at /usr/share/perl5/PMG/DBTools.pm line 68.

Please helpe me!
 
database sync 'mailgw2' failed - large time difference (> 99 seconds) - not syncing
make sure all your nodes have synchronized time! (install chrony/another ntpd and configure them to connect to the same NTP server)

/var/log/daemon.log.1:Aug 2 01:02:29 mailgw2 pmgmirror[1608]: database sync 'mailgw4' failed - DBI connect('dbname=Proxmox_ruledb;host=/run/pmgtunnel;port=5;','root',...) failed: could not connect to server: No such file or directory#012#011Is the server running locally and accepting#012#011connections on Unix domain socket "/run/pmgtunnel/.s.PGSQL.5"? at /usr/share/perl5/PMG/DBTools.pm line 68.
seems like pmgtunnel is not working - check the complete logs of pmgtunnel
make sure you can ssh between all your nodes as root without entering a password

I hope this helps!
 
make sure all your nodes have synchronized time! (install chrony/another ntpd and configure them to connect to the same NTP server)


seems like pmgtunnel is not working - check the complete logs of pmgtunnel
make sure you can ssh between all your nodes as root without entering a password

I hope this helps!
Thanks!
I update NTP and nodes master is actived.
I delete slave node have ID is 4. After I reinstall slave and rejoin slave have id is 5.

I check log pmgmirror at slave node have error sync node 4:

Aug 11 09:34:44 mailgw3.inet.vn pmgmirror[1474]: syncing deleted node 4 from master 'IP'
Aug 11 09:34:44 mailgw3.inet.vn pmgmirror[1474]: database sync 'mailgw' failed - command 'rsync '--rsh=ssh -l root -o BatchMode=yes -o HostKeyAlias=mailgw' -q -aq --timeout 10 '[IP]:/var/spool/pmg/cluster/4/' /var/spool/pmg/cluster/4 --include spam/ --include 'spam/*' --include 'spam/*/*' --include virus/ --include 'virus/*' --include 'virus/*/*' --exclude '*'' failed: exit code 23

Please help me!
 
seems like pmgtunnel is not working - check the complete logs of pmgtunnel


apart from that - on what platform are the PMG installations running? bare-metal, VM, container?
If it's a container on PVE make sure that it's unprivileged and that nesting is activated

else - check whether you can ssh as root from one node to the other (and the other way around)
 

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!