Queued/Accepted

thebiggeek

Member
Jul 23, 2020
41
3
13
51
A few of our senders (while they exist on Whitelist, also their SA Score is either 0 or 1) are getting queued as QUEUED/ACCEPTED. I am unable to locate where these emails are, and here are some obfuscated headers for you to see - I can't locate where these emails are going


Code:
Aug 3 12:44:44 one postfix/smtpd[11065]: connect from mx98.a.outbound.createsend.com[203.55.21.98]
Aug 3 12:44:45 one postfix/smtpd[11065]: F21372C00BF: client=mx98.a.outbound.createsend.com[203.55.21.98]
Aug 3 12:44:46 one postfix/smtpd[11065]: D458C2C1420: client=mx98.a.outbound.createsend.com[203.55.21.98]
Aug 3 12:44:47 one postfix/cleanup[9710]: D458C2C1420: info: header Subject: RMIT | Important Update from mx98.a.outbound.createsend.com[203.55.21.98]; from=<sender-alias@sender-domain> to=<reciever@client-domain> proto=ESMTP helo=<mx98.a.outbound.createsend.com>
Aug 3 12:44:47 one postfix/cleanup[9710]: D458C2C1420: info: header From: "SENDER-NAME" <sender@remote-end> from mx98.a.outbound.createsend.com[203.55.21.98]; from=<sender-alias@sender-domain> to=<reciever@client-domain> proto=ESMTP helo=<mx98.a.outbound.createsend.com>
Aug 3 12:44:47 one postfix/cleanup[9710]: D458C2C1420: info: header To: "CLIENT" <reciever@client-domain> from mx98.a.outbound.createsend.com[203.55.21.98]; from=<sender-alias@sender-domain> to=<reciever@client-domain> proto=ESMTP helo=<mx98.a.outbound.createsend.com>
Aug 3 12:44:47 one postfix/cleanup[9710]: D458C2C1420: message-id=<cm.1714344065348.jkhyujn.ojidrjduyy.r@cmail19.com>
Aug 3 12:44:47 one postfix/qmgr[7230]: D458C2C1420: from=<sender-alias@sender-domain>, size=35968, nrcpt=1 (queue active)
Aug 3 12:44:47 one pmg-smtp-filter[11084]: 2C14145F27B967346FB: new mail message-id=<cm.1714344065348.jkhyujn.ojidrjduyy.r@cmail19.com>#012
Aug 3 12:44:47 one postfix/smtpd[11065]: 6DE8C2C1424: client=mx98.a.outbound.createsend.com[203.55.21.98]
Aug 3 12:44:48 one postfix/smtpd[11065]: 0A55C2C1428: client=mx98.a.outbound.createsend.com[203.55.21.98]
Aug 3 12:44:48 one postfix/smtpd[11065]: disconnect from mx98.a.outbound.createsend.com[203.55.21.98] ehlo=1 mail=4 rcpt=4 data=4 quit=1 commands=14
Aug 3 12:44:50 one pmg-smtp-filter[11084]: 2C14145F27B967346FB: SA score=3/5 time=2.961 bayes=undefined autolearn=no autolearn_force=no hits=AWL(1.943),DCC_REPUT_70_89(0.1),DKIMWL_WL_MED(-0.001),DKIM_SIGNED(0.1),DKIM_VALID(-0.1),DKIM_VALID_AU(-0.1),HEADER_FROM_DIFFERENT_DOMAINS(0.001),HTML_IMAGE_RATIO_06(0.001),HTML_MESSAGE(0.001),MIME_QP_LONG_LINE(0.001),RCVD_IN_DNSWL_NONE(-0.0001),RCVD_IN_MSPIKE_H2(-0.001),RCVD_IN_SORBS_PROBLEMS(0.5),SPF_HELO_NONE(0.001),SPF_PASS(-0.001),T_KAM_HTML_FONT_INVALID(0.01),T_REMOTE_IMAGE(0.01),URIBL_GREY(1.084)
Aug 3 12:44:50 one pmg-smtp-filter[11084]: 2C14145F27B967346FB: accept mail to <reciever@client-domain> (4BEF42C142E) (rule: default-accept)
Aug 3 12:44:50 one pmg-smtp-filter[11084]: 2C14145F27B967346FB: processing time: 3.193 seconds (2.961, 0.034, 0)
Aug 3 12:44:50 one postfix/lmtp[10782]: D458C2C1420: to=<reciever@client-domain>, relay=127.0.0.1[127.0.0.1]:10024, delay=3.6, delays=0.33/0/0.02/3.2, dsn=2.5.0, status=sent (250 2.5.0 OK (2C14145F27B967346FB))
Aug 3 12:44:50 one postfix/qmgr[7230]: D458C2C1420: removed
 
The logs are missing the information about the postfix instance which is sending the mail out - use the log-tracker or search your logs to find out what happened with the queue-id 4BEF42C142E :
Aug 3 12:44:50 one pmg-smtp-filter[11084]: 2C14145F27B967346FB: accept mail to <reciever@client-domain> (4BEF42C142E) (rule: default-accept)
 
The logs are missing the information about the postfix instance which is sending the mail out - use the log-tracker or search your logs to find out what happened with the queue-id 4BEF42C142E :

This Delivers the email to an onward mail server that runs Postfix, I was able to grep and get the Following information

Code:
syslog.10:Aug  3 12:44:50 one postfix/smtpd[10796]: 4BEF42C142E: client=localhost.localdomain[127.0.0.1], orig_client=mx98.a.outbound.createsend.com[203.55.21.98]
syslog.10:Aug  3 12:44:50 one postfix/cleanup[10773]: 4BEF42C142E: message-id=<cm.1714344065348.jkhyujn.ojidrjduyy.r@cmail19.com>
syslog.10:Aug  3 12:44:50 one postfix/qmgr[7230]: 4BEF42C142E: from=<sender@remote-end>, size=37656, nrcpt=1 (queue active)
syslog.10:Aug  3 12:44:50 one pmg-smtp-filter[11084]: 2C14145F27B967346FB: accept mail to <viec.jalandhar@vieceducation.com> (4BEF42C142E) (rule: default-accept)
syslog.10:Aug  3 12:44:50 one postfix/smtp[11056]: 4BEF42C142E: to=<reciever@client-domain>, relay=MAIL-SERVER[IP.ADDRESS]:25, delay=0.22, delays=0.1/0/0.05/0.08, dsn=2.0.0, status=sent (250 2.0.0 Ok: queued as DFF9321270)
syslog.10:Aug  3 12:44:50 one postfix/qmgr[7230]: 4BEF42C142E: removed

This helped me get a Remote Queue Email ID as DFF9321270 << sadly on the onward server I can't see it, so analysing where the gap is.
 

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!