Page 1 of 1

Lots of important dropped emails

Posted: 15 Mar 2019 13:35
by SharazJek
I am getting actual letters in the mail from more than one banking or govt institution saying that my email address on file is being returned to them undelivered. Or, when i log onto several of my banking websites, they keep making me verify my email address. of course ebay, paypal, amazon all use this same email, and i get email from those, so its clearly not a problem with the account itself but a problem with the SMTP conversation between the sending server and my own EFA.

what debugging can i turn on to troubleshoot this?

is EFA being too selective with TLS ciphers?

Re: Lots of important dropped emails

Posted: 15 Mar 2019 14:19
by shawniverson
Can you get your hands on an NDR from one of those folks?

Re: Lots of important dropped emails

Posted: 15 Mar 2019 14:24
by SharazJek
unlikely, its Bank Of America and Chase, And Texas Department of Public Safety.

so verbose debugging on my end is probably what it is going to have to be.

Re: Lots of important dropped emails

Posted: 17 Mar 2019 11:52
by shawniverson
Just a thought, disable the following in /etc/postfix/main.cf and reload postfix.

Code: Select all

#smtpd_tls_mandatory_protocols = !SSLv2,!SSLv3
#smtp_tls_mandatory_protocols = !SSLv2,!SSLv3
#smtpd_tls_protocols = !SSLv2,!SSLv3
#smtp_tls_protocols = !SSLv2,!SSLv3
#tls_preempt_cipherlist = yes
#tls_medium_cipherlist = ECDSA+AESGCM:ECDH+AESGCM:DH+AESGCM:ECDSA+AES:ECDH+AES:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS
#smtpd_tls_ciphers = medium
I'm considering removing these anyway since the postfix community advises against modifying the protocols and cipherlists except in very specialized cases (such as mandatory encryption between two parties).

Re: Lots of important dropped emails

Posted: 20 Mar 2019 19:50
by phideauxx
I am having this same problem that started just in the last couple of months with emails from ringcentral.com. But only the notification emails not the marketing stuff. Here are some logs after enabling debugging for ringcentral.com. I tried disabling the entries in main.cf as described with no change. Any other ideas?

Non-working version

Code: Select all

Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: connect from sjc01-c01-mrf02.ringcentral.com[199.255.122.183]
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: match_hostname: smtpd_client_event_limit_exceptions: sjc01-c01-mrf02.ringcentral.com ~? 127.0.0.0/8
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: match_list_match: sjc01-c01-mrf02.ringcentral.com: no match
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: milter8_conn_event: milter inet:localhost:8891: connect sjc01-c01-mrf02.ringcentral.com/199.255.122.183
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: milter8_conn_event: milter inet:localhost:8893: connect sjc01-c01-mrf02.ringcentral.com/199.255.122.183
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: > sjc01-c01-mrf02.ringcentral.com[199.255.122.183]: 220 mailfilter1.mycompany.com ESMTP Postfix
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: < sjc01-c01-mrf02.ringcentral.com[199.255.122.183]: EHLO sjc01-c01-mrf02.ringcentral.com
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: milter8_helo_event: milter inet:localhost:8891: helo sjc01-c01-mrf02.ringcentral.com
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: milter8_helo_event: milter inet:localhost:8893: helo sjc01-c01-mrf02.ringcentral.com
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: match_list_match: sjc01-c01-mrf02.ringcentral.com: no match
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: > sjc01-c01-mrf02.ringcentral.com[199.255.122.183]: 250-mailfilter1.mycompany.com
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: > sjc01-c01-mrf02.ringcentral.com[199.255.122.183]: 250-PIPELINING
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: > sjc01-c01-mrf02.ringcentral.com[199.255.122.183]: 250-SIZE 1024000000
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: > sjc01-c01-mrf02.ringcentral.com[199.255.122.183]: 250-ETRN
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: > sjc01-c01-mrf02.ringcentral.com[199.255.122.183]: 250-STARTTLS
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: > sjc01-c01-mrf02.ringcentral.com[199.255.122.183]: 250-AUTH CRAM-MD5 PLAIN DIGEST-MD5 LOGIN
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: > sjc01-c01-mrf02.ringcentral.com[199.255.122.183]: 250-AUTH=CRAM-MD5 PLAIN DIGEST-MD5 LOGIN
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: > sjc01-c01-mrf02.ringcentral.com[199.255.122.183]: 250-ENHANCEDSTATUSCODES
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: > sjc01-c01-mrf02.ringcentral.com[199.255.122.183]: 250-8BITMIME
Mar 20 13:25:34 mailfilter1 postfix/smtpd[3630]: > sjc01-c01-mrf02.ringcentral.com[199.255.122.183]: 250 DSN
...that's the last entry for this series

Working Received email

Code: Select all

Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: connect from cm.ringcentral.com[192.28.151.214]
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: match_hostname: smtpd_client_event_limit_exceptions: cm.ringcentral.com ~? 127.0.0.0/8
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: match_list_match: cm.ringcentral.com: no match
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: milter8_conn_event: milter inet:localhost:8891: connect cm.ringcentral.com/192.28.151.214
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: milter8_conn_event: milter inet:localhost:8893: connect cm.ringcentral.com/192.28.151.214
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 220 mailfilter1.mycompany.com ESMTP Postfix
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: < cm.ringcentral.com[192.28.151.214]: EHLO cm.ringcentral.com
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: milter8_helo_event: milter inet:localhost:8891: helo cm.ringcentral.com
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: milter8_helo_event: milter inet:localhost:8893: helo cm.ringcentral.com
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: match_list_match: cm.ringcentral.com: no match
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250-mailfilter1.mycompany.com
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250-PIPELINING
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250-SIZE 1024000000
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250-ETRN
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250-STARTTLS
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250-AUTH CRAM-MD5 PLAIN DIGEST-MD5 LOGIN
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250-AUTH=CRAM-MD5 PLAIN DIGEST-MD5 LOGIN
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250-ENHANCEDSTATUSCODES
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250-8BITMIME
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250 DSN
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: < cm.ringcentral.com[192.28.151.214]: STARTTLS
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 220 2.0.0 Ready to start TLS
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: Anonymous TLS connection established from cm.ringcentral.com[192.28.151.214]: TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: < cm.ringcentral.com[192.28.151.214]: EHLO cm.ringcentral.com
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: milter8_helo_event: milter inet:localhost:8891: helo cm.ringcentral.com
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: milter8_helo_event: milter inet:localhost:8893: helo cm.ringcentral.com
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: match_list_match: cm.ringcentral.com: no match
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250-mailfilter1.mycompany.com
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250-PIPELINING
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250-SIZE 1024000000
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250-ETRN
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250-AUTH CRAM-MD5 PLAIN DIGEST-MD5 LOGIN
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250-AUTH=CRAM-MD5 PLAIN DIGEST-MD5 LOGIN
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250-ENHANCEDSTATUSCODES
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250-8BITMIME
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 250 DSN
Mar 20 13:26:59 mailfilter1 postfix/smtpd[5069]: < cm.ringcentral.com[192.28.151.214]: MAIL FROM:<075-DTB-715.0.471503.0.0.103480.9.20821956@cm.ringcentral.com>
... Get mail stuff
Mar 20 13:27:05 mailfilter1 postfix/smtpd[5069]: < cm.ringcentral.com[192.28.151.214]: QUIT
Mar 20 13:27:05 mailfilter1 postfix/smtpd[5069]: > cm.ringcentral.com[192.28.151.214]: 221 2.0.0 Bye
Mar 20 13:27:05 mailfilter1 postfix/smtpd[5069]: match_hostname: smtpd_client_event_limit_exceptions: cm.ringcentral.com ~? 127.0.0.0/8
Mar 20 13:27:05 mailfilter1 postfix/smtpd[5069]: match_list_match: cm.ringcentral.com: no match
Mar 20 13:27:05 mailfilter1 postfix/smtpd[5069]: disconnect from cm.ringcentral.com[192.28.151.214] ehlo=2 starttls=1 mail=2 rcpt=2 data=2 quit=1 commands=10

Re: Lots of important dropped emails

Posted: 21 Mar 2019 12:25
by SharazJek
i made the changes too, with no change. TXDPS emails still not getting thru, et al.

Re: Lots of important dropped emails

Posted: 22 Mar 2019 10:38
by shawniverson
Going to need something to work from here....more mail logs, if possible.

The logs above just demonstrate an incomplete SMTP conversation (nothing after EHLO) compared to a complete SMTP conversation, but no reason as to why.

Re: Lots of important dropped emails

Posted: 22 Mar 2019 12:43
by SharazJek
can you recommend debug settings we should set in order to get some useful data for you?

Re: Lots of important dropped emails

Posted: 23 Mar 2019 00:20
by shawniverson
SharazJek wrote: 22 Mar 2019 12:43 can you recommend debug settings we should set in order to get some useful data for you?
Postfix debugging isn't going to help much here...what do your current maillogs show?

Re: Lots of important dropped emails

Posted: 28 Mar 2019 22:32
by phideauxx
Here's a more complete maillog with postfix debug_peer_level set to 10 and with ringcentral.com added to debug_peer_list in etc/postfix/main.cf

Last time I had done a grep for ringcentral.com so it left out the lines in-between, but I don't know that this is any better.

Code: Select all

Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: connect from sjc01-c01-mrf01.ringcentral.com[199.255.122.182]
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: smtp_stream_setup: maxtime=300 enable_deadline=0
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: match_hostname: smtpd_client_event_limit_exceptions: sjc01-c01-mrf01.ringcentral.com ~? 127.0.0.0/8
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: match_hostaddr: smtpd_client_event_limit_exceptions: 199.255.122.182 ~? 127.0.0.0/8
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: match_list_match: sjc01-c01-mrf01.ringcentral.com: no match
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: match_list_match: 199.255.122.182: no match
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: send attr request = connect
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: send attr ident = smtp:199.255.122.182
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: vstream_fflush_some: fd 24 flush 44
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: vstream_buf_get_ready: fd 24 got 25
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: private/anvil: wanted attribute: status
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: input attribute name: status
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: input attribute value: 0
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: private/anvil: wanted attribute: count
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: input attribute name: count
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: input attribute value: 1
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: private/anvil: wanted attribute: rate
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: input attribute name: rate
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: input attribute value: 1
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: private/anvil: wanted attribute: (list terminator)
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: input attribute name: (end)
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: report connect to all milters
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter_macro_lookup: "j"
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter_macro_lookup: result "mailfilter1.mycompany.com"
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter_macro_lookup: "{daemon_name}"
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter_macro_lookup: result "mailfilter1.mycompany.com"
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter_macro_lookup: "v"
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter_macro_lookup: result "Postfix 3.1.3"
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_connect: non-protocol events for protocol version 6:
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_connect: transport=inet endpoint=localhost:8891
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: trying... [127.0.0.1]
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: vstream_tweak_tcp: TCP_MAXSEG 32741
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: fd=23: stream buffer size old=0 new=65482
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_connect: my_version=0x6
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_connect: my_actions=0x1ff SMFIF_ADDHDRS SMFIF_CHGBODY SMFIF_ADDRCPT SMFIF_DELRCPT SMFIF_CHGHDRS SMFIF_QUARANTINE SMFIF_CHGFROM SMFIF_ADDRCPT_PAR SMFIF_SETSYMLIST
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_connect: my_events=0x1fffff SMFIP_NOCONNECT SMFIP_NOHELO SMFIP_NOMAIL SMFIP_NORCPT SMFIP_NOBODY SMFIP_NOHDRS SMFIP_NOEOH SMFIP_NR_HDR SMFIP_NOUNKNOWN SMFIP_NODATA SMFIP_SKIP SMFIP_RCPT_REJ SMFIP_NR_CONN SMFIP_NR_HELO SMFIP_NR_MAIL SMFIP_NR_RCPT SMFIP_NR_DATA SMFIP_NR_UNKN SMFIP_NR_EOH SMFIP_NR_BODY SMFIP_HDR_LEADSPC
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: vstream_fflush_some: fd 23 flush 17
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: vstream_buf_get_ready: fd 23 got 17
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_connect: milter inet:localhost:8891 version 6
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_connect: events SMFIP_NOHELO SMFIP_NOUNKNOWN SMFIP_NODATA SMFIP_SKIP SMFIP_HDR_LEADSPC
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_connect: requests SMFIF_ADDHDRS SMFIF_CHGHDRS SMFIF_SETSYMLIST
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_conn_event: milter inet:localhost:8891: connect sjc01-c01-mrf01.ringcentral.com/199.255.122.182
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: event: SMFIC_CONNECT; macros: {j}=mailfilter1.mycompany.com {daemon_name}=mailfilter1.mycompany.com {v}=Postfix 3.1.3
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: vstream_fflush_some: fd 23 flush 162
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: vstream_buf_get_ready: fd 23 got 5
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: reply: SMFIR_CONTINUE data 0 bytes
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_connect: non-protocol events for protocol version 6:
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_connect: transport=inet endpoint=localhost:8893
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: trying... [127.0.0.1]
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: vstream_tweak_tcp: TCP_MAXSEG 32741
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: fd=25: stream buffer size old=0 new=65482
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_connect: my_version=0x6
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_connect: my_actions=0x1ff SMFIF_ADDHDRS SMFIF_CHGBODY SMFIF_ADDRCPT SMFIF_DELRCPT SMFIF_CHGHDRS SMFIF_QUARANTINE SMFIF_CHGFROM SMFIF_ADDRCPT_PAR SMFIF_SETSYMLIST
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_connect: my_events=0x1fffff SMFIP_NOCONNECT SMFIP_NOHELO SMFIP_NOMAIL SMFIP_NORCPT SMFIP_NOBODY SMFIP_NOHDRS SMFIP_NOEOH SMFIP_NR_HDR SMFIP_NOUNKNOWN SMFIP_NODATA SMFIP_SKIP SMFIP_RCPT_REJ SMFIP_NR_CONN SMFIP_NR_HELO SMFIP_NR_MAIL SMFIP_NR_RCPT SMFIP_NR_DATA SMFIP_NR_UNKN SMFIP_NR_EOH SMFIP_NR_BODY SMFIP_HDR_LEADSPC
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: vstream_fflush_some: fd 25 flush 17
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: vstream_buf_get_ready: fd 25 got 17
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_connect: milter inet:localhost:8893 version 6
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_connect: events SMFIP_NOBODY SMFIP_NOUNKNOWN SMFIP_NODATA SMFIP_SKIP
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_connect: requests SMFIF_ADDHDRS SMFIF_QUARANTINE
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_conn_event: milter inet:localhost:8893: connect sjc01-c01-mrf01.ringcentral.com/199.255.122.182
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: event: SMFIC_CONNECT; macros: {j}=mailfilter1.mycompany.com {daemon_name}=mailfilter1.mycompany.com {v}=Postfix 3.1.3
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: vstream_fflush_some: fd 25 flush 162
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: vstream_buf_get_ready: fd 25 got 5
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: reply: SMFIR_CONTINUE data 0 bytes
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: > sjc01-c01-mrf01.ringcentral.com[199.255.122.182]: 220 mailfilter1.mycompany.com ESMTP Postfix
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: xsasl_cyrus_server_create: SASL service=smtp, realm=(null)
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: name_mask: noanonymous
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: watchdog_pat: 0x7f486b2b6b40
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: vstream_fflush_some: fd 9 flush 51
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: vstream_buf_get_ready: fd 9 got 38
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: < sjc01-c01-mrf01.ringcentral.com[199.255.122.182]: EHLO sjc01-c01-mrf01.ringcentral.com
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: report helo to all milters
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter_macro_lookup: "{tls_version}"
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter_macro_lookup: "{cipher}"
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter_macro_lookup: "{cipher_bits}"
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter_macro_lookup: "{cert_subject}"
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter_macro_lookup: "{cert_issuer}"
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_helo_event: milter inet:localhost:8891: helo sjc01-c01-mrf01.ringcentral.com
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: event: SMFIC_HELO; macros: (none)
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: skipping event SMFIC_HELO for milter inet:localhost:8891
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: milter8_helo_event: milter inet:localhost:8893: helo sjc01-c01-mrf01.ringcentral.com
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: event: SMFIC_HELO; macros: (none)
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: vstream_fflush_some: fd 25 flush 43
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: vstream_buf_get_ready: fd 25 got 5
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: reply: SMFIR_CONTINUE data 0 bytes
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: match_list_match: sjc01-c01-mrf01.ringcentral.com: no match
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: match_list_match: 199.255.122.182: no match
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: > sjc01-c01-mrf01.ringcentral.com[199.255.122.182]: 250-mailfilter1.mycompany.com
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: > sjc01-c01-mrf01.ringcentral.com[199.255.122.182]: 250-PIPELINING
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: > sjc01-c01-mrf01.ringcentral.com[199.255.122.182]: 250-SIZE 1024000000
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: > sjc01-c01-mrf01.ringcentral.com[199.255.122.182]: 250-ETRN
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: > sjc01-c01-mrf01.ringcentral.com[199.255.122.182]: 250-STARTTLS
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: > sjc01-c01-mrf01.ringcentral.com[199.255.122.182]: 250-AUTH CRAM-MD5 PLAIN DIGEST-MD5 LOGIN
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: > sjc01-c01-mrf01.ringcentral.com[199.255.122.182]: 250-AUTH=CRAM-MD5 PLAIN DIGEST-MD5 LOGIN
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: > sjc01-c01-mrf01.ringcentral.com[199.255.122.182]: 250-ENHANCEDSTATUSCODES
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: > sjc01-c01-mrf01.ringcentral.com[199.255.122.182]: 250-8BITMIME
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: > sjc01-c01-mrf01.ringcentral.com[199.255.122.182]: 250 DSN
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: watchdog_pat: 0x7f486b2b6b40
Mar 28 17:07:39 mailfilter1 postfix/smtpd[13122]: vstream_fflush_some: fd 9 flush 230

Re: Lots of important dropped emails

Posted: 03 Apr 2019 12:15
by shawniverson
I am seeing a lot of "no match" for the milter you are running.

Have you checked to see if the milter is terminating the conversation?

Re: Lots of important dropped emails

Posted: 09 Apr 2019 21:38
by phideauxx
I solved my problem. Not an EFA issue at all. I remembered this morning that the day we stopped getting emails from RingCentral was the day we had a firmware update to our SD-WAN environment. So in our case apparently, the RingCentral mail servers use the same IP blocks as some of their other voice services so the "intelligent" SD-WAN was overriding our internal-external IP mapping and using a different multi-pathing IP for our responses. So our responses were coming from a different IP than what they sent to, so it was ignored and they would continue to try again and from their perspective, never get a response back from our server. We had to create specific rules between the internal IP of our mailfilter and the IP subnets used by RingCentral to send notification emails.

The marketing emails that we did receive were from a different IP block that was not classified as voice services. For reference we are using VeloCloud (recently purchased by VMware) for our SD-WAN.
Sorry SharazJek, I'm not sure my fix will help you. If I were to use my work email for personal stuff I could check if we can get email from TXDPS as I am also in Texas. If you know of an easy way to get them to send me email I'm happy to test to see if it gets through to me.

Re: Lots of important dropped emails

Posted: 14 Apr 2019 17:19
by SharazJek
the easiest to "control" emails that i am not getting, as the TxDPS e-reminders for your vehicle state registration. you can put in the last 4 ofyour VIN and licnense tag here, and the email is supposed show up in a couple minutes:

https://renew.txdmv.gov/Renew/EReminderServlet?XXtask=1

Re: Lots of important dropped emails

Posted: 22 Apr 2019 16:42
by phideauxx
Sorry, mine came through just fine. Maybe your maillog from /var/log/maillog will have other details mine did not.

Re: Lots of important dropped emails

Posted: 03 May 2019 12:13
by SharazJek
i built a brand new EFA VM and swapped it inplace of the one ive had for years, and logged into txdmv.gov and kicked off my reminder email. immediately got the a SSL disconnect.

i went back to my old EFA
1) disabled Letsencrypt
2) reconfigured my old GoDaddy SSL cert on postfix (and apache)

a few minutes later, the reminder email my txdmv.gov emails started coming in. i expect ill get emails from bankofamerica and other banks today.

Phideaux, were you using the default self-signed or other legit 3rd part, or LetsEncrypt for your SSL?