tickets #111188
closedmirrorcache@localhost
0%
Description
Every 15mins, anna/elsa receives a connection from mirrorcache-us.infra.opensuse.org[192.168.67.12], which is refused with "Relay access denied" because that network is not known. The mail is from mirrorcache@localhost to mirrorcache@localhost which also sounds pretty silly :-)
After one or two retries, the mail is then delivered from mirrorcache.infra.opensuse.org[192.168.47.23] (i.e. a known network), but it is immediately dropped as non-deliverable "mail for localhost loops back to myself".
I tried to log on to mirrorcache.infra.opensuse.org to have a look at the postfix config, but was unable to.
Updated by pjessen almost 2 years ago
- Private changed from Yes to No
The issues as I see them -
- "new" network 192.168.67.0/24 - maybe mails should not be sent from this?
- sender/recipient the same
- sender/recipient @localhost
- no access to mirrorcache.i.o.o
- general postfix config needs revisiting.
Updated by andriinikitin almost 2 years ago
- Assignee changed from andriinikitin to pjessen
- Private changed from No to Yes
pjessen wrote:
Every 15mins, anna/elsa receives a connection from mirrorcache-us.infra.opensuse.org[192.168.67.12], which is refused with "Relay access denied" because that network is not known. The mail is from mirrorcache@localhost to mirrorcache@localhost which also sounds pretty silly :-)
After one or two retries, the mail is then delivered from mirrorcache.infra.opensuse.org[192.168.47.23] (i.e. a known network), but it is immediately dropped as non-deliverable "mail for localhost loops back to myself".
I tried to log on to mirrorcache.infra.opensuse.org to have a look at the postfix config, but was unable to.
I am not good with access management, but you should be able to ssh to mirrorcache-us from provo-mirror.opensuse.org. Let me know if that doesn't work, maybe we can engage lars with this.
Updated by pjessen almost 2 years ago
- Private changed from Yes to No
andriinikitin wrote:
pjessen wrote:
Every 15mins, anna/elsa receives a connection from mirrorcache-us.infra.opensuse.org[192.168.67.12], which is refused with "Relay access denied" because that network is not known. The mail is from mirrorcache@localhost to mirrorcache@localhost which also sounds pretty silly :-)
After one or two retries, the mail is then delivered from mirrorcache.infra.opensuse.org[192.168.47.23] (i.e. a known network), but it is immediately dropped as non-deliverable "mail for localhost loops back to myself".
I tried to log on to mirrorcache.infra.opensuse.org to have a look at the postfix config, but was unable to.I am not good with access management, but you should be able to ssh to mirrorcache-us from provo-mirror.opensuse.org. Let me know if that doesn't work, maybe we can engage lars with this.
I'll try accessing it from provo-mirror, but shouldn't it just work over our VPN?
I thought it was a routing issue with the new network, but I see that route is added.
ssh from provo-mirror also fails, it asks for a password.
There must be something missing on mirrorcache-us, I think ?
I was not aware of that network, 192.168.67.0/24, but I guess it is safe to add it to anna/elsa.
Updated by cboltz almost 2 years ago
pjessen wrote:
andriinikitin wrote:
I'll try accessing it from provo-mirror, but shouldn't it just work over our VPN?
It does, no need to go via provo-mirror. However...
ssh from provo-mirror also fails, it asks for a password.
... that's also what I see. Wild guess - nobody did run the initial salt highstate on mirrorcache-us yet? (Andrii, if I'm correct, please do that - maybe first with test=True to see what would be changed.)
Updated by andriinikitin 5 months ago
- Status changed from New to In Progress
- Assignee changed from andriinikitin to crameleon
Somehow this ticket got lost and I didn't remember it at all.
I've disabled problem cron job on mirrorcache-us-db and it shouldn't try to send spam every 15 min anymore.
Please feel free to run required/missing salt commands or write them down here and assign the ticket back to me and I will run them.