Jan 19 16:52:17 mail postfix/postscreen[19798]: CONNECT from [74.6.128.206]:39493 to [172.170.100.162]:25
Jan 19 16:52:23 mail postfix/postscreen[19798]: PASS OLD [74.6.128.206]:39493
Jan 19 16:52:23 mail postfix/smtpd[19808]: connect from sonic320-25.consmr.mail.bf2.yahoo.com[74.6.128.206]
Jan 19 16:52:24 mail postfix/smtpd[19808]: Anonymous TLS connection established from sonic320-25.consmr.mail.bf2.yahoo.com[74.6.128.206]: TLSv1.3 with cipher TLS_AES_128_GCM_SHA25 6 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256
Jan 19 16:52:25 mail postfix/smtpd[19808]: NOQUEUE: filter: RCPT from sonic320-25.consmr.mail.bf2.yahoo.com[74.6.128.206]: <ammarhaider177@yahoo.com>: Sender address triggers FILTER smtp-amavis:[127.0.0.1]:10026; from=<ammarhaider177@yahoo.com> to=<a@masodtex.online> proto=ESMTP helo=<sonic320-25.consmr.mail.bf2.yahoo.com>
Jan 19 16:52:25 mail postfix/smtpd[19808]: warning: permit_tls_clientcerts is requested, but "smtpd_tls_ask_ccert = no"
Jan 19 16:52:25 mail postfix/smtpd[19808]: NOQUEUE: filter: RCPT from sonic320-25.consmr.mail.bf2.yahoo.com[74.6.128.206]: <ammarhaider177@yahoo.com>: Sender address triggers FILTER smtp-amavis:[127.0.0.1]:10024; from=<ammarhaider177@yahoo.com> to=<a@masodtex.online> proto=ESMTP helo=<sonic320-25.consmr.mail.bf2.yahoo.com>
Jan 19 16:52:25 mail postfix/smtpd[19808]: 98F8A214DA44: client=sonic320-25.consmr.mail.bf2.yahoo.com[74.6.128.206]
Jan 19 16:52:26 mail postfix/cleanup[19812]: 98F8A214DA44: message-id=<2143337624.180628.1705665143196@mail.yahoo.com>
Jan 19 16:52:26 mail postfix/cleanup[19812]: 98F8A214DA44: warning: header Subject: 4 52 pm from sonic320-25.consmr.mail.bf2.yahoo.com[74.6.128.206]; from=<ammarhaider177@yahoo.co m> to=<a@masodtex.online> proto=ESMTP helo=<sonic320-25.consmr.mail.bf2.yahoo.com>
Jan 19 16:52:26 mail postfix/qmgr[10073]: 98F8A214DA44: from=<ammarhaider177@yahoo.com>, size=4898, nrcpt=1 (queue active)
Jan 19 16:52:26 mail amavis[29932]: (29932-01) ESMTP [127.0.0.1]:10024 /opt/zimbra/data/amavisd/tmp/amavis-20240119T165226-29932-Q2XAky6F: <ammarhaider177@yahoo.com> -> <a@masodtex.online> SIZE=4898 Received: from mail.masodtex.online ([127.0.0.1]) by localhost (mail.masodtex.online [127.0.0.1]) (amavis, port 10024) with ESMTP for <a@masodtex.online>; Fri, 19 Jan 2024 16:52:26 +0500 (PKT)
Jan 19 16:52:26 mail amavis[29932]: (29932-01) Checking: M-Q-igsE-RUy [74.6.128.206] <ammarhaider177@yahoo.com> -> <a@masodtex.online>
Jan 19 16:52:26 mail postfix/smtpd[19808]: disconnect from sonic320-25.consmr.mail.bf2.yahoo.com[74.6.128.206] ehlo=2 starttls=1 mail=1 rcpt=1 data=1 quit=1 commands=7
Jan 19 16:52:27 mail postfix/amavisd/smtpd[19815]: connect from localhost[127.0.0.1]
Jan 19 16:52:27 mail postfix/amavisd/smtpd[19815]: AE955214DA46: client=localhost[127.0.0.1]
Jan 19 16:52:27 mail postfix/cleanup[19812]: AE955214DA46: message-id=<2143337624.180628.1705665143196@mail.yahoo.com>
Jan 19 16:52:27 mail postfix/qmgr[10073]: AE955214DA46: from=<ammarhaider177@yahoo.com>, size=5872, nrcpt=1 (queue active)
Jan 19 16:52:27 mail amavis[29932]: (29932-01) M-Q-igsE-RUy FWD from <ammarhaider177@yahoo.com> -> <a@masodtex.online>, BODY=7BIT 250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as AE955214DA46
Jan 19 16:52:27 mail amavis[29932]: (29932-01) Passed CLEAN {RelayedInbound}, [74.6.128.206]:39493 [74.6.128.206] <ammarhaider177@yahoo.com> -> <a@masodtex.online>, Queue-ID: 98F8 A214DA44, Message-ID: <2143337624.180628.1705665143196@mail.yahoo.com>, mail_id: M-Q-igsE-RUy, Hits: 1.195, size: 4895, queued_as: AE955214DA46, dkim_sd=s2048:yahoo.com, 1558 ms
Jan 19 16:52:27 mail postfix/smtp[19813]: 98F8A214DA44: to=<a@masodtex.online>, relay=127.0.0.1[127.0.0.1]:10024, delay=2.4, delays=0.75/0.04/0.01/1.6, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as AE955214DA46)
Jan 19 16:52:27 mail postfix/qmgr[10073]: 98F8A214DA44: removed
Jan 19 16:52:27 mail amavis[29932]: (29932-01) extra modules loaded: Amavis/Lookup/Opaque.pm, Amavis/Out/SMTP/Protocol.pm, Amavis/Out/SMTP/Session.pm, Mozilla/CA.pm, unicore/lib/G c/Nd.pl
Jan 19 16:52:27 mail postfix/lmtp[19816]: AE955214DA46: to=<a@masodtex.online>, relay=mail.masodtex.online[172.170.100.162]:7025, delay=0.2, delays=0/0.04/0.09/0.07, dsn=2.1.5, st atus=sent (250 2.1.5 Delivery OK)
Jan 19 16:52:27 mail postfix/qmgr[10073]: AE955214DA46: removed
........................................................................................................
these are the logs related to a single mail send from ammarhaider177@yahoo.com to a@masodtex.online.
as per my understanding port 10024 is used when posftix try to communicate with amavisd, as you can see in these logs four times port 10024 is used. does this means that postfix is trying to connect to
amavisd four times for a single mail session for the purpose of antivirus and antispam scanning.
I am readlly confused about it, I would be very thankful to you if you please give me a brief description of every single line sequence wise so that I could fully understand the flow of mail through
different compoentns of postfix and amavisd
thanks and regards
Jan 19 16:52:23 mail postfix/postscreen[19798]: PASS OLD [74.6.128.206]:39493
Jan 19 16:52:23 mail postfix/smtpd[19808]: connect from sonic320-25.consmr.mail.bf2.yahoo.com[74.6.128.206]
Jan 19 16:52:24 mail postfix/smtpd[19808]: Anonymous TLS connection established from sonic320-25.consmr.mail.bf2.yahoo.com[74.6.128.206]: TLSv1.3 with cipher TLS_AES_128_GCM_SHA25 6 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256
Jan 19 16:52:25 mail postfix/smtpd[19808]: NOQUEUE: filter: RCPT from sonic320-25.consmr.mail.bf2.yahoo.com[74.6.128.206]: <ammarhaider177@yahoo.com>: Sender address triggers FILTER smtp-amavis:[127.0.0.1]:10026; from=<ammarhaider177@yahoo.com> to=<a@masodtex.online> proto=ESMTP helo=<sonic320-25.consmr.mail.bf2.yahoo.com>
Jan 19 16:52:25 mail postfix/smtpd[19808]: warning: permit_tls_clientcerts is requested, but "smtpd_tls_ask_ccert = no"
Jan 19 16:52:25 mail postfix/smtpd[19808]: NOQUEUE: filter: RCPT from sonic320-25.consmr.mail.bf2.yahoo.com[74.6.128.206]: <ammarhaider177@yahoo.com>: Sender address triggers FILTER smtp-amavis:[127.0.0.1]:10024; from=<ammarhaider177@yahoo.com> to=<a@masodtex.online> proto=ESMTP helo=<sonic320-25.consmr.mail.bf2.yahoo.com>
Jan 19 16:52:25 mail postfix/smtpd[19808]: 98F8A214DA44: client=sonic320-25.consmr.mail.bf2.yahoo.com[74.6.128.206]
Jan 19 16:52:26 mail postfix/cleanup[19812]: 98F8A214DA44: message-id=<2143337624.180628.1705665143196@mail.yahoo.com>
Jan 19 16:52:26 mail postfix/cleanup[19812]: 98F8A214DA44: warning: header Subject: 4 52 pm from sonic320-25.consmr.mail.bf2.yahoo.com[74.6.128.206]; from=<ammarhaider177@yahoo.co m> to=<a@masodtex.online> proto=ESMTP helo=<sonic320-25.consmr.mail.bf2.yahoo.com>
Jan 19 16:52:26 mail postfix/qmgr[10073]: 98F8A214DA44: from=<ammarhaider177@yahoo.com>, size=4898, nrcpt=1 (queue active)
Jan 19 16:52:26 mail amavis[29932]: (29932-01) ESMTP [127.0.0.1]:10024 /opt/zimbra/data/amavisd/tmp/amavis-20240119T165226-29932-Q2XAky6F: <ammarhaider177@yahoo.com> -> <a@masodtex.online> SIZE=4898 Received: from mail.masodtex.online ([127.0.0.1]) by localhost (mail.masodtex.online [127.0.0.1]) (amavis, port 10024) with ESMTP for <a@masodtex.online>; Fri, 19 Jan 2024 16:52:26 +0500 (PKT)
Jan 19 16:52:26 mail amavis[29932]: (29932-01) Checking: M-Q-igsE-RUy [74.6.128.206] <ammarhaider177@yahoo.com> -> <a@masodtex.online>
Jan 19 16:52:26 mail postfix/smtpd[19808]: disconnect from sonic320-25.consmr.mail.bf2.yahoo.com[74.6.128.206] ehlo=2 starttls=1 mail=1 rcpt=1 data=1 quit=1 commands=7
Jan 19 16:52:27 mail postfix/amavisd/smtpd[19815]: connect from localhost[127.0.0.1]
Jan 19 16:52:27 mail postfix/amavisd/smtpd[19815]: AE955214DA46: client=localhost[127.0.0.1]
Jan 19 16:52:27 mail postfix/cleanup[19812]: AE955214DA46: message-id=<2143337624.180628.1705665143196@mail.yahoo.com>
Jan 19 16:52:27 mail postfix/qmgr[10073]: AE955214DA46: from=<ammarhaider177@yahoo.com>, size=5872, nrcpt=1 (queue active)
Jan 19 16:52:27 mail amavis[29932]: (29932-01) M-Q-igsE-RUy FWD from <ammarhaider177@yahoo.com> -> <a@masodtex.online>, BODY=7BIT 250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as AE955214DA46
Jan 19 16:52:27 mail amavis[29932]: (29932-01) Passed CLEAN {RelayedInbound}, [74.6.128.206]:39493 [74.6.128.206] <ammarhaider177@yahoo.com> -> <a@masodtex.online>, Queue-ID: 98F8 A214DA44, Message-ID: <2143337624.180628.1705665143196@mail.yahoo.com>, mail_id: M-Q-igsE-RUy, Hits: 1.195, size: 4895, queued_as: AE955214DA46, dkim_sd=s2048:yahoo.com, 1558 ms
Jan 19 16:52:27 mail postfix/smtp[19813]: 98F8A214DA44: to=<a@masodtex.online>, relay=127.0.0.1[127.0.0.1]:10024, delay=2.4, delays=0.75/0.04/0.01/1.6, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as AE955214DA46)
Jan 19 16:52:27 mail postfix/qmgr[10073]: 98F8A214DA44: removed
Jan 19 16:52:27 mail amavis[29932]: (29932-01) extra modules loaded: Amavis/Lookup/Opaque.pm, Amavis/Out/SMTP/Protocol.pm, Amavis/Out/SMTP/Session.pm, Mozilla/CA.pm, unicore/lib/G c/Nd.pl
Jan 19 16:52:27 mail postfix/lmtp[19816]: AE955214DA46: to=<a@masodtex.online>, relay=mail.masodtex.online[172.170.100.162]:7025, delay=0.2, delays=0/0.04/0.09/0.07, dsn=2.1.5, st atus=sent (250 2.1.5 Delivery OK)
Jan 19 16:52:27 mail postfix/qmgr[10073]: AE955214DA46: removed
........................................................................................................
these are the logs related to a single mail send from ammarhaider177@yahoo.com to a@masodtex.online.
as per my understanding port 10024 is used when posftix try to communicate with amavisd, as you can see in these logs four times port 10024 is used. does this means that postfix is trying to connect to
amavisd four times for a single mail session for the purpose of antivirus and antispam scanning.
I am readlly confused about it, I would be very thankful to you if you please give me a brief description of every single line sequence wise so that I could fully understand the flow of mail through
different compoentns of postfix and amavisd
thanks and regards
Statistics: Posted by bilalhussian — Sat Jan 20, 2024 5:04 am