Mail Queue Monitoring: Difference between revisions

No edit summary
Line 23: Line 23:
    
    
   etc...
   etc...
Regenerating keys may very well fix this however, one other place to look is your ''/var/log/secure'' file. If you see something similar to:
<pre>
sshd[16312]: Authentication refused: bad ownership or modes for directory /opt/zimbra
</pre>
It's possible you only need to fix your ownership and permissions.
# #su - zimbra
# $zmcontrol stop
# $/opt/zimbra/libexec/zmfixperms
# $zmcontrol start
If this doesn't fix any errors you'll probably need to regenerate your keys.


=== Regenerating Keys ===
=== Regenerating Keys ===

Revision as of 13:10, 9 May 2007

Mail Queue Overview

Incoming and outgoing mail is processed by postfix in a series of queues; normally, mail moves from the incoming queue to the active queue, from which it is delivered. If delivery is deferred, mail is moved to the deferred queue, and automatically reprocessed later.

Additionally, mail can be put in the hold queue, which will prevent it from being delivered until it is manually removed from the hold queue.

Monitoring Queues

Queues can be monitored from within the admin console; select Manage Mail Queues from the left sidebar and your queue information will be shown.

Troubleshooting Queue Monitoring

Common Errors

The most common problem is authentication to the mta server. This shows in the tomcat logfile as:

Message:  system failure: exception during auth {RemoteManager: MAIL.DOMAIN.COM->zimbra@MAIL.DOMAIN.COM:22}
com.zimbra.cs.service.ServiceException: system failure: exception during auth {RemoteManager: 
    MAIL.DOMAIN.COM->zimbra@MAIL.DOMAIN.COM:22}
    at com.zimbra.cs.service.ServiceException.FAILURE(ServiceException.java:174)
    at com.zimbra.cs.rmgmt.RemoteManager.getSession(RemoteManager.java:197)
    at com.zimbra.cs.rmgmt.RemoteManager.execute(RemoteManager.java:134) 
 
 etc...

Regenerating keys may very well fix this however, one other place to look is your /var/log/secure file. If you see something similar to:

sshd[16312]: Authentication refused: bad ownership or modes for directory /opt/zimbra

It's possible you only need to fix your ownership and permissions.

  1. #su - zimbra
  2. $zmcontrol stop
  3. $/opt/zimbra/libexec/zmfixperms
  4. $zmcontrol start

If this doesn't fix any errors you'll probably need to regenerate your keys.

Regenerating Keys

To regenerate the ssh keys, on all hosts (as the zimbra user):

 zmsshkeygen

To deploy the keys, on all hosts (as the zimbra user):

 zmupdateauthkeys

Verifying sshd configuration

The authentication method assumes that sshd on the mta is running on port 22, and that RSA Authentication is enabled. You can test the ssh command with:

 ssh -i .ssh/zimbra_identity -o strictHostKeyChecking=no zimbra@MAIL.DOMAIN.COM

(Swap MAIL.DOMAIN.COM for your hostname, as it appears in the error).

You should NOT be prompted for a password; if you are, recreate the ssh keys and retry the test.

If you're not running sshd on port 22, modify the zimbraRemoteManagementPort attribute on the server:

zmprov ms MAIL.DOMAIN.COM zimbraRemoteManagementPort 2222
Jump to: navigation, search