Exim Mail Queue Getting Stuck & Not Receiving Emails
Nov 19, 2007
my Exim mail outgoing queue is getting stuck and i cannot receive emails. Under WHM i have 50 odd emails, some 7 days old.
A small dump from /var/log/exim-mainlog is below:
2007-11-19 04:40:45 H=(H®) [202.57.142.156] sender verify defer for <jqyuehutmqluz@epilot.com>: could not connect to mail02.interchangeusa.com [63.251.210.81]: Connection timed out
2007-11-19 04:40:45 H=(H®) [202.57.142.156] F=<jqyuehutmqluz@epilot.com> temporarily rejected RCPT <morleyc@myemail.net>: Could not complete sender verify callout
2007-11-19 04:40:45 unexpected disconnection while reading SMTP command from (H®) [202.57.142.156]
2007-11-19 04:40:51 no IP address found for host 202.57.142.156.sta.isp-thailand.com (during SMTP connection from [202.57.142.156])
2007-11-19 04:40:57 no IP address found for host 202.57.142.156.sta.isp-thailand.com (during SMTP connection from [202.57.142.156])
2007-11-19 04:41:01 no IP address found for host 202.57.142.156.sta.isp-thailand.com (during SMTP connection from [202.57.142.156])
2007-11-19 04:41:04 no IP address found for host 202.57.142.156.sta.isp-thailand.com (during SMTP connection from [202.57.142.156])
2007-11-19 04:41:43 no host name found for IP address 77.94.106.13
2007-11-19 04:41:49 1ItxNu-0007E6-4s mail.global.frontbridge.com [207.46.51.86] Connection timed out
2007-11-19 04:41:49 1ItxNu-0007E6-4s == hmt@someaddress.com <HMT@someaddress.com> R=lookuphost T=remote_smtp defer (110): Connection timed out
2007-11-19 04:41:49 1ItxNu-0007E6-4s == jog@someaddress.com <JOG@someaddress.com> R=lookuphost T=remote_smtp defer (110): Connection timed out
2007-11-19 04:41:49 1ItxNu-0007E6-4s == mrl@someaddress.com <MRL@someaddress.com> R=lookuphost T=remote_smtp defer (110): Connection timed out
2007-11-19 04:42:29 H=(client-200.121.46.74.speedy.net.pe) [200.121.46.74] sender verify defer for <tecat@yahoo.de>: Could not complete sender verify callout
2007-11-19 04:42:29 H=(client-200.121.46.74.speedy.net.pe) [200.121.46.74] F=<tecat@yahoo.de> temporarily rejected RCPT <morleyc@myemail.net>: Could not complete sender verify callout
2007-11-19 04:42:29 unexpected disconnection while reading SMTP command from (client-200.121.46.74.speedy.net.pe) [200.121.46.74]
Everything was fine until about 7 days ago, i dont know why the config didnt change but since then its been dropping received emails and queueing on sends.
1) What would you guys say is average in terms of the # of emails in the Mail Queue?
2) What steps can be taken to tighten it up? If I start with a clean slate, it only takes about a week or less for my mail queue to reach 1000 or more. Most of it seems like junk mail.
I can receive email from all accounts and all domains.
The problem is that when sending an email to an external email (gmail., hotmail, outlook.com .... etc) this is sent to mail queue and do not leave that place.
154P Received: from mailnull by server.mydomain.com with local (Exim 4.68) id 1J4neJ-0001DS-Ns for root@server.mydomain.com; Tue, 18 Dec 2007 19:23:03 -0600 038 X-Failed-Recipients: admin@domain.com 029 Auto-Submitted: auto-replied 063F From: Mail Delivery System <Mailer-Daemon@server.mydomain.com> 029T To: root@server.mydomain.com 059 Subject: Mail delivery failed: returning message to sender 052I Message-Id: <E1J4neJ-0001DS-Ns@server.mydomain.com> 038 Date: Tue, 18 Dec 2007 19:23:03 -0600
1J4neJ-0001DS-Ns-D This message was created automatically by mail delivery software.
A message that you sent could not be delivered to one or more of its recipients. This is a permanent error. The following address(es) failed:
admin@domain.com SMTP error from remote mail server after RCPT TO:<admin@domain.com>: host sentry.domainbank.com [64.85.73.28]: 553 sorry, that domain isn't in my list of allowed rcpthosts (#5.7.1)
------ This is a copy of the message, including all the headers. ------
Return-path: <root@server.mydomain.com> Received: from root by server.mydomain.com with local (Exim 4.68) (envelope-from <root@server.mydomain.com>) id 1J4neI-0001D9-4I for admin@domain.com; Tue, 18 Dec 2007 19:23:02 -0600 To: admin@domain.com Subject: Services(2) failed From: monitor@domain.com Message-Id: <E1J4neI-0001D9-4I@server.mydomain.com> Date: Tue, 18 Dec 2007 19:23:02 -0600
Address:mydomain.com
Following services are down:
SSH(22) MySQL(3306)
Do not reply to this! For further details please contact your provider!
194P Received: from root by server.mydomain.com with local (Exim 4.68) (envelope-from <root@server.mydomain.com>) id 1J4nhC-0001Kn-2T for root@server.mydomain.com; Tue, 18 Dec 2007 19:26:02 -0600 025* From: root (Cron Daemon) 045F From: root@server.mydomain.com (Cron Daemon) 009* To: root 029T To: root@server.mydomain.com 077 Subject: Cron <root@server> lynx --dump [url] 028 X-Cron-Env: <SHELL=/bin/sh> 025 X-Cron-Env: <HOME=/root> 033 X-Cron-Env: <PATH=/usr/bin:/bin> 027 X-Cron-Env: <LOGNAME=root> 024 X-Cron-Env: <USER=root> 052I Message-Id: <E1J4nhC-0001Kn-2T@server.mydomain.com> 038 Date: Tue, 18 Dec 2007 19:26:02 -0600
1J4nhC-0001Kn-2T-D Not Found
The requested URL /agent/cron.php was not found on this server.
Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request. _________________________________________________________________
Apache/2.2.6 (Unix) mod_ssl/2.2.6 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_jk/1.2.25 PHP/5.2.5 Server at mydomain.com Port 80
Anyway after complaints of "mail not being sent" I looked at a few things, found over 25,000 messages stuck in the queue. The messages no being sent thing is yahoo blocking me because of too many mails sent to their servers without a valid recipient.
When I empty the queue it gathers about 200 mails an hour. Looks like it is coming from all over the world and they are using a valid ip from one of the domains hosted for sending.
Bear with me I was reselling for years and this is my first real dedicated server.
Today my server started to go off-line and each time i restarted it went down within couple minutes. So i looked into it and found that i had over 7000 emails in Exim Mail Queue. All of them are spam. I deleted them through WHM and now everything seems good again but....
My question is how can i check what caused this problem? Has one of my domains been compromised with and sending out spam? What can i do?
I contacted the guys who I pay to watch over my linux Cpanel server and I do not think they know how to fix the problem. When I look in my mail queue manager in WHM I always see these spam type emails. I also see that my site IP gets blacklisted on:
[url]
I delist and then it appears again a couple of days later. My server is only used to send emails such as registrations and user notifications that they have subscribed to. Could anyone please tell me how to get rid of the spam?
Hotmail not receiving any emails from my server nevertheless log files is ok no problem and messages sent every thing is ok recently i contacted with my server's provider to make a ptr record at dns to fix hotmail problem and i shoked when i notice that they put a wronge ip
My Q: is that ptr record is important and it could be the reason for making hotmail rejecting my emails
This feels like an unusually newbie question for me, but... I think my exim queue isn't running. I was born and raised on qmail :-)
I discovered on a relatively new server that the message queue was backed up nearly a month with messages. Fortunately it wasn't a crazy amount, some were double-bounces, and with the help of exiqgrep I got it caught up manually in about a day on and off.
But today it's obvious messages that fail the first time (ex: greylisted) NEVER get retried. Is this a missing cron job? Or command-line param for exim? I would think a relatively stock cPanel install wouldn't suffer from this but... where do I start checking?
Code: /usr/sbin/exim -bd -oX 587
2008-03-09 04:02:15 exim 4.68 daemon started: pid=13511, no queue runs, listening for SMTP on port 25 (IPv4) port 587 (IPv4) [127.0.0.1]:10025 I mean, that seems fairly obvious right there, but I want to make sure I fix it the right way... in case this is merely a checkbox in cPanel or something...
There is a strange problem with picking up and sending emails on Outlook 2007 which I have wasted hours on over the last week.
Whenever I try to pick up/send emails on domain names, I get a 800CCC0F error message. It says: "reported error (0x800CCC0F): 'The connection to the server was interrupted. If the problem continues, contact your server adminstrator or Internet Service Provider (ISP)'"
I have gone through all the steps here [url]and here [url]and on another websites.
I have been setting up email addresses on Outlook for several years, so know how they should be done.
The strange thing is the email addresses of domain names hosted elsewhere work perfectly. But both new and existing Clook-hosted email addresses are producing this error message.
I believe it may be an error with the software for two reasons:
1. The email addresses work perfectly when I open Outlook in Safe Mode.
2. Our web host's staff have not been able to find anything wrong and the email addresses work when they try to set them up on their computers.
Any idea why our email addresses may not be working and how I can fix this please?
I have tried System Restore and Repairing the program on my computer's Control Panel.
