pypolicyd-spf

warning: problem talking to server private/policyd-spf: Connection timed out

Asked by david

Mar 18 13:19:48 mailserver postfix/smtpd[29311]: warning: problem talking to server private/policyd-spf: Connection timed out
Mar 18 13:19:48 mailserver postfix/smtpd[29311]: NOQUEUE: reject: RCPT from unknown[209.85.220.181]: 451 4.3.5 <email address hidden>: Recipient address rejected: Server configuration problem; from=<email address hidden> to=<email address hidden> proto=ESMTP helo=<mail-vc0-f181.google.com>

Because of my company policy of client, I cannot post their domain, so I change to <email address hidden>

The mailserver has a lot of message about "warning: problem talking to server private/policyd-spf: Connection timed out". The email was delayed. Please help

postfix version: 3.0.0
pypolicyd-spf : 1.3.1
pyspf: 2.0.11
pydns: 2.3.6

I already set "Lookup_time=30 and Void_Limit = 5" in policyd-spf.conf, but it still has problem. Please help
Thank you

Question information

Language:
English Edit question
Status:
Answered
For:
pypolicyd-spf Edit question
Assignee:
No assignee Edit question
Last query:
Last reply:
Revision history for this message
Scott Kitterman (kitterman) said : 		#1

What is the master.cf entry for the policy service look like?

Revision history for this message
david (david-fung) said : 		#2

main.cf

smtpd_recipient_restrictions = permit_mynetworks reject_unauth_destination check_policy_service unix:private/policyd-spf
policyd-spf_time_limit = 3600s

master.cf
policyd-spf unix - n n - - spawn user=nobody argv=/usr/bin/policyd-spf

Revision history for this message
Scott Kitterman (kitterman) said : 		#3

That looks right.

If you look in the provided man page (man policyd-spf) in the "TESTING THE POLICY DAEMON" section, it tells you how to run/test the policy server manually from a shell for testing. Does that work?

Revision history for this message
david (david-fung) said : 		#4

The policyd-spf is work. It can check the spf record.

It will have the message "warning: problem talking to server private/policyd-spf: Connection timed out" , when the mail server receive a lot of email.

For example, I use send 2 emails to my email server via gmail. The first can pass the spf record and delivered to my mail box, the second email will have the message "warning: problem talking to server private/policyd-spf: Connection timed out" and delay, so I disable the policyd-spf.

FYI, I upgrade pydns: 2.3.6 to py3dns-3.0.2, the mail server still has this problem

Revision history for this message
Scott Kitterman (kitterman) said : 		#5

If it works some of the time, then you have integrated it correctly and it's working. I don't know why it would fail under load, so I don't have any further suggestions. I would suggest writing to the postfix-users mailing list and asking for help there as I think it's unlikely to be an issue specific to this policy server.

py3dns has newer versions available, which I would recommend: https://launchpad.net/py3dns - you do need to make sure that if you're using python3, you've also installed pyspf for python3 too.

Can you help with this problem?

Provide an answer of your own, or ask david for more information if necessary.

To post a message you must log in.