From owner-freebsd-questions@FreeBSD.ORG Thu Apr 17 10:31:45 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5517E37B401 for ; Thu, 17 Apr 2003 10:31:45 -0700 (PDT) Received: from kanga.honeypot.net (kanga.honeypot.net [208.162.254.122]) by mx1.FreeBSD.org (Postfix) with ESMTP id 75ECC43FBD for ; Thu, 17 Apr 2003 10:31:03 -0700 (PDT) (envelope-from kirk@strauser.com) Received: from pooh.honeypot.net.strauser.com (kirk@pooh.honeypot.net [10.0.5.128]) by kanga.honeypot.net (8.12.8/8.12.7) with ESMTP id h3HHUqbG060770 for ; Thu, 17 Apr 2003 12:30:53 -0500 (CDT) (envelope-from kirk@strauser.com) To: freebsd-questions@freebsd.org From: Kirk Strauser Date: Thu, 17 Apr 2003 12:30:52 -0500 Message-ID: <87brz5c9pv.fsf@pooh.honeypot.net> Lines: 44 X-Mailer: Gnus/5.090017 (Oort Gnus v0.17) Emacs/21.2 (gnu/linux) MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha1; protocol="application/pgp-signature" Subject: Sendmail isn't using SMART_HOST. Now what? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Apr 2003 17:31:45 -0000 --=-=-= Content-Transfer-Encoding: quoted-printable I have a firewall machine that I don't want to communicate directly with the outside world, so I've been trying to get it to use another FreeBSD server on the LAN as it's smart host. The Sendmail config on the machine is default except for the SMART_HOST setting: diff -u freebsd.mc gopher.honeypot.net.mc --- freebsd.mc Sun Dec 29 11:16:44 2002 +++ gopher.honeypot.net.mc Thu Apr 17 12:17:55 2003 @@ -74,7 +74,7 @@ dnl FEATURE(dnsbl, `blackholes.mail-abuse.org', `"550 Mail from " $&{c= lient_addr} " rejected, see http://mail-abuse.org/cgi-bin/lookup?" $&{clien= t_addr}') dnl Dialup users should uncomment and define this appropriately -dnl define(`SMART_HOST', `your.isp.mail.server') +define(`SMART_HOST', `kanga.honeypot.net') dnl Uncomment the first line to change the location of the default dnl /etc/mail/local-host-names and comment out the second line. However, after a `make; make install; make restart', I can run tcpdump on the smart host and watch as the firewall does a DNS query for the domain of an outgoing email, and then nothing; the firewall is still sending email directly to the remote machine. On a related note, the firewall insists on delivering mail locally that it has no business handling. I have `root' set as an alias to `root@kanga.honeypot.net' (i.e., on the smart host). Whenever I type echo test | mail root@kanga.honeypot.net I get this in my /var/log/messages: Apr 17 12:26:25 gopher sm-mta[1812]: h3HHQOU1001811: SYSERR(root): MX l= ist for honeypot.net. points back to gopher.honeypot.net Apr 17 12:26:25 gopher sm-mta[1812]: h3HHQPU1001812: Losing ./qfh3HHQPU= 1001812: savemail panic I've read the Sendmail FAQ, but the destination machine *is* configured correctly. Every other machine I've tested can deliver to that email address except the machine in question. In fact, a tcpdump doesn't even show any packets from the firewall to the smart host. I'm at a loss. This really shouldn't be as difficult as I seem to be making it. Any suggestions? Am I overlooking something obvious? =2D-=20 Kirk Strauser --=-=-= Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iD8DBQA+nuTM5sRg+Y0CpvERAkiAAJ4/dqU7BIX75LcgPDm9IJ1sf6hBqgCeLatZ PTkBS8S2ccp41Wp8BsksKtE= =HM0I -----END PGP SIGNATURE----- --=-=-=--