would it be a mad idea to add some sort of jsonrpc to monitor haraka internals that way?
_smf_
endre: what internals do you want to monitor?
We've been toying with the idea of adding a REPL on a separate port for this sort of thing for ages.
The problem is that getting this to work nicely under cluster is 'tricky'
endre
_smf_: statistics, greylist management
in cluster environments i'd go with mqtt
_smf_
I get all of that stuff via plugins already
Which is why I haven't bothered too much about adding a REPL
endre
i see
_smf_
The most useful thing for a REPL is outbound queue management and to be able to 'tweak' Haraka on-the-fly.
e.g. increase/decrease child processes, force outbound queue runs, divert outbound mail to a different host etc. etc.
If you want stats etc. then a plugin makes the most sense IMO
endre
yeah probably
_smf_
For greylist stuff, I think that gets more tricky depending on how the greylist implementation works.
Personally - I'm using redis-timeseries for stats here.
And ElasticSearch for logging and more in-depth stuff.
My greylist implementation uses Redis too, but in a different DB.
But I don't really have to do any management on it - it's 100% automatic.
endre
:)
sounds fun
kpsullivan joined the channel
lnb
morning
_smf_
morning
lnb
_smf_: is there any way to get haraka to allow mail from box behind natted firewall
i have tried using auth on port 587 but postfix seems not to communicate it
when using relayhost on port 25 from postfix box, haraka says 550 no mx for domain
_smf_
Fix the domain name or make some sort of exclusion for it then?
Or debug why Postfix isn't working over port 587.
lnb
its says auth required
_smf_
Yeah - we went through that already.
lnb
i have it setup for auth
no kidding
i cannot get it working
_smf_
The auth isn't working for some reason; you've either not set it up properly or something else is happening.
lnb
i have searched all weekend for postfix docs and get the same answers and results
i would think postfix would say it in the maillog but it doesnt
_smf_
Debug it on the Haraka end then.
echo LOGPROTOCOL > config/loglevel
and you'll see the entire SMTP conversation in the logs.
It should connect, send a STARTTLS to go secure, and then attempt to authenticate. If it doesn't, you've got the Postfix configuration wrong.
lnb
i do see: error: open database /etc/postfix/sasl_passwd.db: No such file or directory
however
_smf_
There's your issue then.
Postfix needs to know what username/password combo to use with which host.
lnb
ls -l /etc/postfix/sasl_passwd.db
-rw-r--r-- 1 root root 12288 Mar 8 18:12 /etc/postfix/sasl_passwd.db
right
and the file is there
_smf_
I'm no Postfix expert.
Ask on #postfix
My only advice would be to check that the file is in the correct database format.
lnb
tell me, is there a plugin/ini one can put in names of servers behind natted firewall
_smf_
e.g. it shoudln't be a text file.
No - because there's nothing special about natted hosts.
lnb
hmm
_smf_
Plus - you're using MT6, so that's a 'pre-configured' Haraka, so I've no idea whats included.
What you're basically wanting to say is - here's a host with a fucked-up configuration, it's internal and never sends external mail, so accept the mail - regardless of how fucked up it is.
The moral of the story is - don't use hostnames for servers that aren't valid out on the internet. e.g. .internal, .lan, .lab, .foobar are all a bad idea (thanks Microsoft).
What you want is to be able to ignore that stuff for internal hosts, so you'll have to ask ultimatt about how to do that based on the configuration and set-up he's made for MT6.