Control with message Log files
There are four key log files can help you quickly and easily diagnose mail flow problems with protector; SMTP, filters, messages, and SMAIL.? These can be accessed by logging into the console of the apparatus with the root account.
SMTP
/etc/xmail/logs/SMTP-YYYYMMDDHH00
This registers all incoming emails to the server, both to internal and Internet networks.? For each message, you should see a RECV and RCPT.? If you do not see a message about this log, we never received.? Some of the IP filters will also show errors this log if a message has been blocked by our IP filters.? If you do not see a message about this log file, protector never received.
FILTERS
/etc/xmail/logs/Filters-YYYYMMDDHH00
This makes our IP layer filters, including verification of the recipient.? Note that when you enable recipient verification, all messages will show recipient verification of words, but that doesn't mean that they were blocked for it, only checked against him.
MESSAGES
/var/log/messages.
This record shows all e-mail security warnings, but also shows the messages that are scanned.? If a message was blocked by one of our content filters, it will show here in the form of that rule and module analysis compared with the email and if a response has been applied to the message and the status of the action message end, typically measures taken = 1.? If a message does not show a rule and log analysis module and have an action = 0, this indicates that the message passed all checks and will be delivered to the internal mail.
SMAIL
/etc/xmail/logs/smail-YYYYMMDDHH00
This record shows all emails that have been or is attempted to be delivered by the mail server internal and external.? If the message is delivered to the Internet will show "SMTP", a message delivered to internal shows "rlys."? If you see one of these, you know that the message is now on his next jump and not in the protector.
EXAMPLE EMAIL INBOX:
LPforMS: ~ # tail/etc/xmail/logs/smtp-201107290900
"swg. usma. ibm.com" "swg. usma. ibm.com" "127.0.0.1" "7/29/2011 09: 12: 02" "mail.ibm.com" "swg. usma. ibm.com" "joey@example.com" "samanthadaryn@swg.usma.ibm.com" "11072913-8336-0000-0000-0000001200EE" "RCPT = OK" "" "0" ""
"swg. usma. ibm.com" "swg. usma. ibm.com" "127.0.0.1" "7/29/2011 09: 12: 17" "mail.ibm.com" "swg. usma. ibm.com" "joey@example.com" "samanthadaryn@swg.usma.ibm.com" "11072913-8336-0000-0000-0000001200EE" "RECV = OK" "" "64" ""
LPforMS: ~ # tail/etc/xmail/logs/filters-201107290900
"joey@example.com" "samanthadaryn@swg.usma.ibm.com", "127.0.0.1", "127.0.0.1" "7/29/2011 09: 12: 02" "post-rcpt" "" "11072913-8336-0000-0000-0000001200EE" "0" "0" "" recipient verification;
LPforMS: ~ # tail/var/log/messages.
29 Jul 09: 12: 23 pvmail LPforMS [1444]: id = name of MS = MSM_MailProcessed time = "7/29/2011 9: 12: 23" fw = LPforMS pri = 6 issueid = 6000031 msg = "Emails processed" msgid = 11072913-8336-0000-0000-0000001200EE sender = "joey@example.com" recipient = "samanthadaryn@swg.usma.ibm.com" direction = entered size = 709 attachmentcount = 0 src = 127.0.0.1 ActionTaken = 0
LPforMS: ~ # tail/etc/xmail/logs/smail-201107290900
"swg. usma. ibm.com" "1311945143834. b34d3ba 0.6 DD. 12 c. LPforMS" "11072913-8336-0000-0000-0000001200EE" "joey@example.com" "samanthadaryn@swg.usma.ibm.com" "" "LPDominoSvr.swg rlys. usma. ibm.com" "7/29/2011 09: 12: 24" "message accepted for delivery"
0 条评论:
发表评论
订阅 博文评论 [Atom]
<< 主页