1 (edited by BadServo 2014-05-22 13:40:18)

Topic: Blacklists Ignored (RESOLVED)

==== Required information ====
- iRedMail version: 0.8.5 / iRedMailAdmin-Pro-MySQL 1.8.1
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): MySQL
- Linux/BSD distribution name and version: Ubuntu 12.04.04
- Related log if you're reporting an issue:
====

I've been trying to block incoming messages from specific addresses and domains.  Thus far, I've been unsuccessful.  I initially tried adding the domains and addresses to the blacklist section in iRedAdmin-Pro.  When this didn't work, I read in the forums and discovered that iRedAdmin-Pro doesn't work correctly with Cluebringer.

Then I logged into the Cluebringer web interface directly.  I added the addresses, and made sure the entries were not disabled.  Still the messages are being delivered.  Any help is appreciated.  I am happy to provide any information you require.

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2

Re: Blacklists Ignored (RESOLVED)

*) iRedAdmin-Pro works with Cluebringer.
*) Could you please show me output of below SQL commands?

sql> USE cluebringer;
sql> SELECT * FROM policies \G
sql> SELECT * FROM policy_groups \G
sql> SELECT * FROM policy_members \G
sql> SELECT * FROM policy_group_members \G

3 (edited by BadServo 2014-05-22 10:45:46)

Re: Blacklists Ignored (RESOLVED)

Thank you sir, for the prompt reply.  Here are the results:

mysql> USE cluebringer;
Database changed
mysql> SELECT * FROM policies \G
*************************** 1. row ***************************
         ID: 1
       Name: Default
   Priority: 0
Description: Default System Policy
   Disabled: 0
*************************** 2. row ***************************
         ID: 2
       Name: Default Outbound
   Priority: 10
Description: Default Outbound System Policy
   Disabled: 0
*************************** 3. row ***************************
         ID: 3
       Name: Default Inbound
   Priority: 10
Description: Default Inbound System Policy
   Disabled: 0
*************************** 4. row ***************************
         ID: 4
       Name: Default Internal
   Priority: 20
Description: Default Internal System Policy
   Disabled: 0
*************************** 5. row ***************************
         ID: 5
       Name: Test
   Priority: 50
Description: Test policy
   Disabled: 0
*************************** 6. row ***************************
         ID: 6
       Name: whitelists
   Priority: 6
Description: Whitelisted sender, domain, IP
   Disabled: 0
*************************** 7. row ***************************
         ID: 7
       Name: blacklists
   Priority: 8
Description: Blacklisted sender, domain, IP
   Disabled: 0
*************************** 8. row ***************************
         ID: 8
       Name: no_greylisting
   Priority: 20
Description: Disable grelisting for certain domain and users
   Disabled: 0
8 rows in set (0.00 sec)

mysql> SELECT * FROM policy_groups \G
*************************** 1. row ***************************
      ID: 1
    Name: internal_ips
Disabled: 0
 Comment: NULL
*************************** 2. row ***************************
      ID: 2
    Name: internal_domains
Disabled: 0
 Comment: NULL
*************************** 3. row ***************************
      ID: 3
    Name: whitelists
Disabled: 0
 Comment: NULL
*************************** 4. row ***************************
      ID: 4
    Name: blacklists
Disabled: 0
 Comment: NULL
*************************** 5. row ***************************
      ID: 5
    Name: no_greylisting_for_internal
Disabled: 0
 Comment: NULL
*************************** 6. row ***************************
      ID: 6
    Name: no_greylisting_for_external
Disabled: 0
 Comment: NULL
6 rows in set (0.00 sec)

mysql> SELECT * FROM policy_members \G
*************************** 1. row ***************************
         ID: 1
   PolicyID: 1
     Source: NULL
Destination: NULL
    Comment: NULL
   Disabled: 0
*************************** 2. row ***************************
         ID: 2
   PolicyID: 2
     Source: %internal_ips,%internal_domains
Destination: !%internal_domains
    Comment: NULL
   Disabled: 0
*************************** 3. row ***************************
         ID: 3
   PolicyID: 3
     Source: !%internal_ips,!%internal_domains
Destination: %internal_domains
    Comment: NULL
   Disabled: 0
*************************** 4. row ***************************
         ID: 4
   PolicyID: 4
     Source: %internal_ips,%internal_domains
Destination: %internal_domains
    Comment: NULL
   Disabled: 0
*************************** 5. row ***************************
         ID: 5
   PolicyID: 5
     Source: @example.net
Destination: NULL
    Comment: NULL
   Disabled: 0
*************************** 6. row ***************************
         ID: 6
   PolicyID: 6
     Source: %whitelists
Destination: %internal_domains
    Comment: NULL
   Disabled: 0
*************************** 7. row ***************************
         ID: 7
   PolicyID: 7
     Source: %blacklists
Destination: %internal_domains
    Comment: NULL
   Disabled: 0
*************************** 8. row ***************************
         ID: 8
   PolicyID: 8
     Source: !%internal_ips,!%internal_domains
Destination: %no_greylisting_for_internal
    Comment: NULL
   Disabled: 0
*************************** 9. row ***************************
         ID: 9
   PolicyID: 8
     Source: %no_greylisting_for_external
Destination: %internal_domains
    Comment: NULL
   Disabled: 0
9 rows in set (0.00 sec)

mysql> SELECT * FROM policy_group_members \G
*************************** 1. row ***************************
           ID: 1
PolicyGroupID: 1
       Member: 10.0.0.0/8
     Disabled: 0
      Comment: NULL
         Type:
*************************** 2. row ***************************
           ID: 2
PolicyGroupID: 2
       Member: @example.org
     Disabled: 0
      Comment: NULL
         Type:
*************************** 3. row ***************************
           ID: 3
PolicyGroupID: 2
       Member: @example.com
     Disabled: 0
      Comment: NULL
         Type:
*************************** 4. row ***************************
           ID: 4
PolicyGroupID: 2
       Member: @[MYDOMAIN]
     Disabled: 0
      Comment: NULL
         Type:
*************************** 5. row ***************************
           ID: 5
PolicyGroupID: 4
       Member: training@mgmtevents.com
     Disabled: 0
      Comment:
         Type: sender
*************************** 6. row ***************************
           ID: 6
PolicyGroupID: 4
       Member: @hiratailoringshk.net
     Disabled: 0
      Comment:
         Type: domain
*************************** 7. row ***************************
           ID: 7
PolicyGroupID: 4
       Member: @signaturefurnitech.com
     Disabled: 0
      Comment:
         Type: domain
*************************** 8. row ***************************
           ID: 8
PolicyGroupID: 3
       Member: @adaequare.com
     Disabled: 0
      Comment:
         Type: domain
*************************** 9. row ***************************
           ID: 9
PolicyGroupID: 4
       Member: @1105data.com
     Disabled: 0
      Comment:
         Type: domain
*************************** 10. row ***************************
           ID: 10
PolicyGroupID: 4
       Member: @techsavvyplus.com
     Disabled: 0
      Comment:
         Type: domain
*************************** 11. row ***************************
           ID: 11
PolicyGroupID: 4
       Member: @email.truthinit.com
     Disabled: 0
      Comment:
         Type: domain
*************************** 12. row ***************************
           ID: 12
PolicyGroupID: 4
       Member: @tinelle.com
     Disabled: 0
      Comment:
         Type: domain
*************************** 13. row ***************************
           ID: 13
PolicyGroupID: 3
       Member: rbhupati@adaequare.com
     Disabled: 0
      Comment:
         Type: sender
*************************** 14. row ***************************
           ID: 14
PolicyGroupID: 4
       Member: ttreavis@aol.com
     Disabled: 0
      Comment:
         Type: sender
*************************** 15. row ***************************
           ID: 15
PolicyGroupID: 4
       Member: @paraglidingunlimited.com
     Disabled: 0
      Comment:
         Type: domain
*************************** 16. row ***************************
           ID: 17
PolicyGroupID: 2
       Member: @[MY2NDDOMAIN]
     Disabled: 0
      Comment: NULL
         Type:
*************************** 17. row ***************************
           ID: 18
PolicyGroupID: 3
       Member: @calance.com
     Disabled: 0
      Comment:
         Type: domain
*************************** 18. row ***************************
           ID: 19
PolicyGroupID: 4
       Member: @myprojectplanning.com
     Disabled: 0
      Comment:
         Type: domain
18 rows in set (0.00 sec)

4

Re: Blacklists Ignored (RESOLVED)

mysql> SELECT * FROM policy_members \G
*************************** 7. row ***************************
         ID: 7
   PolicyID: 7
     Source: %blacklists
Destination: %internal_domains
    Comment: NULL
   Disabled: 0

You (or iRedMail) define blacklist related to PolicyID=7, PolicyGroupID=7. But i cannot find any record stored in table "policy_group_members" uses "PolicyGroupID=7". That means, you didn't block any domain/email.

5

Re: Blacklists Ignored (RESOLVED)

I see.  That makes sense.  Though I'm not sure how to go about correcting it.  I'm not very good at manipulating databases directly.  Is there something obvious about the way I am adding the blacklists that is keeping the correct records from populating in the database?  For reference, here are the shots of my iRedAdmin blacklist and Cluebringer Blacklist.  If I call up the members of the Policy Group "blacklists" all the entries show up.

Shot01
Shot02

6

Re: Blacklists Ignored (RESOLVED)

Could you please show me output of below SQL commands?

mysql> USE cluebringer;
mysql> SELECT * FROM access_control \G

7

Re: Blacklists Ignored (RESOLVED)

mysql> USE cluebringer;
Reading table information for completion of table and column names
You can turn off this feature to get a quicker startup with -A

Database changed
mysql> SELECT * FROM access_control \G
*************************** 1. row ***************************
      ID: 1
PolicyID: 6
    Name: bypass_whitelisted
 Verdict: OK
    Data: Whitelisted
 Comment: NULL
Disabled: 0
*************************** 2. row ***************************
      ID: 2
PolicyID: 7
    Name: reject_blacklisted
 Verdict: REJECT
    Data: Blacklisted
 Comment: NULL
Disabled: 0
2 rows in set (0.00 sec)

8

Re: Blacklists Ignored (RESOLVED)

Strange...

Is it possible to let me login to your server (via ssh) for further debug? I need to turn on debug mode in Cluebringer and see how it works with existing SQL records.

9

Re: Blacklists Ignored (RESOLVED)

Sure.  Let me know where to send the credentials, and I'll be standing by for your assessment.

10

Re: Blacklists Ignored (RESOLVED)

Mail me: zhb _at_ iredmail dot org

11

Re: Blacklists Ignored (RESOLVED)

Message dispatched.  Standing by.

12

Re: Blacklists Ignored (RESOLVED)

Thanks again for your help.  Based on your assessment (provided via email), I'm choking this issue up as some sort of user error.  Issue appears resolved.