The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

EXIM has incredible high timeout before accepting connection.

Discussion in 'General Discussion' started by ispro, Dec 5, 2004.

  1. ispro

    ispro Well-Known Member

    Joined:
    Apr 8, 2004
    Messages:
    628
    Likes Received:
    1
    Trophy Points:
    18
    Recently we started having strange timeout problem.

    While trying to connect to smtp we see welcome (Exim 4.43 #1 ....) message after FULL THREE MINUTES or so!

    At the same time /var/log/exim_mainlog shows that Exim accepting connections:
    SMTP connection from [66.66.2.158]:4468 I=[67.18.*****]:25 (TCP/IP connection count = 62)
    SMTP connection from [12.227.159.214]:4468 I=[67.18.*****]:25 (TCP/IP connection count = 63)
    SMTP connection from [66.176.91.125]:4468 I=[67.18.*****]:25 (TCP/IP connection count = 64)

    After reaching 100 connection it fails to any new one (btw, increasing smtp_accept_max to 200, 300, even 1000 not helps).

    I'm really confused.

    Please, anyone, help us to locate problem's source!
     
  2. ispro

    ispro Well-Known Member

    Joined:
    Apr 8, 2004
    Messages:
    628
    Likes Received:
    1
    Trophy Points:
    18
    Just in case someone come to this ticket...

    The active TrinityOS rc.firewall (iptables based) caused this delay.

    I not discovered how to tune it (or its settings) to allow smtp works normally, without the delay (especially because no other servers affected!) yet...

    If someone know where I need to take a look (perhaps some specific ports or so on) let me know, please.
     
  3. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    If you're having problems with that firewall, have you tried a different one, e.g. APF?
     
  4. ispro

    ispro Well-Known Member

    Joined:
    Apr 8, 2004
    Messages:
    628
    Likes Received:
    1
    Trophy Points:
    18
    No, I didn't.
    This firewall proved that it is simple, but stable.
    Wonder, it is just iptables one! No more special instructions like in APF.
    Anyway, it stops something. So, APF will do the same.

    Looks like Exim trying to do something with addresses that originating connections, perhaps reverse lookup or so? How to allow this?..
     
  5. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    I'm confused, two posts up you said that the firewall was the problem. IF the firewall is the problem, then the problem isn't with exim :confused:
     
  6. ispro

    ispro Well-Known Member

    Joined:
    Apr 8, 2004
    Messages:
    628
    Likes Received:
    1
    Trophy Points:
    18
    OK :)

    Which ports should be open at firewall for Exim not delayed with welcome message?
     
Loading...

Share This Page