Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Understanding Exim

Discussion in 'E-mail Discussion' started by eaudet, Sep 20, 2007.

  1. eaudet

    eaudet Member

    Joined:
    Oct 24, 2004
    Messages:
    6
    Likes Received:
    0
    Trophy Points:
    151
    Going through my exim logs and queue, I was suprise to see so many messages on the queue (20000+).

    So I decided to investigate a bit more ... and now, I have some questions that may sound newbie questions to you. I've had servers for many years, but never really looked at emails before.

    From what I can see, my server is trying to send emails to people. Am I right in assuming that these 2 lines:
    2007-09-20 08:29:40 1IYLA3-0006Tv-A9 => jr@cortexpharm.com R=lookuphost T=remote_smtp H=mail-fwd.sbc-webhosting.com [161.58.18.5]
    2007-09-20 08:29:40 1IYLA3-0006Tv-A9 Completed

    Does it means that an email was sent from my server to "jr@cortexpharm.com"?

    If so, I think I have a problem. This is a brain new server. The only user is me. And I did not send any emails yet.

    Any lights would be appreciated.

    Eric
     
  2. eaudet

    eaudet Member

    Joined:
    Oct 24, 2004
    Messages:
    6
    Likes Received:
    0
    Trophy Points:
    151
    Sorry for replying myself to my own post ...

    Again, I am a newbie in this area and after thinking .... Maybe these are bounced messages? My server bounce messages ":fail: no user etc" ...

    Again, more any help would be appreciated.

    Eric
     
  3. d_t

    d_t Well-Known Member

    Joined:
    Sep 20, 2003
    Messages:
    242
    Likes Received:
    1
    Trophy Points:
    168
    Location:
    Bucharest
    The mail was delivered from your server, indeed. Chek the exim logs to find if the email was a bounce or not:

    exigrep 1IYLA3-0006Tv-A9 /var/log/exim_mainlog

    if you see <> as a sender, then is a bounce message.
     
  4. eaudet

    eaudet Member

    Joined:
    Oct 24, 2004
    Messages:
    6
    Likes Received:
    0
    Trophy Points:
    151
    Thanks, I think thats what it was:

    2007-09-20 08:29:39 1IYLA3-0006Tv-A9 <= <> R=1IY5zb-0006Ex-Vt U=mailnull P=local S=3305
    2007-09-20 08:29:40 1IYLA3-0006Tv-A9 => jr@cortexpharm.com R=lookuphost T=remote_smtp H=mail-fwd.sbc-webhosting.com [161.58.18.5]
    2007-09-20 08:29:40 1IYLA3-0006Tv-A9 Completed
     
  5. d_t

    d_t Well-Known Member

    Joined:
    Sep 20, 2003
    Messages:
    242
    Likes Received:
    1
    Trophy Points:
    168
    Location:
    Bucharest
    This is a bounce message for 1IY5zb-0006Ex-Vt Now you can search the logs for the original message and the error that cause the bounce message (usually, recipient does not exists)

    exigrep 1IY5zb-0006Ex-Vt /var/log/exim_mainlog

    The line with <= means the sender, the line with => is for recipient, == processing.
    "Complete" means the message (or bounce) was delivered and removed from queue.
     
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice