capote
(Marko)
January 23, 2021, 5:32pm
5
Same issue - Debian 10, LXC, my quick workaround:
echo "151.115.41.123 maps.rspamd.com" >> /etc/hosts
systemctl restart rspamd
This resolves only problems with DNS resolution. But dig
is possible.
I tried to curl https://maps.rspamd.com/freemail/free.txt.zst
from my server : curl is possible.
pike
(Michael Kicks)
January 23, 2021, 9:40pm
6
Issues seem outside rSpamd/your system…
capote
(Marko)
January 24, 2021, 10:16am
7
I checked the IPs in logs:
Thread shield
IPS
Firewall
–> no log entries
only in var/log/maillog-yyyymmdd
capote
(Marko)
October 8, 2021, 7:08am
10
The problem persits:
error reading https://maps.rspamd.com/rspamd/redirectors.inc.zst(151.115.41.123:443): connection with http server terminated incorrectly: ssl connect error: syscall fail: Connection timed out
On Github exits an issue: https://github.com/rspamd/rspamd/issues/3616
I tried to wget the file from web console … without any problems.
Heinlein has committed an individual fix: https://github.com/HeinleinSupport/rspamd/commit/8ebcc2d409d82e40c2e7adafe682f7504bdd4318
Can we do anything on Nethserver?
mrmarkuz
(Markus Neuberger)
October 8, 2021, 7:55am
11
Did you install the latest updates?
Community updates on 04 October 2021
nethserver-mail-common-2.31.3-1.ns7.noarch
Getmail: credentials check fails in some cases - Bug NethServer/dev#6577
nethserver-mail-disclaimer-2.31.3-1.ns7.noarch
Getmail: credentials check fails in some cases - Bug NethServer/dev#6577
nethserver-mail-filter-2.31.3-1.ns7.noarch
Getmail: credentials check fails in some cases - Bug NethServer/dev#6577
nethserver-mail-getmail-2.31.3-1.ns7.noarch
Getmail: credentials check fails in some cases - Bug…
stephdl
(Stéphane de Labrusse)
October 8, 2021, 8:17am
12
We are testing the rspamd 3.0 it works well since a while on my server
yum update rspamd --enablerepo=nethserver-testing
It seems the fix has been pushed to 2.8 and probably you run 2.7
pike
(Michael Kicks)
October 8, 2021, 8:20am
13
@stephdl how confident you feel to tell people “try it”?
I am using a “going to production” installation, feeling bold enough to start it.
2 Likes
stephdl
(Stéphane de Labrusse)
October 8, 2021, 8:22am
14
You can safely come back with a
yum downgrade rspamd
Eventually restart all the services stack
signal-event nethserver-mail-filter-update
Well for sure your are the captain of your server
1 Like
pike
(Michael Kicks)
October 8, 2021, 8:43am
15
For whom still not used any kind of testing package, might ask you to approve the key of the server.
2 Likes
capote
(Marko)
October 8, 2021, 5:40pm
18
capote:
I will try it
I did it. The installtion was w7o n issue. After installation, one error occurs in history section:
8.10.2021, 19:37:00 controller 1015 csession 0a4878 http error occurred: Not found
I think it can only be definitively evaluated once the filter has been running for a few hours.
capote
(Marko)
October 9, 2021, 5:49am
19
I found a lot of new errors again, all the same IP:
Time
Worker type
PID
Module
Internal ID
Message
9.10.2021, 07:00:19
controller
1015
map
o33omj
error reading https://maps.rspamd.com/rspamd/mime_types.inc.zst(151.115.41.123:443): connection with http server terminated incorrectly: ssl connect error: syscall fail: Connection timed out
9.10.2021, 06:51:18
rspamd_proxy
1014
proxy
735623
cannot compare parts with more than 8192 words: (5080 + 5151)
9.10.2021, 06:02:51
controller
1015
map
fdp86m
error reading https://maps.rspamd.com/freemail/free.txt.zst(151.115.41.123:443): connection with http server terminated incorrectly: ssl connect error: syscall fail: Connection timed out
9.10.2021, 05:50:59
controller
1015
map
qamb1r
error reading https://maps.rspamd.com/rspamd/dmarc_whitelist_new.inc.zst(151.115.41.123:443): connection with http server terminated incorrectly: ssl connect error: syscall fail: Connection timed out
9.10.2021, 05:49:23
controller
1015
map
7n3qic
error reading https://maps.rspamd.com/rspamd/mid.inc.zst(151.115.41.123:443): connection with http server terminated incorrectly: ssl connect error: syscall fail: Connection timed out
9.10.2021, 04:31:31
controller
1015
map
o33omj
error reading https://maps.rspamd.com/rspamd/mime_types.inc.zst(151.115.41.123:443): connection with http server terminated incorrectly: ssl connect error: syscall fail: Connection timed out
9.10.2021, 03:57:27
controller
1015
map
1u5hdp
error reading https://maps.rspamd.com/rspamd/redirectors.inc.zst(151.115.41.123:443): connection with http server terminated incorrectly: ssl connect error: syscall fail: Connection timed out
9.10.2021, 03:33:02
controller
1015
map
yhcyzt
error reading https://maps.rspamd.com/rspamd/phishing_whitelist.inc.zst(151.115.41.123:443): connection with http server terminated incorrectly: ssl connect error: syscall fail: Connection timed out
9.10.2021, 03:13:35
controller
1015
map
fdp86m
error reading https://maps.rspamd.com/freemail/free.txt.zst(151.115.41.123:443): connection with http server terminated incorrectly: ssl connect error: syscall fail: Connection timed out
9.10.2021, 03:00:17
controller
1015
map
qamb1r
error reading https://maps.rspamd.com/rspamd/dmarc_whitelist_new.inc.zst(151.115.41.123:443): connection with http server terminated incorrectly: ssl connect error: syscall fail: Connection timed out
The data are downloadable from webconsole.
The DNS record still exits in /etc/hosts
#
# 40hosts_local
#
151.115.41.123 maps.rspamd.com
1 Like
stephdl
(Stéphane de Labrusse)
October 9, 2021, 6:50am
20
IP Tools (www.iptools.su)
Whois
Hôte: maps.rspamd.com
Réponse DNS
Type: A
maps.rspamd.com . 1196 IN A 88.198.198.21
Type: A
maps.rspamd.com . 1196 IN A 151.115.41.123
pike
(Michael Kicks)
October 9, 2021, 7:31am
21
@capote are you using Threatshield?
stephdl
(Stéphane de Labrusse)
October 9, 2021, 8:26am
22
I do not have thi entry
[root@prometheus ~]# grep -srni 'rspamd' /etc/host*
[root@prometheus ~]#
it seems yes, check at the top, maybe you could try by disabling threatshield
What is the output of the CLI below in the console of the server (must output a binary content)
[root@prometheus ~]# curl -k https://maps.rspamd.com/rspamd/redirectors.inc.zst
(�/�$��� �%hK6X6ms��̸��z�u�e!�)��W��YES�k[�DTaZ?�D,
Y�r��|� Ƹ6����8䂣��U��,�լ���b:��7m�;����AE�s��3Ph�