Forgot your password?
Document Actions
Postfixのログ解析
pflogsummでPostfixのログ解析
pflogsummをインストールする。
# aptitude install pflogsumm
ログ解析結果の出力ディレクトリを作成する。
# mkdir /var/www/pflogsumm
解析結果を出力する。
# /usr/sbin/pflogsumm.pl /var/log/mail.log > /var/www/pflogsumm/daily.txt
昨日分のみの場合には、
# /usr/sbin/pflogsumm.pl -d yesterday /var/log/mail.log > /var/www/pflogsumm/yesterday.txt
出力結果をブラウザで確認(確認できる場所に出力)する。上手く出力されれば、cron登録を行う。
結果のサンプル(リレー、送信に覚えの無いアドレスが大量にある場合には、要注意。不正中継かも)
Postfix log summaries for Sep 12
Grand Totals------------
messages
170 received97 delivered
0 forwarded
0 deferred
146 bounced
4 rejected (3%)
0 reject warnings
0 held
0 discarded (0%)
248136 bytes received149890 bytes delivered
7 senders
6 sending hosts/domains
7 recipients
3 recipient hosts/domains
Per-Hour Traffic Summarytime received delivered deferred bounced rejected
--------------------------------------------------------------------
0000-0100 0 0 0 0 0
0100-0200 0 0 0 0 0
0200-0300 0 0 0 0 0
0300-0400 0 0 0 0 0
0400-0500 0 0 0 0 0
0500-0600 0 0 0 0 0
0600-0700 4 2 0 4 0
0700-0800 10 5 0 10 4
0800-0900 10 6 0 8 0
0900-1000 8 4 0 8 0
1000-1100 8 4 0 8 0
1100-1200 12 6 0 8 0
1200-1300 8 4 0 8 0
1300-1400 8 4 0 8 0
1400-1500 8 4 0 8 0
1500-1600 8 4 0 8 0
1600-1700 8 4 0 8 0
1700-1800 8 4 0 8 0
1800-1900 8 4 0 8 0
1900-2000 8 4 0 8 0
2000-2100 8 4 0 8 0
2100-2200 10 6 0 8 0
2200-2300 8 4 0 8 0
2300-2400 28 24 0 12 0
Host/Domain Summary: Message Deliverysent cnt bytes defers avg dly max dly host/domain
-------- ------- ------- ------- ------- -----------
73 74225 0 0.4 s 2.5 s mail.sugio-garden.com
23 72176 0 0.5 s 5.0 s sugio-garden.com
1 3489 0 10.0 s 10.0 s niji.or.jp
Host/Domain Summary: Messages Receivedmsg cnt bytes host/domain
-------- ------- -----------
142 177985 mail.sugio-garden.com
14 12605 sugio-garden.com
6 8447 niji.or.jp
2 35413 melten.com
2 10315 err.yahoo.co.jp
2 3371 hotmail.com
Senders by message count------------------------
142 XXXX@mail.sugio-garden.com
12 XXXXXXXX@sugio-garden.com
6 XXXXXXXXXX@niji.or.jp
2 XXXX@hotmail.com
2 XXXXXXXXX@melten.com
2 XXXXX@sugio-garden.com
2 XXXX@err.yahoo.co.jp
Recipients by message count---------------------------
73 XXX@mail.sugio-garden.com
11 XXXXXXX@sugio-garden.com
5 XXXX@sugio-garden.com
4 XXXXXXX@sugio-garden.com
2 XXXXX@sugio-garden.com
1 XXXXXXX@sugio-garden.com
1 XXXX@niji.or.jp
Senders by message size-----------------------
177985 XXXX@mail.sugio-garden.com
35413 XXXXX@melten.com
11100 XXXXX@sugio-garden.com
10315 XXXXX@err.yahoo.co.jp
8447 XXXX@niji.or.jp
3371 XXXXXXX@hotmail.com
1505 XXXXX@sugio-garden.com
Recipients by message size--------------------------
74225 XXXX@mail.sugio-garden.com
45728 XXXXX@sugio-garden.com
18344 XXXX@sugio-garden.com
3992 XXXXXX@sugio-garden.com
3489 XXXXXXXX@niji.or.jp
3371 XXXXXXXXX@sugio-garden.com
741 XXXXXX@sugio-garden.com
message deferral detail: none
message bounce detail (by relay)--------------------------------
virtual (total: 146)
144 unknown user: "XXX@mail.sugio-garden.com"
1 unknown user: "XXXXXX@sugio-garden.com"
1 unknown user: "XXXXXXX@sugio-garden.com"
message reject detail---------------------
RCPT
Recipient address rejected: User unknown in local recipient table (total: 4)
4 XXXXXX@sugio-garden.com
message reject warning detail: none
message hold detail: none
message discard detail: none
smtp delivery failures: none
Warnings--------
smtpd (total: 1)
1 61.11.52.51: hostname 61.11.52.51.static-hyderabad.vsnl.net.in ...
trivial-rewrite (total: 39)
39 do not list domain sugio-garden.com in BOTH mydestination and v...
Fatal Errors: none
Panics: none
Master daemon messages----------------------
1 daemon started -- version 2.3.8, configuration /etc/postfix
1 reload configuration /etc/postfix
1 terminating on signal 15