🔔 🔔 🔔 Duyuru: 24. Yılımıza özel indirimler sizleri bekliyor ! Kampanya Kodu : TDATA2024 | Detaylı bilgi için tıklayınız.

Email server troubleshooting

Email server troubleshooting

Email / Exim server troubleshooting techniques. You can use the following email server troubleshooting options in your cpanel. Mostly used this command to find spam emails and bulk email senders. You can also refer mostly used exim commands, also you can refer options in WHM – > Tweak Settings – > mail

Exim Configuration Editor

Email server troubleshooting technique

To get exim mail stats

eximstats -ne -nr /var/log/exim_mainlog >> eximstats.txt

open eximstats.txt file and check details.

Get the details of scripts that are used to send out spam emails :

grep “cwd=” /var/log/exim_mainlog|awk ‘{for(i=1;i teststats

Script to know the mail count by various accounts

grep “cwd=” /var/log/exim_mainlog|awk ‘{for(i=1;i<=10;i++){print $i}}’|sort|uniq -c|grep cwd|sort -n

List number of mails by a domain

exigrep @domain.com /var/log/exim_mainlog|grep 2009-04-17|grep Completed|wc -l

List the number of mails send by each one.

exim -bpr | grep “<” | awk {‘print $4′} | cut -d “” -f 1 | sort -n | uniq -c | sort -n

Show the list from which user’s home the mail is going, so that you can easily trace it and block it if needed.

ps -C exim -fH ewww |grep home

Show the top 50 domains using mail server with options.

eximstats -ne -nr /var/log/exim_mainlog
Show the list of main domains receiving and sending mails on the server.

exim -bp | exiqsumm

Show the IPs which are connected to server through port number 25. It one particular Ip is using more than 10 connection you can block it in the server firewall.

netstat -plan|grep :25|awk {‘print $5′}|cut -d: -f 1|sort|uniq -c|sort -nk 1

List the  “nobody” ownership spamming emails

ps -C exim -fH ewww|awk ‘{for(i=1;i<=40;i++){print $i}}’|sort|uniq -c|grep PWD|sort -n

The above command will show the spamming is currently in progress. If the spamming has happened some hours before, use the following command.

grep “cwd=” /var/log/exim_mainlog|awk ‘{for(i=1;i<=10;i++){print $i}}’|sort|uniq -c|grep cwd|sort -n

This will result in something like :
47 cwd=/root
8393 cwd=/home/sample/public_html/test

Exim server files location and logs


/etc/exim.conf – exim main configuration file

/etc/localdomains – list of domains allowed to relay mail

/etc/remotedomains – list of remote MX record domains.

/var/log/exim_mainlog – incoming/outgoing mails are logged here

/var/log/exim_rejectlog – exim rejected mails are reported here

/var/log/exim_paniclog – exim errors are logged here

/var/spool/exim/input – Mail queue

/scripts/restartsrv_exim – Cpanel script to restart exim

/etc/valiases/domainname.com – Email forwarders and catchall address file

/etc/vfilters/domainname.com – Email filters file

/home/username/etc/domainname/passwd – POP user authentication file

/home/username/mail/inbox – catchall inbox

/home/username/mail/domainname/popusername/inbox – POP user inbox

/home/username/mail/domainname/popusername/spam – POP user spambox

Bu cevap yeterince yardımcı oldu mu?

Diğer Dökümanlar

  • IMAP and POP3 authentication DOS attack

    If you have IMAP and POP3 authentication constantly fails and having problems with your mail clients. Large  IMAP and POP3 authentication request, It may be DOS attack. Check your cPHulk...

  • Enable SMTP Authentication on cpanel

    POP before SMTP authentication allows you to send messages via a POP mail server for 30 minutes before you will need to re-authenticate a session through SMTP. POP before SMTP authentication is...

  • cPanel Log file locations

    cPanel log file locations and Basic troubleshooting, most activity that happens on a server to log files, so that you can go back and review log entries for problems, instead of having to be on the...

  • How to change Exim mail server IP address

    By default Exim will be using the main server shared IP address to send mails. If the main server IP is listed in any spam database, then we will not be able to send mails. In order to fix this, we...

  • Most used exim commands

    You can use the following most used cpanel server exim commands Show the mail in queue for $name exim -bp|grep $name View message header exim -Mvh $MSGID View message body exim -Mvb $MSGID...