Good day, I am having problems sending/receiving emails, apparently amavis, although it is running and I can telnet to the ports of this service, I cannot make the emails work, the error in the logs is: ul 22 12:34:39 mail amavis[188386]: (188386-01) (!)connect to 127.0.0.1:* failed, attempt #1: Can't connect to socket 127.0.0.1:* using module IO::Socket::IP: Connection refused Jul 22 12:34:39 mail amavis[188386]: (188386-01) (!)yP7CldjgML4u FWD from <[email protected]> -> <[email protected]>, 451 4.5.0 From MTA() during fwd-connect (All attempts (1) failed connecting to smtp:127.0.0.1:*): id=188386-01 Jul 22 12:34:39 mail amavis[188386]: (188386-01) Blocked MTA-BLOCKED {TempFailedOutbound}, ORIGINATING LOCAL [127.0.0.1] [187.188.163.102] <[email protected]> -> <[email protected]>, Message-ID: <[email protected]>, mail_id: yP7CldjgML4u, Hits: -0.999, size: 1547, 431 ms What I'm doing wrong ?, any help I'll apreciate it.
Please run the test script and post the results: https://forum.howtoforge.com/threads/please-read-before-posting.58408/
Hi, thanks for your quick answer, here is: ##### SERVER ##### IP-address (as per hostname): [localhost] [WARN] could not determine server's ip address by ifconfig [INFO] OS version is Ubuntu 20.04.4 LTS [INFO] uptime: 16:04:29 up 22:09, 1 user, load average: 0.04, 0.06, 0.01 [INFO] memory: total used free shared buff/cache available Mem: 3.8Gi 1.8Gi 536Mi 20Mi 1.5Gi 1.7Gi Swap: 0B 0B 0B [INFO] systemd failed services status: UNIT LOAD ACTIVE SUB DESCRIPTION ● fwupd-refresh.service loaded failed failed Refresh fwupd metadata and update motd ● quotaon.service loaded failed failed Enable File System Quotas ● snap.lxd.activate.service loaded failed failed Service for snap application lxd.activate LOAD = Reflects whether the unit definition was properly loaded. ACTIVE = The high-level unit activation state, i.e. generalization of SUB. SUB = The low-level unit activation state, values depend on unit type. 3 loaded units listed. [INFO] ISPConfig is installed. ##### ISPCONFIG ##### ISPConfig version is 3.2.8p1 ##### VERSION CHECK ##### [INFO] php (cli) version is 7.4.3 [INFO] php-cgi (used for cgi php in default vhost!) is version 7.4.3 ##### PORT CHECK ##### ##### MAIL SERVER CHECK ##### [WARN] I found no "submission" entry in your postfix master.cf [INFO] this is not critical, but if you want to offer port 587 for smtp connections you have to enable this. ##### RUNNING SERVER PROCESSES ##### [INFO] I found the following web server(s): Apache 2 (PID 197425) [INFO] I found the following mail server(s): Postfix (PID 195615) [INFO] I found the following pop3 server(s): Dovecot (PID 697) [INFO] I found the following imap server(s): Dovecot (PID 697) [INFO] I found the following ftp server(s): PureFTP (PID 1062) ##### LISTENING PORTS ##### (only () Local (Address) [anywhere]:993 (697/dovecot) [anywhere]:995 (697/dovecot) [localhost]:10023 (978/postgrey) [localhost]:10024 (198433/amavisd-new) [localhost]:10026 (198433/amavisd-new) [localhost]:11211 (707/memcached) [anywhere]:110 (697/dovecot) [anywhere]:143 (697/dovecot) [anywhere]:465 (195615/master) [anywhere]:21 (1062/pure-ftpd) ***.***.***.***:53 (708/named) ***.***.***.***:53 (708/named) ***.***.***.***:53 (708/named) [localhost]:53 (708/named) ***.***.***.***:53 (581/systemd-resolve) [anywhere]:22 (824/sshd [anywhere]:25 (195615/master) [localhost]:953 (708/named) *:*:*:*::*:443 (197425/apache2) *:*:*:*::*:993 (697/dovecot) *:*:*:*::*:995 (697/dovecot) *:*:*:*::*:10023 (978/postgrey) *:*:*:*::*:10024 (198433/amavisd-new) *:*:*:*::*:10026 (198433/amavisd-new) *:*:*:*::*:3306 (909/mysqld) [localhost]10 (697/dovecot) [localhost]43 (697/dovecot) *:*:*:*::*:8080 (197425/apache2) *:*:*:*::*:80 (197425/apache2) *:*:*:*::*:8081 (197425/apache2) *:*:*:*::*:465 (195615/master) *:*:*:*::*:21 (1062/pure-ftpd) *:*:*:*::**:*:*:*::*53 (708/named) *:*:*:*::*1c5c:9fff:fec7:53 (708/named) *:*:*:*::*:53 (708/named) *:*:*:*::*:22 (824/sshd *:*:*:*::*:25 (195615/master) *:*:*:*::*:953 (708/named) ##### IPTABLES ##### Chain INPUT (policy DROP) target prot opt source destination f2b-sshd tcp -- [anywhere]/0 [anywhere]/0 multiport dports 22 ufw-before-logging-input all -- [anywhere]/0 [anywhere]/0 ufw-before-input all -- [anywhere]/0 [anywhere]/0 ufw-after-input all -- [anywhere]/0 [anywhere]/0 ufw-after-logging-input all -- [anywhere]/0 [anywhere]/0 ufw-reject-input all -- [anywhere]/0 [anywhere]/0 ufw-track-input all -- [anywhere]/0 [anywhere]/0 Chain FORWARD (policy DROP) target prot opt source destination ufw-before-logging-forward all -- [anywhere]/0 [anywhere]/0 ufw-before-forward all -- [anywhere]/0 [anywhere]/0 ufw-after-forward all -- [anywhere]/0 [anywhere]/0 ufw-after-logging-forward all -- [anywhere]/0 [anywhere]/0 ufw-reject-forward all -- [anywhere]/0 [anywhere]/0 ufw-track-forward all -- [anywhere]/0 [anywhere]/0 Chain OUTPUT (policy ACCEPT) target prot opt source destination ufw-before-logging-output all -- [anywhere]/0 [anywhere]/0 ufw-before-output all -- [anywhere]/0 [anywhere]/0 ufw-after-output all -- [anywhere]/0 [anywhere]/0 ufw-after-logging-output all -- [anywhere]/0 [anywhere]/0 ufw-reject-output all -- [anywhere]/0 [anywhere]/0 ufw-track-output all -- [anywhere]/0 [anywhere]/0 Chain f2b-sshd (1 references) target prot opt source destination REJECT all -- ***.***.***.*** [anywhere]/0 reject-with icmp-port-unreachable REJECT all -- ***.***.***.*** [anywhere]/0 reject-with icmp-port-unreachable REJECT all -- ***.***.***.*** [anywhere]/0 reject-with icmp-port-unreachable REJECT all -- ***.***.***.*** [anywhere]/0 reject-with icmp-port-unreachable REJECT all -- ***.***.***.*** [anywhere]/0 reject-with icmp-port-unreachable REJECT all -- ***.***.***.*** [anywhere]/0 reject-with icmp-port-unreachable REJECT all -- ***.***.***.*** [anywhere]/0 reject-with icmp-port-unreachable REJECT all -- ***.***.***.*** [anywhere]/0 reject-with icmp-port-unreachable REJECT all -- ***.***.***.*** [anywhere]/0 reject-with icmp-port-unreachable REJECT all -- ***.***.***.*** [anywhere]/0 reject-with icmp-port-unreachable REJECT all -- ***.***.***.*** [anywhere]/0 reject-with icmp-port-unreachable REJECT all -- ***.***.***.*** [anywhere]/0 reject-with icmp-port-unreachable REJECT all -- ***.***.***.*** [anywhere]/0 reject-with icmp-port-unreachable RETURN all -- [anywhere]/0 [anywhere]/0 Chain ufw-after-forward (1 references) target prot opt source destination Chain ufw-after-input (1 references) target prot opt source destination ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:137 ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:138 ufw-skip-to-policy-input tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:139 ufw-skip-to-policy-input tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:445 ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:67 ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:68 ufw-skip-to-policy-input all -- [anywhere]/0 [anywhere]/0 ADDRTYPE match dst-type BROADCAST Chain ufw-after-logging-forward (1 references) target prot opt source destination LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] " Chain ufw-after-logging-input (1 references) target prot opt source destination LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] " Chain ufw-after-logging-output (1 references) target prot opt source destination Chain ufw-after-output (1 references) target prot opt source destination Chain ufw-before-forward (1 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 ctstate RELATED,ESTABLISHED ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 3 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 11 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 12 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 8 ufw-user-forward all -- [anywhere]/0 [anywhere]/0 Chain ufw-before-input (1 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 ACCEPT all -- [anywhere]/0 [anywhere]/0 ctstate RELATED,ESTABLISHED ufw-logging-deny all -- [anywhere]/0 [anywhere]/0 ctstate INVALID DROP all -- [anywhere]/0 [anywhere]/0 ctstate INVALID ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 3 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 11 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 12 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 8 ACCEPT udp -- [anywhere]/0 [anywhere]/0 udp spt:67 dpt:68 ufw-not-local all -- [anywhere]/0 [anywhere]/0 ACCEPT udp -- [anywhere]/0 ***.***.***.*** udp dpt:5353 ACCEPT udp -- [anywhere]/0 ***.***.***.*** udp dpt:1900 ufw-user-input all -- [anywhere]/0 [anywhere]/0 Chain ufw-before-logging-forward (1 references) target prot opt source destination Chain ufw-before-logging-input (1 references) target prot opt source destination Chain ufw-before-logging-output (1 references) target prot opt source destination Chain ufw-before-output (1 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 ACCEPT all -- [anywhere]/0 [anywhere]/0 ctstate RELATED,ESTABLISHED ufw-user-output all -- [anywhere]/0 [anywhere]/0 Chain ufw-logging-allow (0 references) target prot opt source destination LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW ALLOW] " Chain ufw-logging-deny (2 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 ctstate INVALID limit: avg 3/min burst 10 LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] " Chain ufw-not-local (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 ADDRTYPE match dst-type LOCAL RETURN all -- [anywhere]/0 [anywhere]/0 ADDRTYPE match dst-type MULTICAST RETURN all -- [anywhere]/0 [anywhere]/0 ADDRTYPE match dst-type BROADCAST ufw-logging-deny all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 DROP all -- [anywhere]/0 [anywhere]/0 Chain ufw-reject-forward (1 references) target prot opt source destination Chain ufw-reject-input (1 references) target prot opt source destination Chain ufw-reject-output (1 references) target prot opt source destination Chain ufw-skip-to-policy-forward (0 references) target prot opt source destination DROP all -- [anywhere]/0 [anywhere]/0 Chain ufw-skip-to-policy-input (7 references) target prot opt source destination DROP all -- [anywhere]/0 [anywhere]/0 Chain ufw-skip-to-policy-output (0 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 Chain ufw-track-forward (1 references) target prot opt source destination Chain ufw-track-input (1 references) target prot opt source destination Chain ufw-track-output (1 references) target prot opt source destination ACCEPT tcp -- [anywhere]/0 [anywhere]/0 ctstate NEW ACCEPT udp -- [anywhere]/0 [anywhere]/0 ctstate NEW Chain ufw-user-forward (1 references) target prot opt source destination Chain ufw-user-input (1 references) target prot opt source destination ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:21 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:22 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:25 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:53 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:80 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:110 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:143 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:443 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:465 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:587 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:993 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:995 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:3306 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:4190 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:8080 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:8081 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 multiport dports 40110:40210 ACCEPT udp -- [anywhere]/0 [anywhere]/0 udp dpt:53 Chain ufw-user-limit (0 references) target prot opt source destination LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 5 LOG flags 0 level 4 prefix "[UFW LIMIT BLOCK] " REJECT all -- [anywhere]/0 [anywhere]/0 reject-with icmp-port-unreachable Chain ufw-user-limit-accept (0 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 Chain ufw-user-logging-forward (0 references) target prot opt source destination Chain ufw-user-logging-input (0 references) target prot opt source destination Chain ufw-user-logging-output (0 references) target prot opt source destination Chain ufw-user-output (1 references) target prot opt source destination ##### LET'S ENCRYPT ##### Certbot is installed in /usr/bin/letsencrypt
I must clarify that it is a new installation ----------------------------------------------------------
You should have posted the listing in CODE tags. The difficult to read listing shows this: Code: [INFO] systemd failed services status: UNIT LOAD ACTIVE SUB DESCRIPTION ● fwupd-refresh.service loaded failed failed Refresh fwupd metadata and update motd ● quotaon.service loaded failed failed Enable File System Quotas ● snap.lxd.activate.service loaded failed failed Service for snap application lxd.activate So three services are failing. Use Code: systemctl status fwupd-refresh.service to see more info. And same for the other two services. Also this was shown: Code: ##### MAIL SERVER CHECK ##### [WARN] I found no "submission" entry in your postfix master.cf [INFO] this is not critical, but if you want to offer port 587 for smtp connections you have to enable this. Examine the installation howto, what should be in postfix configuration files. You did not say how this host was installed. Which guide did you follow?
Hello, I follow every step of this howto: https://www.howtoforge.com/tutorial...l-pureftpd-bind-postfix-doveot-and-ispconfig/
See Chapter 6. Install Postfix, Dovecot, MariaDB, rkhunter, and binutils for instructions on how to enter the submission configuration to /etc/postfix/master.cf. If you can start from empty server, using ISPConfig autoinstall is easier that following the Howto. https://www.howtoforge.com/ispconfig-autoinstall-debian-ubuntu/
I Just did, same problem. mail.log Code: Jul 27 19:45:54 mail postfix/smtps/smtpd[208429]: E866E4080F: client=fixed-187-188-163-102.totalplay.net[187.188.163.102], sasl_method=PLAIN, [email protected] Jul 27 19:45:55 mail postfix/cleanup[208433]: E866E4080F: message-id=<[email protected]> Jul 27 19:45:55 mail postfix/qmgr[208417]: E866E4080F: from=<[email protected]>, size=1607, nrcpt=1 (queue active) Jul 27 19:45:55 mail postfix/smtps/smtpd[208429]: disconnect from fixed-187-188-163-102.totalplay.net[187.188.163.102] ehlo=1 auth=1 mail=1 rcpt=1 data=1 quit=1 commands=6 Jul 27 19:45:55 mail amavis[207123]: (207123-02) (!)connect to 127.0.0.1:* failed, attempt #1: Can't connect to socket 127.0.0.1:* using module IO::Socket::IP: Connection refused Jul 27 19:45:55 mail amavis[207123]: (207123-02) (!)ix0JhVW1kM11 FWD from <[email protected]> -> <[email protected]>, 451 4.5.0 From MTA() during fwd-connect (All attempts (1) failed connecting to smtp:127.0.0.1:*): id=207123-02 Jul 27 19:45:55 mail amavis[207123]: (207123-02) Blocked MTA-BLOCKED {TempFailedOutbound}, ORIGINATING LOCAL [127.0.0.1] [187.188.163.102] <[email protected]> -> <[email protected]>, Message-ID: <[email protected]>, mail_id: ix0JhVW1kM11, Hits: -0.999, size: 1607, dkim_new=default:bnkcom.net, 270 ms Jul 27 19:45:55 mail postfix/lmtp[208420]: E866E4080F: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10026, delay=0.59, delays=0.32/0/0/0.27, dsn=4.5.0, status=deferred (host 127.0.0.1[127.0.0.1] said: 451 4.5.0 id=207123-02 - Temporary MTA failure on relaying, From MTA() during fwd-connect (All attempts (1) failed connecting to smtp:127.0.0.1:*): id=207123-02 (in reply to end of DATA command)) Jul 27 19:45:55 mail dovecot: imap([email protected])<207383><PlQ+jc7kZJu7vKNm>: Connection closed: read(size=6037) failed: Connection reset by peer (IDLE running for 0.001 + waiting input for 0.002 secs, 2 B in + 10 B out, state=wait-input) in=2155 out=4384 deleted=0 expunged=0 trashed=0 hdr_count=1 hdr_bytes=304 body_count=1 body_bytes=1353 Jul 27 19:46:04 mail dovecot: imap-login: Login: user=<[email protected]>, method=PLAIN, rip=187.188.163.102, lip=143.198.70.47, mpid=208452, TLS, session=<pZ7Zqs7kZpu7vKNm> ^C This is master.cnf Code: smtp inet n - y - - smtpd #smtp inet n - y - 1 postscreen #smtpd pass - - y - - smtpd #dnsblog unix - - y - 0 dnsblog #tlsproxy unix - - y - 0 tlsproxy #submission inet n - y - - smtpd -o syslog_name=postfix/submission -o smtpd_tls_security_level=encrypt -o smtpd_sasl_auth_enable=yes -o smtpd_tls_auth_only=yes -o smtpd_client_restrictions=permit_sasl_authenticated,reject # -o smtpd_reject_unlisted_recipient=no # -o smtpd_client_restrictions=$mua_client_restrictions # -o smtpd_helo_restrictions=$mua_helo_restrictions # -o smtpd_sender_restrictions=$mua_sender_restrictions # -o smtpd_recipient_restrictions= # -o smtpd_relay_restrictions=permit_sasl_authenticated,reject # -o milter_macro_daemon_name=ORIGINATING smtps inet n - y - - smtpd -o syslog_name=postfix/smtps -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes -o smtpd_client_restrictions=permit_sasl_authenticated,reject # -o smtpd_reject_unlisted_recipient=no # -o smtpd_client_restrictions=$mua_client_restrictions # -o smtpd_helo_restrictions=$mua_helo_restrictions # -o smtpd_sender_restrictions=$mua_sender_restrictions # -o smtpd_recipient_restrictions= # -o smtpd_relay_restrictions=permit_sasl_authenticated,reject # -o milter_macro_daemon_name=ORIGINATING Code: root@mail:~# cat htf_report.txt ##### SERVER ##### IP-address (as per hostname): ***.***.***.*** [WARN] could not determine server's ip address by ifconfig [INFO] OS version is Ubuntu 20.04.4 LTS [INFO] uptime: 14:40:33 up 3:10, 1 user, load average: 0.10, 0.16, 0.41 [INFO] memory: total used free shared buff/cache available Mem: 3.8Gi 1.8Gi 205Mi 24Mi 1.9Gi 1.8Gi Swap: 0B 0B 0B [INFO] systemd failed services status: UNIT LOAD ACTIVE SUB DESCRIPTION ● fwupd-refresh.service loaded failed failed Refresh fwupd metadata and update motd LOAD = Reflects whether the unit definition was properly loaded. ACTIVE = The high-level unit activation state, i.e. generalization of SUB. SUB = The low-level unit activation state, values depend on unit type. 1 loaded units listed. [INFO] ISPConfig is installed. ##### ISPCONFIG ##### ISPConfig version is 3.2.8p1 ##### VERSION CHECK ##### [INFO] php (cli) version is 7.4.3 [INFO] php-cgi (used for cgi php in default vhost!) is version 7.4.3 ##### PORT CHECK ##### ##### MAIL SERVER CHECK ##### [WARN] I found no "submission" entry in your postfix master.cf [INFO] this is not critical, but if you want to offer port 587 for smtp connections you have to enable this. ##### RUNNING SERVER PROCESSES ##### [INFO] I found the following web server(s): Apache 2 (PID 75360) [INFO] I found the following mail server(s): Postfix (PID 75295) [INFO] I found the following pop3 server(s): Dovecot (PID 75344) [INFO] I found the following imap server(s): Dovecot (PID 75344) [INFO] I found the following ftp server(s): PureFTP (PID 75388) ##### LISTENING PORTS ##### (only () Local (Address) [localhost]:10023 (32612/postgrey) [localhost]:10024 (207120/amavisd-new) [localhost]:10026 (207120/amavisd-new) [localhost]:11211 (50063/memcached) [anywhere]:110 (75344/dovecot) [anywhere]:143 (75344/dovecot) [anywhere]:465 (75295/master) ***.***.***.***:53 (75400/named) ***.***.***.***:53 (75400/named) ***.***.***.***:53 (75400/named) [localhost]:53 (75400/named) [anywhere]:21 (75388/pure-ftpd) ***.***.***.***:53 (587/systemd-resolve) [anywhere]:22 (758/sshd:) [localhost]:953 (75400/named) [anywhere]:25 (75295/master) [anywhere]:993 (75344/dovecot) [anywhere]:995 (75344/dovecot) *:*:*:*::*:10023 (32612/postgrey) *:*:*:*::*:10024 (207120/amavisd-new) *:*:*:*::*:10026 (207120/amavisd-new) *:*:*:*::*:3306 (74633/mysqld) [localhost]10 (75344/dovecot) [localhost]43 (75344/dovecot) *:*:*:*::*:8080 (75360/apache2) *:*:*:*::*:80 (75360/apache2) *:*:*:*::*:8081 (75360/apache2) *:*:*:*::*:465 (75295/master) *:*:*:*::**:*:*:*::*53 (75400/named) *:*:*:*::*1c5c:9fff:fec7:53 (75400/named) *:*:*:*::*:53 (75400/named) *:*:*:*::*:21 (75388/pure-ftpd) *:*:*:*::*:22 (758/sshd:) *:*:*:*::*:25 (75295/master) *:*:*:*::*:953 (75400/named) *:*:*:*::*:443 (75360/apache2) *:*:*:*::*:993 (75344/dovecot) *:*:*:*::*:995 (75344/dovecot) ##### IPTABLES ##### Chain INPUT (policy ACCEPT) target prot opt source destination Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination ##### LET'S ENCRYPT ##### Certbot is installed in /usr/bin/letsencrypt netstat Code: root@mail:/etc/postfix# netstat -tapn | grep LIST tcp 0 0 127.0.0.1:10023 0.0.0.0:* LISTEN 32612/postgrey --pi tcp 0 0 127.0.0.1:10024 0.0.0.0:* LISTEN 207120/amavisd-new tcp 0 0 127.0.0.1:10026 0.0.0.0:* LISTEN 207120/amavisd-new tcp 0 0 127.0.0.1:11211 0.0.0.0:* LISTEN 50063/memcached tcp 0 0 0.0.0.0:110 0.0.0.0:* LISTEN 75344/dovecot tcp 0 0 0.0.0.0:143 0.0.0.0:* LISTEN 75344/dovecot tcp 0 0 0.0.0.0:465 0.0.0.0:* LISTEN 209075/master tcp 0 0 10.124.0.3:53 0.0.0.0:* LISTEN 75400/named tcp 0 0 10.48.0.6:53 0.0.0.0:* LISTEN 75400/named tcp 0 0 143.198.70.47:53 0.0.0.0:* LISTEN 75400/named tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN 75400/named tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN 75388/pure-ftpd (SE tcp 0 0 127.0.0.53:53 0.0.0.0:* LISTEN 587/systemd-resolve tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 758/sshd: /usr/sbin tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 209075/master tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN 75400/named tcp 0 0 0.0.0.0:993 0.0.0.0:* LISTEN 75344/dovecot tcp 0 0 0.0.0.0:995 0.0.0.0:* LISTEN 75344/dovecot tcp6 0 0 ::1:10023 :::* LISTEN 32612/postgrey --pi tcp6 0 0 ::1:10024 :::* LISTEN 207120/amavisd-new tcp6 0 0 ::1:10026 :::* LISTEN 207120/amavisd-new tcp6 0 0 :::3306 :::* LISTEN 74633/mysqld tcp6 0 0 :::110 :::* LISTEN 75344/dovecot tcp6 0 0 :::143 :::* LISTEN 75344/dovecot tcp6 0 0 :::8080 :::* LISTEN 75360/apache2 tcp6 0 0 :::80 :::* LISTEN 75360/apache2 tcp6 0 0 :::465 :::* LISTEN 209075/master tcp6 0 0 :::8081 :::* LISTEN 75360/apache2 tcp6 0 0 fe80::2cfc:fff:fe22::53 :::* LISTEN 75400/named tcp6 0 0 fe80::1c5c:9fff:fec7:53 :::* LISTEN 75400/named tcp6 0 0 ::1:53 :::* LISTEN 75400/named tcp6 0 0 :::21 :::* LISTEN 75388/pure-ftpd (SE tcp6 0 0 :::22 :::* LISTEN 758/sshd: /usr/sbin tcp6 0 0 :::25 :::* LISTEN 209075/master tcp6 0 0 ::1:953 :::* LISTEN 75400/named tcp6 0 0 :::443 :::* LISTEN 75360/apache2 tcp6 0 0 :::993 :::* LISTEN 75344/dovecot tcp6 0 0 :::995 :::* LISTEN 75344/dovecot Please HELP! Regards.
Did it again, for real. Code: Jul 27 21:05:48 mail postfix/cleanup[349134]: E67773F2D5: message-id=<[email protected]> Jul 27 21:05:48 mail postfix/qmgr[215338]: E67773F2D5: from=<[email protected]>, size=1601, nrcpt=1 (queue active) Jul 27 21:05:48 mail postfix/lmtp[349147]: connect to 127.0.0.1[127.0.0.1]:10026: Connection refused Jul 27 21:05:48 mail postfix/lmtp[349147]: E67773F2D5: to=<[email protected]>, relay=none, delay=0.38, delays=0.38/0/0/0, dsn=4.4.1, status=deferred (connect to 127.0.0.1[127.0.0.1]:10026: Connection refused) Jul 27 21:05:48 mail postfix/smtps/smtpd[349221]: disconnect from fixed-187-188-163-102.totalplay.net[187.188.163.102] ehlo=1 auth=1 mail=1 rcpt=1 data=1 quit=1 commands=6 Jul 27 21:05:48 mail dovecot: imap([email protected])<349077><i67VxM/kcpu7vKNm>: Logged out in=1615 out=857 deleted=0 expunged=0 trashed=0 hdr_count=0 hdr_bytes=0 body_count=0 body_bytes=0 Jul 27 21:05:48 mail dovecot: imap-login: Login: user=<[email protected]>, method=PLAIN, rip=187.188.163.102, lip=143.198.70.47, mpid=349226, TLS, session=<AYAFyM/kdpu7vKNm>
Ok, I made some changes. With this https://www.howtoforge.com/ispconfig-autoinstall-debian-ubuntu/, ISPConfig It is configured to work with rspamd instead of amavis but postfix was trying to connect to port 10024 so what I did was change the port to * as indicated in the code. Now I can send emails to some servers, but not to gmail.com, they are bounced to me. From: Code: /^/ FILTER lmtp:[127.0.0.1]:10024 To this Code: /^/ FILTER lmtp:[127.0.0.1]:* I'm not sure if the emails are being scanned before they are sent. netstat Code: root@mail:/etc/postfix# netstat -tapn | grep LIST tcp 0 0 0.0.0.0:587 0.0.0.0:* LISTEN 354635/master tcp 0 0 127.0.0.1:11211 0.0.0.0:* LISTEN 76776/memcached tcp 0 0 127.0.0.1:6379 0.0.0.0:* LISTEN 42136/redis-server tcp 0 0 0.0.0.0:110 0.0.0.0:* LISTEN 215349/dovecot tcp 0 0 0.0.0.0:143 0.0.0.0:* LISTEN 215349/dovecot tcp 0 0 0.0.0.0:465 0.0.0.0:* LISTEN 354635/master tcp 0 0 10.124.0.3:53 0.0.0.0:* LISTEN 215612/named tcp 0 0 10.48.0.6:53 0.0.0.0:* LISTEN 215612/named tcp 0 0 143.198.70.47:53 0.0.0.0:* LISTEN 215612/named tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN 215612/named tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN 215466/pure-ftpd (S tcp 0 0 127.0.0.53:53 0.0.0.0:* LISTEN 611/systemd-resolve tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 2164/sshd: /usr/sbi tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 354635/master tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN 215612/named tcp 0 0 0.0.0.0:4190 0.0.0.0:* LISTEN 215349/dovecot tcp 0 0 0.0.0.0:993 0.0.0.0:* LISTEN 215349/dovecot tcp 0 0 0.0.0.0:995 0.0.0.0:* LISTEN 215349/dovecot tcp 0 0 127.0.0.1:11332 0.0.0.0:* LISTEN 215343/rspamd: main tcp 0 0 127.0.0.1:11333 0.0.0.0:* LISTEN 215343/rspamd: main tcp 0 0 127.0.0.1:11334 0.0.0.0:* LISTEN 215343/rspamd: main tcp 0 0 127.0.0.1:10023 0.0.0.0:* LISTEN 42430/postgrey --pi tcp6 0 0 :::587 :::* LISTEN 354635/master tcp6 0 0 ::1:6379 :::* LISTEN 42136/redis-server tcp6 0 0 :::110 :::* LISTEN 215349/dovecot tcp6 0 0 :::143 :::* LISTEN 215349/dovecot tcp6 0 0 :::8080 :::* LISTEN 351160/apache2 tcp6 0 0 :::80 :::* LISTEN 351160/apache2 tcp6 0 0 :::465 :::* LISTEN 354635/master tcp6 0 0 :::8081 :::* LISTEN 351160/apache2 tcp6 0 0 fe80::2cfc:fff:fe22::53 :::* LISTEN 215612/named tcp6 0 0 fe80::1c5c:9fff:fec7:53 :::* LISTEN 215612/named tcp6 0 0 ::1:53 :::* LISTEN 215612/named tcp6 0 0 :::21 :::* LISTEN 215466/pure-ftpd (S tcp6 0 0 :::22 :::* LISTEN 2164/sshd: /usr/sbi tcp6 0 0 :::25 :::* LISTEN 354635/master tcp6 0 0 ::1:953 :::* LISTEN 215612/named tcp6 0 0 :::443 :::* LISTEN 351160/apache2 tcp6 0 0 :::4190 :::* LISTEN 215349/dovecot tcp6 0 0 :::993 :::* LISTEN 215349/dovecot tcp6 0 0 :::995 :::* LISTEN 215349/dovecot tcp6 0 0 ::1:11332 :::* LISTEN 215343/rspamd: main tcp6 0 0 ::1:11333 :::* LISTEN 215343/rspamd: main tcp6 0 0 ::1:11334 :::* LISTEN 215343/rspamd: main tcp6 0 0 ::1:10023 :::* LISTEN 42430/postgrey --pi tcp6 0 0 :::3306 :::* LISTEN 214674/mysqld mail.log Code: Jul 27 21:55:06 mail dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=187.150.107.169, lip=143.198.70.47, TLS handshaking: SSL_accept() failed: error:14209102:SSL routines:tls_early_post_process_client_hello:unsupported protocol, session=<VmlKeNDkfr67lmup> Jul 27 21:55:12 mail postfix/smtpd[355184]: disconnect from mail-ot1-f49.google.com[209.85.210.49] ehlo=2 starttls=1 mail=1 rcpt=2 bdat=1 quit=1 commands=8 Jul 27 21:55:55 mail postfix/smtps/smtpd[355336]: connect from unknown[85.203.32.22] Jul 27 21:55:57 mail postfix/smtps/smtpd[355336]: 147FF40634: client=unknown[85.203.32.22], sasl_method=LOGIN, [email protected] Jul 27 21:55:57 mail postfix/cleanup[355186]: 147FF40634: message-id=<[email protected]> Jul 27 21:55:58 mail postfix/qmgr[354637]: 147FF40634: from=<[email protected]>, size=26549, nrcpt=1 (queue active) Jul 27 21:55:59 mail postfix/smtp[355343]: connect to gmail-smtp-in.l.google.com[2607:f8b0:4023:c0d::1b]:25: Network is unreachable Jul 27 21:56:00 mail postfix/smtp[355343]: 147FF40634: to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.251.2.26]:25, delay=3.1, delays=2.1/0.03/0.56/0.48, dsn=5.7.1, status=bounced (host gmail-smtp-in.l.google.com[142.251.2.26] said: 550-5.7.1 [143.198.70.47 12] Our system has detected that this message is 550-5.7.1 likely unsolicited mail. To reduce the amount of spam sent to Gmail, 550-5.7.1 this message has been blocked. Please visit 550-5.7.1 https://support.google.com/mail/?p=UnsolicitedMessageError 550 5.7.1 for more information. e13-20020a17090a684d00b001f217554b0csi3853731pjm.81 - gsmtp (in reply to end of DATA command)) Jul 27 21:56:00 mail postfix/cleanup[355186]: 0C97840763: message-id=<[email protected]> Jul 27 21:56:00 mail postfix/bounce[355345]: 147FF40634: sender non-delivery notification: 0C97840763 Jul 27 21:56:00 mail postfix/qmgr[354637]: 0C97840763: from=<>, size=30133, nrcpt=1 (queue active) Jul 27 21:56:00 mail postfix/qmgr[354637]: 147FF40634: removed
In #9, the master.cf you show has the submission line commented out. Code: #submission inet n - y - - smtpd -o syslog_name=postfix/submission -o smtpd_tls_security_level=encrypt Compare what you have in that file to the Howto instructions. Check with the common issues script until it no longer finds errors or warnings. Did you in #12 state you have removed the old installation and installed a new system with ISPConfig autoinstall? I have not needed manual configuration when using autoinstall, are you sure you made the right configurations?
[QOUTE] Did you in #12 state you have removed the old installation and installed a new system with ISPConfig autoinstall? I have not needed manual configuration when using autoinstall, are you sure you made the right configurations? [/QOUTE] When I say it's configured, I mean that autoinstall uses rspamd as a filter instead of amavis by default, I didn't use any manual either, autoinstall did everything. But when doing the sending and receiving mail tests, they still don't work. Code: root@mail:/home/agustinux# cat htf_report.txt ##### SERVER ##### IP-address (as per hostname): ***.***.***.*** [WARN] could not determine server's ip address by ifconfig [INFO] OS version is Ubuntu 20.04.4 LTS [INFO] uptime: 09:48:27 up 18:25, 1 user, load average: 0.04, 0.03, 0.05 [INFO] memory: total used free shared buff/cache available Mem: 3.8Gi 1.9Gi 840Mi 72Mi 1.1Gi 1.6Gi Swap: 0B 0B 0B [INFO] systemd failed services status: UNIT LOAD ACTIVE SUB DESCRIPTION ● fwupd-refresh.service loaded failed failed Refresh fwupd metadata and update motd LOAD = Reflects whether the unit definition was properly loaded. ACTIVE = The high-level unit activation state, i.e. generalization of SUB. SUB = The low-level unit activation state, values depend on unit type. 1 loaded units listed. [INFO] ISPConfig is installed. ##### ISPCONFIG ##### ISPConfig version is 3.2.8p1 ##### VERSION CHECK ##### [INFO] php (cli) version is 7.4.30 [INFO] php-cgi (used for cgi php in default vhost!) is version 7.4.30 ##### PORT CHECK ##### ##### MAIL SERVER CHECK ##### ##### RUNNING SERVER PROCESSES ##### [INFO] I found the following web server(s): Apache 2 (PID 351160) [INFO] I found the following mail server(s): Postfix (PID 354635) [INFO] I found the following pop3 server(s): Dovecot (PID 215349) [INFO] I found the following imap server(s): Dovecot (PID 215349) [INFO] I found the following ftp server(s): PureFTP (PID 215466) ##### LISTENING PORTS ##### (only () Local (Address) [anywhere]:587 (354635/master) [localhost]:11211 (76776/memcached) [localhost]:6379 (42136/redis-server) [anywhere]:110 (215349/dovecot) [anywhere]:143 (215349/dovecot) [anywhere]:465 (354635/master) ***.***.***.***:53 (215612/named) ***.***.***.***:53 (215612/named) ***.***.***.***:53 (215612/named) [localhost]:53 (215612/named) [anywhere]:21 (215466/pure-ftpd) ***.***.***.***:53 (611/systemd-resolve) [anywhere]:22 (2164/sshd:) [anywhere]:25 (354635/master) [localhost]:953 (215612/named) [anywhere]:4190 (215349/dovecot) [anywhere]:993 (215349/dovecot) [anywhere]:995 (215349/dovecot) [localhost]:11332 (215343/rspamd:) [localhost]:11333 (215343/rspamd:) [localhost]:11334 (215343/rspamd:) [localhost]:10023 (42430/postgrey) *:*:*:*::*:587 (354635/master) *:*:*:*::*:6379 (42136/redis-server) [localhost]10 (215349/dovecot) [localhost]43 (215349/dovecot) *:*:*:*::*:8080 (351160/apache2) *:*:*:*::*:80 (351160/apache2) *:*:*:*::*:465 (354635/master) *:*:*:*::*:8081 (351160/apache2) *:*:*:*::**:*:*:*::*53 (215612/named) *:*:*:*::*1c5c:9fff:fec7:53 (215612/named) *:*:*:*::*:53 (215612/named) *:*:*:*::*:21 (215466/pure-ftpd) *:*:*:*::*:22 (2164/sshd:) *:*:*:*::*:25 (354635/master) *:*:*:*::*:953 (215612/named) *:*:*:*::*:443 (351160/apache2) *:*:*:*::*:4190 (215349/dovecot) *:*:*:*::*:993 (215349/dovecot) *:*:*:*::*:995 (215349/dovecot) *:*:*:*::*:11332 (215343/rspamd:) *:*:*:*::*:11333 (215343/rspamd:) *:*:*:*::*:11334 (215343/rspamd:) *:*:*:*::*:10023 (42430/postgrey) *:*:*:*::*:3306 (214674/mysqld) ##### IPTABLES ##### Chain INPUT (policy DROP) target prot opt source destination f2b-sshd tcp -- [anywhere]/0 [anywhere]/0 multiport dports 22 ufw-before-logging-input all -- [anywhere]/0 [anywhere]/0 ufw-before-input all -- [anywhere]/0 [anywhere]/0 ufw-after-input all -- [anywhere]/0 [anywhere]/0 ufw-after-logging-input all -- [anywhere]/0 [anywhere]/0 ufw-reject-input all -- [anywhere]/0 [anywhere]/0 ufw-track-input all -- [anywhere]/0 [anywhere]/0 Chain FORWARD (policy DROP) target prot opt source destination ufw-before-logging-forward all -- [anywhere]/0 [anywhere]/0 ufw-before-forward all -- [anywhere]/0 [anywhere]/0 ufw-after-forward all -- [anywhere]/0 [anywhere]/0 ufw-after-logging-forward all -- [anywhere]/0 [anywhere]/0 ufw-reject-forward all -- [anywhere]/0 [anywhere]/0 ufw-track-forward all -- [anywhere]/0 [anywhere]/0 Chain OUTPUT (policy ACCEPT) target prot opt source destination ufw-before-logging-output all -- [anywhere]/0 [anywhere]/0 ufw-before-output all -- [anywhere]/0 [anywhere]/0 ufw-after-output all -- [anywhere]/0 [anywhere]/0 ufw-after-logging-output all -- [anywhere]/0 [anywhere]/0 ufw-reject-output all -- [anywhere]/0 [anywhere]/0 ufw-track-output all -- [anywhere]/0 [anywhere]/0 Chain f2b-sshd (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 Chain ufw-after-forward (1 references) target prot opt source destination Chain ufw-after-input (1 references) target prot opt source destination ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:137 ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:138 ufw-skip-to-policy-input tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:139 ufw-skip-to-policy-input tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:445 ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:67 ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:68 ufw-skip-to-policy-input all -- [anywhere]/0 [anywhere]/0 ADDRTYPE match dst-type BROADCAST Chain ufw-after-logging-forward (1 references) target prot opt source destination LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] " Chain ufw-after-logging-input (1 references) target prot opt source destination LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] " Chain ufw-after-logging-output (1 references) target prot opt source destination Chain ufw-after-output (1 references) target prot opt source destination Chain ufw-before-forward (1 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 ctstate RELATED,ESTABLISHED ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 3 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 11 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 12 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 8 ufw-user-forward all -- [anywhere]/0 [anywhere]/0 Chain ufw-before-input (1 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 ACCEPT all -- [anywhere]/0 [anywhere]/0 ctstate RELATED,ESTABLISHED ufw-logging-deny all -- [anywhere]/0 [anywhere]/0 ctstate INVALID DROP all -- [anywhere]/0 [anywhere]/0 ctstate INVALID ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 3 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 11 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 12 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 8 ACCEPT udp -- [anywhere]/0 [anywhere]/0 udp spt:67 dpt:68 ufw-not-local all -- [anywhere]/0 [anywhere]/0 ACCEPT udp -- [anywhere]/0 ***.***.***.*** udp dpt:5353 ACCEPT udp -- [anywhere]/0 ***.***.***.*** udp dpt:1900 ufw-user-input all -- [anywhere]/0 [anywhere]/0 Chain ufw-before-logging-forward (1 references) target prot opt source destination Chain ufw-before-logging-input (1 references) target prot opt source destination Chain ufw-before-logging-output (1 references) target prot opt source destination Chain ufw-before-output (1 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 ACCEPT all -- [anywhere]/0 [anywhere]/0 ctstate RELATED,ESTABLISHED ufw-user-output all -- [anywhere]/0 [anywhere]/0 Chain ufw-logging-allow (0 references) target prot opt source destination LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW ALLOW] " Chain ufw-logging-deny (2 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 ctstate INVALID limit: avg 3/min burst 10 LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] " Chain ufw-not-local (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 ADDRTYPE match dst-type LOCAL RETURN all -- [anywhere]/0 [anywhere]/0 ADDRTYPE match dst-type MULTICAST RETURN all -- [anywhere]/0 [anywhere]/0 ADDRTYPE match dst-type BROADCAST ufw-logging-deny all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 DROP all -- [anywhere]/0 [anywhere]/0 Chain ufw-reject-forward (1 references) target prot opt source destination Chain ufw-reject-input (1 references) target prot opt source destination Chain ufw-reject-output (1 references) target prot opt source destination Chain ufw-skip-to-policy-forward (0 references) target prot opt source destination DROP all -- [anywhere]/0 [anywhere]/0 Chain ufw-skip-to-policy-input (7 references) target prot opt source destination DROP all -- [anywhere]/0 [anywhere]/0 Chain ufw-skip-to-policy-output (0 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 Chain ufw-track-forward (1 references) target prot opt source destination Chain ufw-track-input (1 references) target prot opt source destination Chain ufw-track-output (1 references) target prot opt source destination ACCEPT tcp -- [anywhere]/0 [anywhere]/0 ctstate NEW ACCEPT udp -- [anywhere]/0 [anywhere]/0 ctstate NEW Chain ufw-user-forward (1 references) target prot opt source destination Chain ufw-user-input (1 references) target prot opt source destination ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:21 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:22 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:25 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:53 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:80 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:110 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:143 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:443 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:465 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:587 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:993 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:995 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:3306 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:4190 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:8080 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:8081 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 multiport dports 40110:40210 ACCEPT udp -- [anywhere]/0 [anywhere]/0 udp dpt:53 Chain ufw-user-limit (0 references) target prot opt source destination LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 5 LOG flags 0 level 4 prefix "[UFW LIMIT BLOCK] " REJECT all -- [anywhere]/0 [anywhere]/0 reject-with icmp-port-unreachable Chain ufw-user-limit-accept (0 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 Chain ufw-user-logging-forward (0 references) target prot opt source destination Chain ufw-user-logging-input (0 references) target prot opt source destination Chain ufw-user-logging-output (0 references) target prot opt source destination Chain ufw-user-output (1 references) target prot opt source destination ##### LET'S ENCRYPT ##### acme.sh is installed in /root/.acme.sh/acme.sh I send again master.cf and emphasize that this is how the autoinstall left it. Code: # ========================================================================== smtp inet n - y - - smtpd #smtp inet n - y - 1 postscreen #smtpd pass - - y - - smtpd #dnsblog unix - - y - 0 dnsblog #tlsproxy unix - - y - 0 tlsproxy submission inet n - y - - smtpd -o syslog_name=postfix/submission -o smtpd_tls_security_level=encrypt -o smtpd_sasl_auth_enable=yes -o smtpd_client_restrictions=permit_sasl_authenticated,reject # -o syslog_name=postfix/submission # -o smtpd_tls_security_level=encrypt # -o smtpd_sasl_auth_enable=yes # -o smtpd_tls_auth_only=yes # -o smtpd_reject_unlisted_recipient=no # -o smtpd_client_restrictions=$mua_client_restrictions # -o smtpd_helo_restrictions=$mua_helo_restrictions # -o smtpd_sender_restrictions=$mua_sender_restrictions # -o smtpd_recipient_restrictions= # -o smtpd_relay_restrictions=permit_sasl_authenticated,reject # -o milter_macro_daemon_name=ORIGINATING smtps inet n - y - - smtpd -o syslog_name=postfix/smtps -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes -o smtpd_client_restrictions=permit_sasl_authenticated,reject # -o syslog_name=postfix/smtps Thank you very much for your comments and help.
So you haveLogin to ISPConfig, go to system > server config > mail. If amavis is selected there, change it to rspamd. If rspamd is selected there, change it to amavis, press save, change it back to rspamd and press save.
If you have a look at #12, google explains in the error message what your problem is. There is no issue with your mail server, so sending works fine. So there is a completely different issue now from what you started this thread with. Your new issue is that Google does not accept the email which was successfully sent because it is considered spam. This can have various reasons, e.g. if you write a test email with subject test or similar and no 'normal' text, google will reject that. Other possibilities are that you have not enabled dkim signing and set up the dkim key in DNS, that the server hostname and reverse DNS are not configured in DNS or something similar. @Taleman has written a detailed guide about mail server configuration, which you can find here: https://www.howtoforge.com/how-to-install-an-email-server-with-ispconfig-on-debian-10/
dkim is enabled in mail secction, but not in DNS, I'll check this step and let you know. Thank you for your reply.
