Cant add mail account

Hi again, i have a new problem. One month ago a installed ISPConfig, after that I tried create my domain. Now i have my domain and mail server with this domain. I set all dns like A, SPF1, DKIM, DMARC, MX and other, but i cant login like [email protected] in thunderbird when i use mail server name like mailserver.domain.com. But if i use local address i can do that. Can u help me? All ports for mail has open 25, 143, and other

 

This is the trouble with dns records, or ISPConfig settigs?

 

I have no problems with DNS records

 

May be i need something to do with main.cf?

 

Code:

##### SERVER #####
IP-address (as per hostname): ***.***.***.***
[WARN] could not determine server's ip address by ifconfig
[INFO] OS version is Ubuntu 22.04.3 LTS

[INFO] uptime:  14:02:43 up 39 min,  1 user,  load average: 0.05, 0.07, 0.02

[INFO] memory:
               total        used        free      shared  buff/cache   available
Mem:           9.7Gi       514Mi       8.4Gi        51Mi       781Mi       8.9Gi
Swap:          4.0Gi          0B       4.0Gi

[INFO] systemd failed services status:
  UNIT                      LOAD   ACTIVE SUB    DESCRIPTION
● snap.lxd.activate.service loaded failed failed Service for snap application lxd.activate

LOAD   = Reflects whether the unit definition was properly loaded.
ACTIVE = The high-level unit activation state, i.e. generalization of SUB.
SUB    = The low-level unit activation state, values depend on unit type.
1 loaded units listed.

[INFO] ISPConfig is installed.

##### ISPCONFIG #####
ISPConfig version is 3.2.11


##### VERSION CHECK #####

[INFO] php (cli) version is 8.1.24
[INFO] php-cgi (used for cgi php in default vhost!) is version 8.1.24

##### PORT CHECK #####


##### MAIL SERVER CHECK #####


##### RUNNING SERVER PROCESSES #####

[INFO] I found the following web server(s):
        Apache 2 (PID 1031)
[INFO] I found the following mail server(s):
        Postfix (PID 1808)
[INFO] I found the following pop3 server(s):
        Dovecot (PID 707)
[INFO] I found the following imap server(s):
        Dovecot (PID 707)
[INFO] I found the following ftp server(s):
        PureFTP (PID 1238)

##### LISTENING PORTS #####
(only           ()
Local           (Address)
***.***.***.***:53              (694/systemd-resolve)
--More--

 

I know how to add new user

 

Code:

##### SERVER #####
IP-address (as per hostname): ***.***.***.***
[WARN] could not determine server's ip address by ifconfig
[INFO] OS version is Ubuntu 22.04.3 LTS

[INFO] uptime:  14:19:41 up 56 min,  1 user,  load average: 0.12, 0.03, 0.01

[INFO] memory:
               total        used        free      shared  buff/cache   available
Mem:           9.7Gi       529Mi       8.4Gi        51Mi       789Mi       8.9Gi
Swap:          4.0Gi          0B       4.0Gi

[INFO] systemd failed services status:
  UNIT                      LOAD   ACTIVE SUB    DESCRIPTION
● snap.lxd.activate.service loaded failed failed Service for snap application lxd.activate

LOAD   = Reflects whether the unit definition was properly loaded.
ACTIVE = The high-level unit activation state, i.e. generalization of SUB.
SUB    = The low-level unit activation state, values depend on unit type.
1 loaded units listed.

[INFO] ISPConfig is installed.

##### ISPCONFIG #####
ISPConfig version is 3.2.11


##### VERSION CHECK #####

[INFO] php (cli) version is 8.1.24
[INFO] php-cgi (used for cgi php in default vhost!) is version 8.1.24

##### PORT CHECK #####


##### MAIL SERVER CHECK #####


##### RUNNING SERVER PROCESSES #####

[INFO] I found the following web server(s):
        Apache 2 (PID 1031)
[INFO] I found the following mail server(s):
        Postfix (PID 1808)
[INFO] I found the following pop3 server(s):
        Dovecot (PID 707)
[INFO] I found the following imap server(s):
        Dovecot (PID 707)
[INFO] I found the following ftp server(s):
        PureFTP (PID 1238)

##### LISTENING PORTS #####
(only           ()
Local           (Address)
***.***.***.***:53              (694/systemd-resolve)
[anywhere]:993          (707/dovecot)
[anywhere]:995          (707/dovecot)
[anywhere]:587          (1808/master)
[anywhere]:465          (1808/master)
[anywhere]:143          (707/dovecot)
[anywhere]:21           (1238/pure-ftpd)
[anywhere]:22           (813/sshd:)
[anywhere]:25           (1808/master)
[anywhere]:110          (707/dovecot)
[anywhere]:3306         (871/mariadbd)
[localhost]:6379                (746/redis-server)
[localhost]:10023               (996/postgrey)
[localhost]:953         (787/named)
[localhost]:953         (787/named)
[localhost]:953         (787/named)
[localhost]:953         (787/named)
[localhost]:53          (787/named)
[localhost]:53          (787/named)
[localhost]:53          (787/named)
[localhost]:53          (787/named)
[anywhere]:4190         (707/dovecot)
[localhost]:11333               (876/rspamd:)
[localhost]:11332               (876/rspamd:)
[localhost]:11334               (876/rspamd:)
[localhost]:11211               (714/memcached)
***.***.***.***:53              (787/named)
***.***.***.***:53              (787/named)
***.***.***.***:53              (787/named)
***.***.***.***:53              (787/named)
*:*:*:*::*:993          (707/dovecot)
*:*:*:*::*:995          (707/dovecot)
*:*:*:*::*:587          (1808/master)
*:*:*:*::*:443          (1031/apache2)
*:*:*:*::*:465          (1808/master)
[localhost]43           (707/dovecot)
*:*:*:*::*:21           (1238/pure-ftpd)
*:*:*:*::*:22           (813/sshd:)
*:*:*:*::*:25           (1808/master)
*:*:*:*::*:80           (1031/apache2)
[localhost]10           (707/dovecot)
*:*:*:*::*:3306         (871/mariadbd)
*:*:*:*::*:6379         (746/redis-server)
*:*:*:*::*:953          (787/named)
*:*:*:*::*:953          (787/named)
*:*:*:*::*:953          (787/named)
*:*:*:*::*:953          (787/named)
*:*:*:*::*:53           (787/named)
*:*:*:*::*:53           (787/named)
*:*:*:*::*:53           (787/named)
*:*:*:*::*:53           (787/named)
*:*:*:*::*:4190         (707/dovecot)
*:*:*:*::*:8081         (1031/apache2)
*:*:*:*::*:8080         (1031/apache2)
*:*:*:*::**:*:*:*::*53          (787/named)
*:*:*:*::**:*:*:*::*53          (787/named)
*:*:*:*::**:*:*:*::*53          (787/named)
*:*:*:*::**:*:*:*::*53          (787/named)




##### IPTABLES #####
Chain INPUT (policy DROP)
target     prot opt source               destination
ufw-before-logging-input  all  --  [anywhere]/0            [anywhere]/0
ufw-before-input  all  --  [anywhere]/0            [anywhere]/0
ufw-after-input  all  --  [anywhere]/0            [anywhere]/0
ufw-after-logging-input  all  --  [anywhere]/0            [anywhere]/0
ufw-reject-input  all  --  [anywhere]/0            [anywhere]/0
ufw-track-input  all  --  [anywhere]/0            [anywhere]/0

Chain FORWARD (policy DROP)
target     prot opt source               destination
ufw-before-logging-forward  all  --  [anywhere]/0            [anywhere]/0
ufw-before-forward  all  --  [anywhere]/0            [anywhere]/0
ufw-after-forward  all  --  [anywhere]/0            [anywhere]/0
ufw-after-logging-forward  all  --  [anywhere]/0            [anywhere]/0
ufw-reject-forward  all  --  [anywhere]/0            [anywhere]/0
ufw-track-forward  all  --  [anywhere]/0            [anywhere]/0

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination
ufw-before-logging-output  all  --  [anywhere]/0            [anywhere]/0
ufw-before-output  all  --  [anywhere]/0            [anywhere]/0
ufw-after-output  all  --  [anywhere]/0            [anywhere]/0
ufw-after-logging-output  all  --  [anywhere]/0            [anywhere]/0
ufw-reject-output  all  --  [anywhere]/0            [anywhere]/0
ufw-track-output  all  --  [anywhere]/0            [anywhere]/0

Chain ufw-after-forward (1 references)
target     prot opt source               destination

Chain ufw-after-input (1 references)
target     prot opt source               destination
ufw-skip-to-policy-input  udp  --  [anywhere]/0            [anywhere]/0            udp dpt:137
ufw-skip-to-policy-input  udp  --  [anywhere]/0            [anywhere]/0            udp dpt:138
ufw-skip-to-policy-input  tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:139
ufw-skip-to-policy-input  tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:445
ufw-skip-to-policy-input  udp  --  [anywhere]/0            [anywhere]/0            udp dpt:67
ufw-skip-to-policy-input  udp  --  [anywhere]/0            [anywhere]/0            udp dpt:68
ufw-skip-to-policy-input  all  --  [anywhere]/0            [anywhere]/0            ADDRTYPE match dst-type BROADCAST

Chain ufw-after-logging-forward (1 references)
target     prot opt source               destination
LOG        all  --  [anywhere]/0            [anywhere]/0            limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "

Chain ufw-after-logging-input (1 references)
target     prot opt source               destination
LOG        all  --  [anywhere]/0            [anywhere]/0            limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "

Chain ufw-after-logging-output (1 references)
target     prot opt source               destination

Chain ufw-after-output (1 references)
target     prot opt source               destination

Chain ufw-before-forward (1 references)
target     prot opt source               destination
ACCEPT     all  --  [anywhere]/0            [anywhere]/0            ctstate RELATED,ESTABLISHED
ACCEPT     icmp --  [anywhere]/0            [anywhere]/0            icmptype 3
ACCEPT     icmp --  [anywhere]/0            [anywhere]/0            icmptype 11
ACCEPT     icmp --  [anywhere]/0            [anywhere]/0            icmptype 12
ACCEPT     icmp --  [anywhere]/0            [anywhere]/0            icmptype 8
ufw-user-forward  all  --  [anywhere]/0            [anywhere]/0

Chain ufw-before-input (1 references)
target     prot opt source               destination
ACCEPT     all  --  [anywhere]/0            [anywhere]/0
ACCEPT     all  --  [anywhere]/0            [anywhere]/0            ctstate RELATED,ESTABLISHED
ufw-logging-deny  all  --  [anywhere]/0            [anywhere]/0            ctstate INVALID
DROP       all  --  [anywhere]/0            [anywhere]/0            ctstate INVALID
ACCEPT     icmp --  [anywhere]/0            [anywhere]/0            icmptype 3
ACCEPT     icmp --  [anywhere]/0            [anywhere]/0            icmptype 11
ACCEPT     icmp --  [anywhere]/0            [anywhere]/0            icmptype 12
ACCEPT     icmp --  [anywhere]/0            [anywhere]/0            icmptype 8
ACCEPT     udp  --  [anywhere]/0            [anywhere]/0            udp spt:67 dpt:68
ufw-not-local  all  --  [anywhere]/0            [anywhere]/0
ACCEPT     udp  --  [anywhere]/0            ***.***.***.***          udp dpt:5353
ACCEPT     udp  --  [anywhere]/0            ***.***.***.***      udp dpt:1900
ufw-user-input  all  --  [anywhere]/0            [anywhere]/0

Chain ufw-before-logging-forward (1 references)
target     prot opt source               destination

Chain ufw-before-logging-input (1 references)
target     prot opt source               destination

Chain ufw-before-logging-output (1 references)
target     prot opt source               destination

Chain ufw-before-output (1 references)
target     prot opt source               destination
ACCEPT     all  --  [anywhere]/0            [anywhere]/0
ACCEPT     all  --  [anywhere]/0            [anywhere]/0            ctstate RELATED,ESTABLISHED
ufw-user-output  all  --  [anywhere]/0            [anywhere]/0

Chain ufw-logging-allow (0 references)
target     prot opt source               destination
LOG        all  --  [anywhere]/0            [anywhere]/0            limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW ALLOW] "

Chain ufw-logging-deny (2 references)
target     prot opt source               destination
RETURN     all  --  [anywhere]/0            [anywhere]/0            ctstate INVALID limit: avg 3/min burst 10
LOG        all  --  [anywhere]/0            [anywhere]/0            limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "

Chain ufw-not-local (1 references)
target     prot opt source               destination
RETURN     all  --  [anywhere]/0            [anywhere]/0            ADDRTYPE match dst-type LOCAL
RETURN     all  --  [anywhere]/0            [anywhere]/0            ADDRTYPE match dst-type MULTICAST
RETURN     all  --  [anywhere]/0            [anywhere]/0            ADDRTYPE match dst-type BROADCAST
ufw-logging-deny  all  --  [anywhere]/0            [anywhere]/0            limit: avg 3/min burst 10
DROP       all  --  [anywhere]/0            [anywhere]/0

Chain ufw-reject-forward (1 references)
target     prot opt source               destination

Chain ufw-reject-input (1 references)
target     prot opt source               destination

Chain ufw-reject-output (1 references)
target     prot opt source               destination

Chain ufw-skip-to-policy-forward (0 references)
target     prot opt source               destination
DROP       all  --  [anywhere]/0            [anywhere]/0

Chain ufw-skip-to-policy-input (7 references)
target     prot opt source               destination
DROP       all  --  [anywhere]/0            [anywhere]/0

Chain ufw-skip-to-policy-output (0 references)
target     prot opt source               destination
ACCEPT     all  --  [anywhere]/0            [anywhere]/0

Chain ufw-track-forward (1 references)
target     prot opt source               destination

Chain ufw-track-input (1 references)
target     prot opt source               destination

Chain ufw-track-output (1 references)
target     prot opt source               destination
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            ctstate NEW
ACCEPT     udp  --  [anywhere]/0            [anywhere]/0            ctstate NEW

Chain ufw-user-forward (1 references)
target     prot opt source               destination

Chain ufw-user-input (1 references)
target     prot opt source               destination
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:21
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:22
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:25
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:53
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:80
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:110
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:143
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:443
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:465
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:587
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:993
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:995
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:3306
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:4190
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:8080
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:8081
ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            multiport dports 40110:40210
ACCEPT     udp  --  [anywhere]/0            [anywhere]/0            udp dpt:53

Chain ufw-user-limit (0 references)
target     prot opt source               destination
LOG        all  --  [anywhere]/0            [anywhere]/0            limit: avg 3/min burst 5 LOG flags 0 level 4 prefix "[UFW LIMIT BLOCK] "
REJECT     all  --  [anywhere]/0            [anywhere]/0            reject-with icmp-port-unreachable

Chain ufw-user-limit-accept (0 references)
target     prot opt source               destination
ACCEPT     all  --  [anywhere]/0            [anywhere]/0

Chain ufw-user-logging-forward (0 references)
target     prot opt source               destination

Chain ufw-user-logging-input (0 references)
target     prot opt source               destination

Chain ufw-user-logging-output (0 references)
target     prot opt source               destination

Chain ufw-user-output (1 references)
target     prot opt source               destination




##### LET'S ENCRYPT #####
acme.sh is installed in /root/.acme.sh/acme.sh

 

Understood, but if i use domain.com as "name server" i cant login too

 

I can connect to mailbox from other WAN ip, but not from LAN

 

Sounds to me like a firewall and/or dns resolve issue.
Does the hostname resolve to the correct ip in your LAN?
If it resolves to the internet IP that is set in your public dns then you should probably look into your router/firewall.
If it resolves to the private ip in your LAN then all should work as expected.

 

Тanks for answer, but nslookup said that domain name = my ip, and other dns records is ok. You can see that on 3d comment in this dialogue. Abount my firewall, oall port for mail server like 25, 143, 587 and other are open. P.S. sorry for my english

 

Understood. I will find the problem in my network. Thanks

 

In my DNS i need write subdomain? Like a MX 3600 @ -> mailserver.domain.com 5

 

MX record should point to the FQDN of the mail server of the domain MX is for.
My signature has link to tutorial on e-mail setup for ISPConfig.

 

Thanks