email not sending out from server

Discussion in 'ISPConfig 3 Priority Support' started by illuder, Mar 29, 2022.

  1. illuder

    illuder Member

    hi guys, i'm facing a brick wall here... i just cant figure out why the emails is not being sent out from wordpress to the client..
    i looked through the log below of a mail going to [email protected] and i cant seem to find why the recipient is not receiving it. Any assistance will be greatly appreciated.

    Code:
    Mar 29 18:06:02 server1 postfix/cleanup[2469904]: 07BFA7E138B: message-id=<[email protected]>
    Mar 29 18:06:02 server1 postfix/qmgr[1814]: 07BFA7E138B: from=<[email protected]>, size=984, nrcpt=1 (queue active)
    Mar 29 18:06:02 server1 postfix/smtpd[2470593]: disconnect from unknown[5.34.207.192] ehlo=1 auth=0/1 rset=1 quit=1 commands=3/4
    Mar 29 18:06:06 server1 postfix/smtpd[2474164]: connect from localhost[127.0.0.1]
    Mar 29 18:06:06 server1 postfix/smtpd[2474164]: discarding EHLO keywords: CHUNKING
    Mar 29 18:06:06 server1 postfix/smtpd[2474164]: 2FE367E1314: client=localhost[127.0.0.1]
    Mar 29 18:06:06 server1 postfix/cleanup[2469904]: 2FE367E1314: message-id=<[email protected]>
    Mar 29 18:06:06 server1 postfix/qmgr[1814]: 2FE367E1314: from=<[email protected]>, size=1446, nrcpt=1 (queue active)
    Mar 29 18:06:06 server1 postfix/smtpd[2474164]: disconnect from localhost[127.0.0.1] ehlo=1 mail=1 rcpt=1 data=1 quit=1 commands=5
    Mar 29 18:06:06 server1 amavis[2478737]: (2478737-08) Passed CLEAN {RelayedOutbound}, MYNETS LOCAL [127.0.0.1] <[email protected]> -> <[email protected]>, Message-ID: <[email protected]>, mail_id: j4Kb3btRvuCt, Hits: 1.999, size: 983, queued_as: 2FE367E1314, 4150 ms
    Mar 29 18:06:06 server1 postfix/local[2477131]: 2FE367E1314: to=<[email protected]>, relay=local, delay=0.03, delays=0.02/0/0/0, dsn=2.0.0, status=sent (delivered to mailbox)
    Mar 29 18:06:06 server1 postfix/qmgr[1814]: 2FE367E1314: removed
    Mar 29 18:06:06 server1 postfix/smtp[2481893]: 07BFA7E138B: to=<[email protected]>, orig_to=<web11>, relay=127.0.0.1[127.0.0.1]:10024, delay=4.2, delays=0.01/0.04/0/4.2, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 2FE367E1314)
    Mar 29 18:06:06 server1 postfix/qmgr[1814]: 07BFA7E138B: removed
    Mar 29 18:06:07 server1 postfix/smtpd[2468395]: discarding EHLO keywords: CHUNKING
    Mar 29 18:06:08 server1 postfix/smtpd[2468611]: connect from unknown[5.34.207.192]
    Mar 29 18:06:12 server1 postfix/smtpd[2469834]: warning: unknown[5.34.207.192]: SASL LOGIN authentication failed: Connection lost to authentication server
    Mar 29 18:06:12 server1 postfix/smtpd[2469834]: disconnect from unknown[5.34.207.192] ehlo=1 auth=0/1 rset=1 quit=1 commands=3/4
    Mar 29 18:06:12 server1 postfix/smtpd[2468611]: discarding EHLO keywords: CHUNKING
    Mar 29 18:06:14 server1 postfix/smtpd[2477174]: warning: unknown[5.34.205.44]: SASL LOGIN authentication failed: Connection lost to authentication server
    Mar 29 18:06:14 server1 postfix/smtpd[2481481]: connect from unknown[5.34.205.44]
    Mar 29 18:06:14 server1 postfix/smtpd[2475171]: connect from unknown[5.34.207.192]
    [root@server1 log]# clear
    [root@server1 log]# tail -1000 maillog
    Mar 29 17:54:51 server1 postfix/cleanup[2461599]: BD4877E12D3: message-id=<[email protected]>
    Mar 29 17:54:51 server1 postfix/qmgr[1814]: BD4877E12D3: from=<[email protected]>, size=10556, nrcpt=1 (queue active)
    Mar 29 17:54:51 server1 amavis[2478737]: (2478737-01) Passed CLEAN {RelayedOutbound}, MYNETS LOCAL [127.0.0.1] <[email protected]> -> <[email protected]>, Message-ID: <[email protected]>, mail_id: AZa6Y9nyhFuu, Hits: 1.365, size: 10079, queued_as: BD4877E12D3, 608 ms
    Mar 29 17:54:51 server1 postfix/smtp[2478757]: 25A7F7E13B4: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.65, delays=0.01/0.03/0.01/0.6, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as BD4877E12D3)
    Mar 29 17:54:51 server1 postfix/qmgr[1814]: 25A7F7E13B4: removed
    Mar 29 17:54:51 server1 postfix/smtpd[2478758]: connect from localhost[127.0.0.1]
    Mar 29 17:54:51 server1 postfix/smtpd[2478758]: discarding EHLO keywords: CHUNKING
    Mar 29 17:54:51 server1 postfix/smtpd[2478758]: C42267E13B4: client=localhost[127.0.0.1]
    Mar 29 17:54:51 server1 postfix/cleanup[2469904]: C42267E13B4: message-id=<[email protected]>
    Mar 29 17:54:51 server1 postfix/qmgr[1814]: C42267E13B4: from=<[email protected]>, size=10776, nrcpt=6 (queue active)
    Mar 29 17:54:51 server1 postfix/smtpd[2478758]: disconnect from localhost[127.0.0.1] ehlo=1 mail=1 rcpt=1 data=1 quit=1 commands=5
    Mar 29 17:54:51 server1 postfix/smtpd[2478758]: connect from localhost[127.0.0.1]
    Mar 29 17:54:51 server1 postfix/smtpd[2478758]: discarding EHLO keywords: CHUNKING
    Mar 29 17:54:51 server1 postfix/smtpd[2478758]: CD6DF7E13E2: client=localhost[127.0.0.1]
    Mar 29 17:54:51 server1 postfix/cleanup[2469904]: CD6DF7E13E2: message-id=<[email protected]>
    Mar 29 17:54:51 server1 postfix/qmgr[1814]: CD6DF7E13E2: from=<[email protected]>, size=10427, nrcpt=6 (queue active)
    Mar 29 17:54:51 server1 postfix/smtpd[2478758]: disconnect from localhost[127.0.0.1] ehlo=1 mail=1 rcpt=6 data=1 quit=1 commands=10
    Mar 29 17:54:51 server1 amavis[2475602]: (2475602-08) Passed CLEAN {RelayedInternal,RelayedOutbound}, MYNETS LOCAL [127.0.0.1] <[email protected]> -> <[email protected]>,<[email protected]>,<[email protected]>,<[email protected]>,<[email protected]>,<[email protected]>,<[email protected]>, Message-ID: <[email protected]>, mail_id: iJPWHrIWS_Jd, Hits: 3.868, size: 10008, queued_as: C42267E13B4/CD6DF7E13E2, 791 ms
    Mar 29 17:54:51 server1 postfix/smtp[2455344]: 15F327E138B: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.8, delays=0.01/0/0/0.79, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as C42267E13B4)
    Mar 29 17:54:51 server1 postfix/smtp[2455344]: 15F327E138B: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.8, delays=0.01/0/0/0.79, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as C42267E13B4)
    Mar 29 17:54:51 server1 postfix/smtp[2455344]: 15F327E138B: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.8, delays=0.01/0/0/0.79, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as C42267E13B4)
    Mar 29 17:54:51 server1 postfix/smtp[2455344]: 15F327E138B: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.8, delays=0.01/0/0/0.79, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as C42267E13B4)
    Mar 29 17:54:51 server1 postfix/smtp[2455344]: 15F327E138B: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.8, delays=0.01/0/0/0.79, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as C42267E13B4)
    Mar 29 17:54:51 server1 postfix/smtp[2455344]: 15F327E138B: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.8, delays=0.01/0/0/0.79, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as C42267E13B4)
    Mar 29 17:54:51 server1 postfix/smtp[2455344]: 15F327E138B: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.8, delays=0.01/0/0/0.79, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as C42267E13B4)
    Mar 29 17:54:51 server1 postfix/qmgr[1814]: 15F327E138B: removed
    Mar 29 17:54:51 server1 postfix/smtp[2478743]: connect to gmail-smtp-in.l.google.com[2607:f8b0:4023:1002::1b]:25: Network is unreachable
    Mar 29 17:54:53 server1 postfix/smtpd[2468395]: discarding EHLO keywords: CHUNKING
    Mar 29 17:54:53 server1 postfix/smtp[2478743]: BD4877E12D3: to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=1.8, delays=0.02/0/1.4/0.41, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. eo32-20020a056870eca000b000dee1b78f0bsi10311170oab.49 - gsmtp (in reply to end of DATA command))
    Mar 29 17:54:53 server1 postfix/cleanup[2469904]: 8FA307E13EA: message-id=<[email protected]>
    Mar 29 17:54:53 server1 postfix/bounce[2478766]: BD4877E12D3: sender non-delivery notification: 8FA307E13EA
    Mar 29 17:54:53 server1 postfix/qmgr[1814]: 8FA307E13EA: from=<>, size=13439, nrcpt=1 (queue active)
    Mar 29 17:54:53 server1 postfix/qmgr[1814]: BD4877E12D3: removed
    Mar 29 17:54:53 server1 dovecot[2281]: lmtp(2478768): Connect from local
    Mar 29 17:54:53 server1 postfix/lmtp[2478767]: 8FA307E13EA: to=<[email protected]>, relay=server1.cloudastrix.com[private/dovecot-lmtp], delay=0.03, delays=0.01/0.01/0.01/0, dsn=5.1.1, status=bounced (host server1.cloudastrix.com[private/dovecot-lmtp] said: 550 5.1.1 <[email protected]> User doesn't exist: [email protected] (in reply to RCPT TO command))
    Mar 29 17:54:53 server1 dovecot[2281]: lmtp(2478768): Disconnect from local: Client has quit the connection (state=READY)
    Mar 29 17:54:53 server1 postfix/qmgr[1814]: 8FA307E13EA: removed
    Mar 29 17:54:53 server1 postfix/smtp[2478764]: CD6DF7E13E2: to=<[email protected]>, relay=hotmail-com.olc.protection.outlook.com[104.47.56.161]:25, delay=1.9, delays=0.05/0.08/0.46/1.3, dsn=2.6.0, status=sent (250 2.6.0 <[email protected]> [InternalId=78675210948741, Hostname=AM7PR09MB4120.eurprd09.prod.outlook.com] 17990 bytes in 0.252, 69.444 KB/sec Queued mail for delivery -> 250 2.1.5)
    Mar 29 17:54:53 server1 postfix/smtp[2478763]: CD6DF7E13E2: to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=2, delays=0.05/0.06/1.3/0.54, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. z66-20020aca3345000000b002ef53f5b57csi12846500oiz.256 - gsmtp (in reply to end of DATA command))
    Mar 29 17:54:53 server1 postfix/smtp[2478763]: CD6DF7E13E2: to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=2, delays=0.05/0.06/1.3/0.54, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. z66-20020aca3345000000b002ef53f5b57csi12846500oiz.256 - gsmtp (in reply to end of DATA command))
    Mar 29 17:54:53 server1 postfix/smtp[2478763]: CD6DF7E13E2: to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=2, delays=0.05/0.06/1.3/0.54, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. z66-20020aca3345000000b002ef53f5b57csi12846500oiz.256 - gsmtp (in reply to end of DATA command))
    Mar 29 17:54:53 server1 postfix/smtpd[2470593]: connect from unknown[5.34.207.192]
    Mar 29 17:54:54 server1 postfix/smtp[2478761]: C42267E13B4: to=<[email protected]>, orig_to=<[email protected]>, relay=eur.olc.protection.outlook.com[104.47.10.33]:25, delay=2.4, delays=0.03/0.07/0.89/1.4, dsn=2.6.0, status=sent (250 2.6.0 <[email protected]> [InternalId=53102975665249, Hostname=PR3PR01MB6586.eurprd01.prod.exchangelabs.com] 18294 bytes in 0.150, 118.380 KB/sec Queued mail for delivery -> 250 2.1.5)
    Mar 29 17:54:55 server1 postfix/smtpd[2468611]: warning: unknown[5.34.205.44]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
    Mar 29 17:54:55 server1 dovecot[2281]: auth: Warning: auth client 0 disconnected with 1 pending requests: Connection reset by peer
    Mar 29 17:54:55 server1 postfix/smtp[2478765]: CD6DF7E13E2: to=<[email protected]>, relay=eur.olc.protection.outlook.com[104.47.9.33]:25, delay=4.1, delays=0.05/0.1/1.1/2.9, dsn=2.6.0, status=sent (250 2.6.0 <[email protected]> [InternalId=96520800060694, Hostname=VI1PR0101MB2448.eurprd01.prod.exchangelabs.com] 17994 bytes in 0.116, 150.367 KB/sec Queued mail for delivery -> 250 2.1.5)
    Mar 29 17:54:56 server1 postfix/smtp[2478762]: CD6DF7E13E2: to=<[email protected]>, relay=mail.axxess.co.za[197.242.159.197]:25, delay=4.3, delays=0.05/0.04/2.7/1.4, dsn=5.0.0, status=bounced (host mail.axxess.co.za[197.242.159.197] said: 554 Failure Surbl: phishing cloudastrix.com multi.surbl.org (in reply to end of DATA command))
    Mar 29 17:54:56 server1 postfix/cleanup[2469904]: 17E167E138B: message-id=<[email protected]>
    Mar 29 17:54:56 server1 postfix/bounce[2478766]: CD6DF7E13E2: sender non-delivery notification: 17E167E138B
    Mar 29 17:54:56 server1 postfix/qmgr[1814]: 17E167E138B: from=<>, size=16035, nrcpt=1 (queue active)
    Mar 29 17:54:56 server1 postfix/qmgr[1814]: CD6DF7E13E2: removed
    Mar 29 17:54:56 server1 dovecot[2281]: lmtp(2478768): Connect from local
    Mar 29 17:54:56 server1 postfix/lmtp[2478767]: 17E167E138B: to=<[email protected]>, relay=server1.cloudastrix.com[private/dovecot-lmtp], delay=0.01, delays=0.01/0/0/0, dsn=5.1.1, status=bounced (host server1.cloudastrix.com[private/dovecot-lmtp] said: 550 5.1.1 <[email protected]> User doesn't exist: [email protected] (in reply to RCPT TO command))
    Mar 29 17:54:56 server1 dovecot[2281]: lmtp(2478768): Disconnect from local: Client has quit the connection (state=READY)
    Mar 29 17:54:56 server1 postfix/qmgr[1814]: 17E167E138B: removed
    Mar 29 17:54:57 server1 postfix/smtpd[2468611]: disconnect from unknown[5.34.205.44] ehlo=1 auth=0/1 rset=1 quit=1 commands=3/4
    Mar 29 17:54:58 server1 postfix/smtpd[2466870]: warning: unknown[5.34.207.192]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
    Mar 29 17:54:58 server1 postfix/smtp[2478759]: C42267E13B4: to=<[email protected]>, orig_to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=6.9, delays=0.03/0.04/1.3/5.5, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. v125-20020aca6183000000b002ef0c3475e3si13386551oib.99 - gsmtp (in reply to end of DATA command))
    Mar 29 17:54:58 server1 postfix/smtp[2478759]: C42267E13B4: to=<[email protected]>, orig_to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=6.9, delays=0.03/0.04/1.3/5.5, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. v125-20020aca6183000000b002ef0c3475e3si13386551oib.99 - gsmtp (in reply to end of DATA command))
    Mar 29 17:54:58 server1 postfix/smtp[2478759]: C42267E13B4: to=<[email protected]>, orig_to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=6.9, delays=0.03/0.04/1.3/5.5, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. v125-20020aca6183000000b002ef0c3475e3si13386551oib.99 - gsmtp (in reply to end of DATA command))
    Mar 29 17:54:58 server1 postfix/smtp[2478759]: C42267E13B4: to=<[email protected]>, orig_to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=6.9, delays=0.03/0.04/1.3/5.5, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. v125-20020aca6183000000b002ef0c3475e3si13386551oib.99 - gsmtp (in reply to end of DATA command))
    Mar 29 17:54:58 server1 postfix/smtp[2478759]: C42267E13B4: to=<[email protected]>, orig_to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=6.9, delays=0.03/0.04/1.3/5.5, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. v125-20020aca6183000000b002ef0c3475e3si13386551oib.99 - gsmtp (in reply to end of DATA command))
    
     
  2. Jesse Norell

    Jesse Norell ISPConfig Developer Staff Member ISPConfig Developer

    The reason is:
     
  3. till

    till Super Moderator Staff Member ISPConfig Developer

    See here:

    seems as cloudastrix.com is listed as a phishing domain in multi.surbl.org real-time blacklist.
     
  4. illuder

    illuder Member

    hmmm. i missed that one!!! let me try to unlist! Thank you!!!
    Gmail/Google howver still has cloudastrix.com listed after a month... and I cannot verify that domain in postmaster tools...all the other domains verified except for cloudastrix.com which is the main one. maybe because its blocked..

    upload_2022-3-29_18-39-44.png
     
  5. Th0m

    Th0m ISPConfig Developer Staff Member ISPConfig Developer

    Alternatively use a CNAME as Google suggests.
     
  6. illuder

    illuder Member

    After escalating to the hosting provider, it turns out that higher tier isp had to add it.. It's added now, it's verified, I'm now testing emails sent to Gmail...

    I've found a few in spam, but testing further.

    Tx for response.
     
  7. illuder

    illuder Member

    hi, some update wrt this inability to send out mails.
    So i've re installed clamav, amavisd and csf. Had to really beef up the server security after the recent spate of hacks/viruses.

    Anyway, now no mail is being sent out to Gmail (still same).
    I get this error:
    connect to alt2.gmail-smtp-in.l.google.com[172.253.113.27]:25: Connection refused

    So i send out the mail and watch the mail in the postfix queue with the message above.

    I checked my port 25 is open, but there's something i'm missing...may i please have some assistance, what log do you need to see?

    tx
     
  8. Jesse Norell

    Jesse Norell ISPConfig Developer Staff Member ISPConfig Developer

    "connection refused" is a network level issue, there is no log in your server to tell you where your network problem is. A packet tool like tcpdump might help (eg. the source IP of the reply packet might indicate where the problem is) or might not. You can use telnet to test port 25 connections to Gmail or anywhere else.
     
  9. illuder

    illuder Member

    it seems that CSF is blocking the outgoing emails special to gmail.
    alt2.gmail-smtp-in.l.google.com[172.253.113.27]
    I added that IP address and it worked immediately, however a few hours later, i see in the postfix log that its refusing again..upon closer inspection, i see that it refused 2 emails because:
    1- the IP changed, so i need to add the new one, but this seems to be regular changes, so how to add all of it? It's a totally different gmail range!

    2- the second one is an IPV6 address!!

    i disabled CSF to test, and both emails went through well..so its definitely CSF blocking...but how and what to whitelist for gmail??
     
  10. nhybgtvfr

    nhybgtvfr Well-Known Member HowtoForge Supporter

    i would suggest just leaving port 25 open, there's little point in restricting it to specific ip's, inbound or outbound.
    you never know where a legitimate email may come from in advance, or where you may end up having to send an email to.
    just make sure postfix is configured to only allow unauthenticated mail on port 25 ( should use 465 or 587 for submission).
    then use RBL's, and the spf, dkim, dmarc records and rDNS lookups to verify the legitimacy of inbound port 25 connections
     
  11. illuder

    illuder Member

    i've added all of GMAIL/GOOGLE IPs to the white list, IPV4 and IPV6
    seems to have fixed the problem...tx
     
  12. Jesse Norell

    Jesse Norell ISPConfig Developer Staff Member ISPConfig Developer

    Your issue was sending outbound, the whitelist works on inbound mail, not outbound.
     
  13. illuder

    illuder Member

    you're right, the problem is not fixed..

    suggestions?
     
  14. illuder

    illuder Member

    Are you sure thats not risky? how do i leave port 25 open using csf?
     
  15. Jesse Norell

    Jesse Norell ISPConfig Developer Staff Member ISPConfig Developer

    Sorry, I had in mind the ispconfig postfix whitelist here, you probably meant the whitelist in your csf firewall, in which case my comment does not it any way apply.
     
  16. Jesse Norell

    Jesse Norell ISPConfig Developer Staff Member ISPConfig Developer

    Port 25 is normally open in firewall rules for a mail server; not having it open would be expected to create the exact issue you have created. I've not used csf yet, so no idea how you configure it.
     
  17. illuder

    illuder Member

    well noted... i'll look more into it.. however, i do think it is open, albeit it has stringent rules set to it..
     
  18. nhybgtvfr

    nhybgtvfr Well-Known Member HowtoForge Supporter

    and it's those stringent rules which may very well be the problem, if your websites are sending emails, i'd assume that they could end up sending a copy of any contact form / query submission to the client as well, so you have no way of knowing in advance what domain names or ip's you might need to send to.
    unless you'll only ever send / receive between a very specific set of users / domains, don't try to control port 25 access with blanket ip rules.
    leave it open, and leave postfix to use rbl's and spf/dkim/dmarc records to decide whether or not to accept emails from other MTA's, and use fail2ban to block ip's that try to authenticate on port 25, or fail to successfully authenticate on ports 110,143,465,587,993 or 995.
     
    till likes this.

Share This Page