email not sending out from server

hi guys, i'm facing a brick wall here... i just cant figure out why the emails is not being sent out from wordpress to the client..
i looked through the log below of a mail going to [email protected] and i cant seem to find why the recipient is not receiving it. Any assistance will be greatly appreciated.

Code:

Mar 29 18:06:02 server1 postfix/cleanup[2469904]: 07BFA7E138B: message-id=<[email protected]>
Mar 29 18:06:02 server1 postfix/qmgr[1814]: 07BFA7E138B: from=<[email protected]>, size=984, nrcpt=1 (queue active)
Mar 29 18:06:02 server1 postfix/smtpd[2470593]: disconnect from unknown[5.34.207.192] ehlo=1 auth=0/1 rset=1 quit=1 commands=3/4
Mar 29 18:06:06 server1 postfix/smtpd[2474164]: connect from localhost[127.0.0.1]
Mar 29 18:06:06 server1 postfix/smtpd[2474164]: discarding EHLO keywords: CHUNKING
Mar 29 18:06:06 server1 postfix/smtpd[2474164]: 2FE367E1314: client=localhost[127.0.0.1]
Mar 29 18:06:06 server1 postfix/cleanup[2469904]: 2FE367E1314: message-id=<[email protected]>
Mar 29 18:06:06 server1 postfix/qmgr[1814]: 2FE367E1314: from=<[email protected]>, size=1446, nrcpt=1 (queue active)
Mar 29 18:06:06 server1 postfix/smtpd[2474164]: disconnect from localhost[127.0.0.1] ehlo=1 mail=1 rcpt=1 data=1 quit=1 commands=5
Mar 29 18:06:06 server1 amavis[2478737]: (2478737-08) Passed CLEAN {RelayedOutbound}, MYNETS LOCAL [127.0.0.1] <[email protected]> -> <[email protected]>, Message-ID: <[email protected]>, mail_id: j4Kb3btRvuCt, Hits: 1.999, size: 983, queued_as: 2FE367E1314, 4150 ms
Mar 29 18:06:06 server1 postfix/local[2477131]: 2FE367E1314: to=<[email protected]>, relay=local, delay=0.03, delays=0.02/0/0/0, dsn=2.0.0, status=sent (delivered to mailbox)
Mar 29 18:06:06 server1 postfix/qmgr[1814]: 2FE367E1314: removed
Mar 29 18:06:06 server1 postfix/smtp[2481893]: 07BFA7E138B: to=<[email protected]>, orig_to=<web11>, relay=127.0.0.1[127.0.0.1]:10024, delay=4.2, delays=0.01/0.04/0/4.2, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 2FE367E1314)
Mar 29 18:06:06 server1 postfix/qmgr[1814]: 07BFA7E138B: removed
Mar 29 18:06:07 server1 postfix/smtpd[2468395]: discarding EHLO keywords: CHUNKING
Mar 29 18:06:08 server1 postfix/smtpd[2468611]: connect from unknown[5.34.207.192]
Mar 29 18:06:12 server1 postfix/smtpd[2469834]: warning: unknown[5.34.207.192]: SASL LOGIN authentication failed: Connection lost to authentication server
Mar 29 18:06:12 server1 postfix/smtpd[2469834]: disconnect from unknown[5.34.207.192] ehlo=1 auth=0/1 rset=1 quit=1 commands=3/4
Mar 29 18:06:12 server1 postfix/smtpd[2468611]: discarding EHLO keywords: CHUNKING
Mar 29 18:06:14 server1 postfix/smtpd[2477174]: warning: unknown[5.34.205.44]: SASL LOGIN authentication failed: Connection lost to authentication server
Mar 29 18:06:14 server1 postfix/smtpd[2481481]: connect from unknown[5.34.205.44]
Mar 29 18:06:14 server1 postfix/smtpd[2475171]: connect from unknown[5.34.207.192]
[root@server1 log]# clear
[root@server1 log]# tail -1000 maillog
Mar 29 17:54:51 server1 postfix/cleanup[2461599]: BD4877E12D3: message-id=<[email protected]>
Mar 29 17:54:51 server1 postfix/qmgr[1814]: BD4877E12D3: from=<[email protected]>, size=10556, nrcpt=1 (queue active)
Mar 29 17:54:51 server1 amavis[2478737]: (2478737-01) Passed CLEAN {RelayedOutbound}, MYNETS LOCAL [127.0.0.1] <[email protected]> -> <[email protected]>, Message-ID: <[email protected]>, mail_id: AZa6Y9nyhFuu, Hits: 1.365, size: 10079, queued_as: BD4877E12D3, 608 ms
Mar 29 17:54:51 server1 postfix/smtp[2478757]: 25A7F7E13B4: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.65, delays=0.01/0.03/0.01/0.6, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as BD4877E12D3)
Mar 29 17:54:51 server1 postfix/qmgr[1814]: 25A7F7E13B4: removed
Mar 29 17:54:51 server1 postfix/smtpd[2478758]: connect from localhost[127.0.0.1]
Mar 29 17:54:51 server1 postfix/smtpd[2478758]: discarding EHLO keywords: CHUNKING
Mar 29 17:54:51 server1 postfix/smtpd[2478758]: C42267E13B4: client=localhost[127.0.0.1]
Mar 29 17:54:51 server1 postfix/cleanup[2469904]: C42267E13B4: message-id=<[email protected]>
Mar 29 17:54:51 server1 postfix/qmgr[1814]: C42267E13B4: from=<[email protected]>, size=10776, nrcpt=6 (queue active)
Mar 29 17:54:51 server1 postfix/smtpd[2478758]: disconnect from localhost[127.0.0.1] ehlo=1 mail=1 rcpt=1 data=1 quit=1 commands=5
Mar 29 17:54:51 server1 postfix/smtpd[2478758]: connect from localhost[127.0.0.1]
Mar 29 17:54:51 server1 postfix/smtpd[2478758]: discarding EHLO keywords: CHUNKING
Mar 29 17:54:51 server1 postfix/smtpd[2478758]: CD6DF7E13E2: client=localhost[127.0.0.1]
Mar 29 17:54:51 server1 postfix/cleanup[2469904]: CD6DF7E13E2: message-id=<[email protected]>
Mar 29 17:54:51 server1 postfix/qmgr[1814]: CD6DF7E13E2: from=<[email protected]>, size=10427, nrcpt=6 (queue active)
Mar 29 17:54:51 server1 postfix/smtpd[2478758]: disconnect from localhost[127.0.0.1] ehlo=1 mail=1 rcpt=6 data=1 quit=1 commands=10
Mar 29 17:54:51 server1 amavis[2475602]: (2475602-08) Passed CLEAN {RelayedInternal,RelayedOutbound}, MYNETS LOCAL [127.0.0.1] <[email protected]> -> <[email protected]>,<[email protected]>,<[email protected]>,<[email protected]>,<[email protected]>,<[email protected]>,<[email protected]>, Message-ID: <[email protected]>, mail_id: iJPWHrIWS_Jd, Hits: 3.868, size: 10008, queued_as: C42267E13B4/CD6DF7E13E2, 791 ms
Mar 29 17:54:51 server1 postfix/smtp[2455344]: 15F327E138B: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.8, delays=0.01/0/0/0.79, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as C42267E13B4)
Mar 29 17:54:51 server1 postfix/smtp[2455344]: 15F327E138B: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.8, delays=0.01/0/0/0.79, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as C42267E13B4)
Mar 29 17:54:51 server1 postfix/smtp[2455344]: 15F327E138B: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.8, delays=0.01/0/0/0.79, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as C42267E13B4)
Mar 29 17:54:51 server1 postfix/smtp[2455344]: 15F327E138B: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.8, delays=0.01/0/0/0.79, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as C42267E13B4)
Mar 29 17:54:51 server1 postfix/smtp[2455344]: 15F327E138B: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.8, delays=0.01/0/0/0.79, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as C42267E13B4)
Mar 29 17:54:51 server1 postfix/smtp[2455344]: 15F327E138B: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.8, delays=0.01/0/0/0.79, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as C42267E13B4)
Mar 29 17:54:51 server1 postfix/smtp[2455344]: 15F327E138B: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.8, delays=0.01/0/0/0.79, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as C42267E13B4)
Mar 29 17:54:51 server1 postfix/qmgr[1814]: 15F327E138B: removed
Mar 29 17:54:51 server1 postfix/smtp[2478743]: connect to gmail-smtp-in.l.google.com[2607:f8b0:4023:1002::1b]:25: Network is unreachable
Mar 29 17:54:53 server1 postfix/smtpd[2468395]: discarding EHLO keywords: CHUNKING
Mar 29 17:54:53 server1 postfix/smtp[2478743]: BD4877E12D3: to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=1.8, delays=0.02/0/1.4/0.41, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. eo32-20020a056870eca000b000dee1b78f0bsi10311170oab.49 - gsmtp (in reply to end of DATA command))
Mar 29 17:54:53 server1 postfix/cleanup[2469904]: 8FA307E13EA: message-id=<[email protected]>
Mar 29 17:54:53 server1 postfix/bounce[2478766]: BD4877E12D3: sender non-delivery notification: 8FA307E13EA
Mar 29 17:54:53 server1 postfix/qmgr[1814]: 8FA307E13EA: from=<>, size=13439, nrcpt=1 (queue active)
Mar 29 17:54:53 server1 postfix/qmgr[1814]: BD4877E12D3: removed
Mar 29 17:54:53 server1 dovecot[2281]: lmtp(2478768): Connect from local
Mar 29 17:54:53 server1 postfix/lmtp[2478767]: 8FA307E13EA: to=<[email protected]>, relay=server1.cloudastrix.com[private/dovecot-lmtp], delay=0.03, delays=0.01/0.01/0.01/0, dsn=5.1.1, status=bounced (host server1.cloudastrix.com[private/dovecot-lmtp] said: 550 5.1.1 <[email protected]> User doesn't exist: [email protected] (in reply to RCPT TO command))
Mar 29 17:54:53 server1 dovecot[2281]: lmtp(2478768): Disconnect from local: Client has quit the connection (state=READY)
Mar 29 17:54:53 server1 postfix/qmgr[1814]: 8FA307E13EA: removed
Mar 29 17:54:53 server1 postfix/smtp[2478764]: CD6DF7E13E2: to=<[email protected]>, relay=hotmail-com.olc.protection.outlook.com[104.47.56.161]:25, delay=1.9, delays=0.05/0.08/0.46/1.3, dsn=2.6.0, status=sent (250 2.6.0 <[email protected]> [InternalId=78675210948741, Hostname=AM7PR09MB4120.eurprd09.prod.outlook.com] 17990 bytes in 0.252, 69.444 KB/sec Queued mail for delivery -> 250 2.1.5)
Mar 29 17:54:53 server1 postfix/smtp[2478763]: CD6DF7E13E2: to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=2, delays=0.05/0.06/1.3/0.54, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. z66-20020aca3345000000b002ef53f5b57csi12846500oiz.256 - gsmtp (in reply to end of DATA command))
Mar 29 17:54:53 server1 postfix/smtp[2478763]: CD6DF7E13E2: to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=2, delays=0.05/0.06/1.3/0.54, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. z66-20020aca3345000000b002ef53f5b57csi12846500oiz.256 - gsmtp (in reply to end of DATA command))
Mar 29 17:54:53 server1 postfix/smtp[2478763]: CD6DF7E13E2: to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=2, delays=0.05/0.06/1.3/0.54, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. z66-20020aca3345000000b002ef53f5b57csi12846500oiz.256 - gsmtp (in reply to end of DATA command))
Mar 29 17:54:53 server1 postfix/smtpd[2470593]: connect from unknown[5.34.207.192]
Mar 29 17:54:54 server1 postfix/smtp[2478761]: C42267E13B4: to=<[email protected]>, orig_to=<[email protected]>, relay=eur.olc.protection.outlook.com[104.47.10.33]:25, delay=2.4, delays=0.03/0.07/0.89/1.4, dsn=2.6.0, status=sent (250 2.6.0 <[email protected]> [InternalId=53102975665249, Hostname=PR3PR01MB6586.eurprd01.prod.exchangelabs.com] 18294 bytes in 0.150, 118.380 KB/sec Queued mail for delivery -> 250 2.1.5)
Mar 29 17:54:55 server1 postfix/smtpd[2468611]: warning: unknown[5.34.205.44]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Mar 29 17:54:55 server1 dovecot[2281]: auth: Warning: auth client 0 disconnected with 1 pending requests: Connection reset by peer
Mar 29 17:54:55 server1 postfix/smtp[2478765]: CD6DF7E13E2: to=<[email protected]>, relay=eur.olc.protection.outlook.com[104.47.9.33]:25, delay=4.1, delays=0.05/0.1/1.1/2.9, dsn=2.6.0, status=sent (250 2.6.0 <[email protected]> [InternalId=96520800060694, Hostname=VI1PR0101MB2448.eurprd01.prod.exchangelabs.com] 17994 bytes in 0.116, 150.367 KB/sec Queued mail for delivery -> 250 2.1.5)
Mar 29 17:54:56 server1 postfix/smtp[2478762]: CD6DF7E13E2: to=<[email protected]>, relay=mail.axxess.co.za[197.242.159.197]:25, delay=4.3, delays=0.05/0.04/2.7/1.4, dsn=5.0.0, status=bounced (host mail.axxess.co.za[197.242.159.197] said: 554 Failure Surbl: phishing cloudastrix.com multi.surbl.org (in reply to end of DATA command))
Mar 29 17:54:56 server1 postfix/cleanup[2469904]: 17E167E138B: message-id=<[email protected]>
Mar 29 17:54:56 server1 postfix/bounce[2478766]: CD6DF7E13E2: sender non-delivery notification: 17E167E138B
Mar 29 17:54:56 server1 postfix/qmgr[1814]: 17E167E138B: from=<>, size=16035, nrcpt=1 (queue active)
Mar 29 17:54:56 server1 postfix/qmgr[1814]: CD6DF7E13E2: removed
Mar 29 17:54:56 server1 dovecot[2281]: lmtp(2478768): Connect from local
Mar 29 17:54:56 server1 postfix/lmtp[2478767]: 17E167E138B: to=<[email protected]>, relay=server1.cloudastrix.com[private/dovecot-lmtp], delay=0.01, delays=0.01/0/0/0, dsn=5.1.1, status=bounced (host server1.cloudastrix.com[private/dovecot-lmtp] said: 550 5.1.1 <[email protected]> User doesn't exist: [email protected] (in reply to RCPT TO command))
Mar 29 17:54:56 server1 dovecot[2281]: lmtp(2478768): Disconnect from local: Client has quit the connection (state=READY)
Mar 29 17:54:56 server1 postfix/qmgr[1814]: 17E167E138B: removed
Mar 29 17:54:57 server1 postfix/smtpd[2468611]: disconnect from unknown[5.34.205.44] ehlo=1 auth=0/1 rset=1 quit=1 commands=3/4
Mar 29 17:54:58 server1 postfix/smtpd[2466870]: warning: unknown[5.34.207.192]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Mar 29 17:54:58 server1 postfix/smtp[2478759]: C42267E13B4: to=<[email protected]>, orig_to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=6.9, delays=0.03/0.04/1.3/5.5, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. v125-20020aca6183000000b002ef0c3475e3si13386551oib.99 - gsmtp (in reply to end of DATA command))
Mar 29 17:54:58 server1 postfix/smtp[2478759]: C42267E13B4: to=<[email protected]>, orig_to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=6.9, delays=0.03/0.04/1.3/5.5, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. v125-20020aca6183000000b002ef0c3475e3si13386551oib.99 - gsmtp (in reply to end of DATA command))
Mar 29 17:54:58 server1 postfix/smtp[2478759]: C42267E13B4: to=<[email protected]>, orig_to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=6.9, delays=0.03/0.04/1.3/5.5, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. v125-20020aca6183000000b002ef0c3475e3si13386551oib.99 - gsmtp (in reply to end of DATA command))
Mar 29 17:54:58 server1 postfix/smtp[2478759]: C42267E13B4: to=<[email protected]>, orig_to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=6.9, delays=0.03/0.04/1.3/5.5, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. v125-20020aca6183000000b002ef0c3475e3si13386551oib.99 - gsmtp (in reply to end of DATA command))
Mar 29 17:54:58 server1 postfix/smtp[2478759]: C42267E13B4: to=<[email protected]>, orig_to=<[email protected]>, relay=gmail-smtp-in.l.google.com[142.250.114.27]:25, delay=6.9, delays=0.03/0.04/1.3/5.5, dsn=5.7.25, status=bounced (host gmail-smtp-in.l.google.com[142.250.114.27] said: 550-5.7.25 [163.123.183.223] The IP address sending this message does not have a 550-5.7.25 PTR record setup. As a policy, Gmail does not accept messages from 550-5.7.25 IPs with missing PTR records. Please visit 550-5.7.25  https://support.google.com/mail/answer/81126#authentication for more 550 5.7.25 information. v125-20020aca6183000000b002ef0c3475e3si13386551oib.99 - gsmtp (in reply to end of DATA command))

 

hmmm. i missed that one!!! let me try to unlist! Thank you!!!
Gmail/Google howver still has cloudastrix.com listed after a month... and I cannot verify that domain in postmaster tools...all the other domains verified except for cloudastrix.com which is the main one. maybe because its blocked..

 

After escalating to the hosting provider, it turns out that higher tier isp had to add it.. It's added now, it's verified, I'm now testing emails sent to Gmail...

I've found a few in spam, but testing further.

Tx for response.

 

hi, some update wrt this inability to send out mails.
So i've re installed clamav, amavisd and csf. Had to really beef up the server security after the recent spate of hacks/viruses.

Anyway, now no mail is being sent out to Gmail (still same).
I get this error:
connect to alt2.gmail-smtp-in.l.google.com[172.253.113.27]:25: Connection refused

So i send out the mail and watch the mail in the postfix queue with the message above.

I checked my port 25 is open, but there's something i'm missing...may i please have some assistance, what log do you need to see?

tx

 

it seems that CSF is blocking the outgoing emails special to gmail.
alt2.gmail-smtp-in.l.google.com[172.253.113.27]
I added that IP address and it worked immediately, however a few hours later, i see in the postfix log that its refusing again..upon closer inspection, i see that it refused 2 emails because:
1- the IP changed, so i need to add the new one, but this seems to be regular changes, so how to add all of it? It's a totally different gmail range!

2- the second one is an IPV6 address!!

i disabled CSF to test, and both emails went through well..so its definitely CSF blocking...but how and what to whitelist for gmail??

 

i would suggest just leaving port 25 open, there's little point in restricting it to specific ip's, inbound or outbound.
you never know where a legitimate email may come from in advance, or where you may end up having to send an email to.
just make sure postfix is configured to only allow unauthenticated mail on port 25 ( should use 465 or 587 for submission).
then use RBL's, and the spf, dkim, dmarc records and rDNS lookups to verify the legitimacy of inbound port 25 connections

 

i've added all of GMAIL/GOOGLE IPs to the white list, IPV4 and IPV6
seems to have fixed the problem...tx

 

you're right, the problem is not fixed..

suggestions?

 

Are you sure thats not risky? how do i leave port 25 open using csf?

 

well noted... i'll look more into it.. however, i do think it is open, albeit it has stringent rules set to it..

 

and it's those stringent rules which may very well be the problem, if your websites are sending emails, i'd assume that they could end up sending a copy of any contact form / query submission to the client as well, so you have no way of knowing in advance what domain names or ip's you might need to send to.
unless you'll only ever send / receive between a very specific set of users / domains, don't try to control port 25 access with blanket ip rules.
leave it open, and leave postfix to use rbl's and spf/dkim/dmarc records to decide whether or not to accept emails from other MTA's, and use fail2ban to block ip's that try to authenticate on port 25, or fail to successfully authenticate on ports 110,143,465,587,993 or 995.