Hello everyone! I'm a new ispconfig user. I was struggled for about 3 days, and after 22 reinstallations VPS almost works The only problem is it doesn't seem to receive emails from outside. The installaton I manage was from this (I do believe one of you) tut: http://www.howtoforge.com/perfect-server-debian-squeeze-with-bind-and-courier-ispconfig-3-p4 . Situation describe: I can send emails to other outside emails (like gmail etc), I can send emails to local mailboxes. But when I try to send from gmail to my VPS hosted mailbox - nothing happens. Try with many other email accounts. I was searching through all possible sources but.. as you see. 1. Mail queue is empty, checked. 2. Mail warn log -empty, checked 3. Mail error log -empty, checked 4. Clamav - checked, no errors 5. DNS ? Think are good (attachement) 6. Mail log: Code: Oct 14 04:50:24 vps102053 imapd-ssl: Connection, ip=[::ffff:84.10.166.67] Oct 14 04:50:24 vps102053 imapd-ssl: LOGIN, [email protected], ip=[::ffff:84.10.166.67], port=[8424], protocol=IMAP Oct 14 04:50:25 vps102053 imapd-ssl: Connection, ip=[::ffff:84.10.166.67] Oct 14 04:50:26 vps102053 imapd-ssl: LOGIN, [email protected], ip=[::ffff:84.10.166.67], port=[8425], protocol=IMAP Oct 14 04:50:38 vps102053 postfix/smtpd[6085]: connect from 84-10-166-67.static.chello.pl[84.10.166.67] Oct 14 04:50:38 vps102053 postfix/smtpd[6085]: F30FE1D62C4C: client=84-10-166-67.static.chello.pl[84.10.166.67], sasl_method=LOGIN, [email protected] Oct 14 04:50:39 vps102053 postfix/cleanup[6115]: F30FE1D62C4C: message-id=<000501cfe759$a30d09c0$e9271d40$@ovh> Oct 14 04:50:39 vps102053 postfix/qmgr[5730]: F30FE1D62C4C: from=<[email protected]>, size=2699, nrcpt=1 (queue active) Oct 14 04:50:39 vps102053 postfix/smtpd[6119]: connect from localhost[127.0.0.1] Oct 14 04:50:39 vps102053 postfix/smtpd[6119]: 715131D62D17: client=localhost[127.0.0.1] Oct 14 04:50:39 vps102053 postfix/cleanup[6115]: 715131D62D17: message-id=<000501cfe759$a30d09c0$e9271d40$@ovh> Oct 14 04:50:39 vps102053 postfix/smtpd[6119]: disconnect from localhost[127.0.0.1] Oct 14 04:50:39 vps102053 postfix/qmgr[5730]: 715131D62D17: from=<[email protected]>, size=3167, nrcpt=1 (queue active) Oct 14 04:50:39 vps102053 amavis[1381]: (01381-08) Passed CLEAN, [84.10.166.67] [84.10.166.67] <[email protected]> -> <[email protected]>, Message-ID: <000501cfe759$a30d09c0$e9271d40$@ovh>, mail_id: KppMcRC+o2Vh, Hits: 0.215, size: 2699, queued_as: 715131D62D17, 197 ms Oct 14 04:50:39 vps102053 postfix/smtp[6116]: F30FE1D62C4C: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.55, delays=0.35/0/0/0.2, dsn=2.0.0, status=sent (250 2.0.0 Ok, id=01381-08, from MTA([127.0.0.1]:10025): 250 2.0.0 Ok: queued as 715131D62D17) Oct 14 04:50:39 vps102053 postfix/qmgr[5730]: F30FE1D62C4C: removed Oct 14 04:50:39 vps102053 postfix/smtp[6140]: c[B]ertificate verification failed for gmail-smtp-in.l.google.com[2a00:1450:4013:c01::1a]:25: untrusted issuer /C=US/O=Equifax/OU=Equifax Secure Certificate Authority[/B] Oct 14 04:50:41 vps102053 postfix/smtpd[6085]: disconnect from 84-10-166-67.static.chello.pl[84.10.166.67] Oct 14 04:50:42 vps102053 postfix/smtp[6140]: 715131D62D17: to=<[email protected]>, relay=gmail-smtp-in.l.google.com[2a00:1450:4013:c01::1a]:25, delay=2.9, delays=0.02/0.01/0.34/2.5, dsn=2.0.0, status=sent (250 2.0.0 OK 1413255042 h7si14599441wiz.61 - gsmtp) Oct 14 04:50:42 vps102053 postfix/qmgr[5730]: 715131D62D17: removed Oct 14 04:50:42 vps102053 postfix/smtpd[6085]: connect from 250.ip-37-187-37.eu[37.187.37.250] Oct 14 04:50:42 vps102053 postfix/smtpd[6085]: lost connection after CONNECT from 250.ip-37-187-37.eu[37.187.37.250] Oct 14 04:50:42 vps102053 postfix/smtpd[6085]: disconnect from 250.ip-37-187-37.eu[37.187.37.250] As you see the certificate might be a problem, what possibly could I have done wrong with that TUT ? Is this my suspect ? I know that thunderbird connect with my account through imap (993 ssl) but SMTP only 25 without ssl. Any help appreciate Thanks for your time, regards
The certificate is ok, the line that you marked in bold is prt of sending mail out, not of receiving email. Please use the test tool and post the output: http://www.howtoforge.com/forums/showthread.php?t=58408
Version of linux: Debian 6 (Squeeze) 64bit. Version of ispconfig: 3.0.5.4p3 Code: locate master.cf /etc/postfix/master.cf /etc/postfix/master.cf~ /usr/lib/postfix/master.cf /usr/share/postfix/master.cf.dist I choose first one: Code: # # Postfix master process configuration file. For details on the format # of the file, see the master(5) manual page (command: "man 5 master"). # # Do not forget to execute "postfix reload" after editing this file. # # ========================================================================== # service type private unpriv chroot wakeup maxproc command + args # (yes) (yes) (yes) (never) (100) # ========================================================================== smtp inet n - - - - smtpd #submission inet n - - - - smtpd # -o smtpd_tls_security_level=encrypt # -o smtpd_sasl_auth_enable=yes # -o smtpd_client_restrictions=permit_sasl_authenticated,reject # -o milter_macro_daemon_name=ORIGINATING #smtps inet n - - - - smtpd # -o smtpd_tls_wrappermode=yes # -o smtpd_sasl_auth_enable=yes # -o smtpd_client_restrictions=permit_sasl_authenticated,reject # -o milter_macro_daemon_name=ORIGINATING #628 inet n - - - - qmqpd pickup fifo n - - 60 1 pickup cleanup unix n - - - 0 cleanup qmgr fifo n - n 300 1 qmgr #qmgr fifo n - - 300 1 oqmgr tlsmgr unix - - - 1000? 1 tlsmgr rewrite unix - - - - - trivial-rewrite bounce unix - - - - 0 bounce defer unix - - - - 0 bounce trace unix - - - - 0 bounce verify unix - - - - 1 verify flush unix n - - 1000? 0 flush proxymap unix - - n - - proxymap proxywrite unix - - n - 1 proxymap smtp unix - - - - - smtp # When relaying mail as backup MX, disable fallback_relay to avoid MX loops relay unix - - - - - smtp -o smtp_fallback_relay= # -o smtp_helo_timeout=5 -o smtp_connect_timeout=5 showq unix n - - - - showq error unix - - - - - error retry unix - - - - - error discard unix - - - - - discard local unix - n n - - local virtual unix - n n - - virtual lmtp unix - - - - - lmtp anvil unix - - - - 1 anvil scache unix - - - - 1 scache # # ==================================================================== # Interfaces to non-Postfix software. Be sure to examine the manual # pages of the non-Postfix software to find out what options it wants. # # Many of the following services use the Postfix pipe(8) delivery # agent. See the pipe(8) man page for information about ${recipient} # and other message envelope options. # ==================================================================== # # maildrop. See the Postfix MAILDROP_README file for details. # Also specify in main.cf: maildrop_destination_recipient_limit=1 # maildrop unix - n n - - pipe flags=DRhu user=vmail argv=/usr/bin/maildrop -d vmail ${extension} ${recipient} ${user} ${nexthop} ${sender} # # ==================================================================== # # Recent Cyrus versions can use the existing "lmtp" master.cf entry. # # Specify in cyrus.conf: # lmtp cmd="lmtpd -a" listen="localhost:lmtp" proto=tcp4 # # Specify in main.cf one or more of the following: # mailbox_transport = lmtp:inet:localhost # virtual_transport = lmtp:inet:localhost # # ==================================================================== # # Cyrus 2.1.5 (Amos Gouaux) # Also specify in main.cf: cyrus_destination_recipient_limit=1 # #cyrus unix - n n - - pipe # user=cyrus argv=/cyrus/bin/deliver -e -r ${sender} -m ${extension} ${user} # # ==================================================================== # Old example of delivery via Cyrus. # #old-cyrus unix - n n - - pipe # flags=R user=cyrus argv=/cyrus/bin/deliver -e -m ${extension} ${user} # # ==================================================================== # # See the Postfix UUCP_README file for configuration details. # uucp unix - n n - - pipe flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient) # # Other external delivery methods. # ifmail unix - n n - - pipe flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient) bsmtp unix - n n - - pipe flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender $recipient scalemail-backend unix - n n - 2 pipe flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store ${nexthop} ${user} ${extension} mailman unix - n n - - pipe flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py ${nexthop} ${user} amavis unix - - - - 2 smtp -o smtp_data_done_timeout=1200 -o smtp_send_xforward_command=yes 127.0.0.1:10025 inet n - - - - smtpd -o content_filter= -o local_recipient_maps= -o relay_recipient_maps= -o smtpd_restriction_classes= -o smtpd_client_restrictions= -o smtpd_helo_restrictions= -o smtpd_sender_restrictions= -o smtpd_recipient_restrictions=permit_mynetworks,reject -o mynetworks=127.0.0.0/8 -o strict_rfc821_envelopes=yes -o receive_override_options=no_unknown_recipient_checks,no_header_body_checks and report from test script: Code: ##### SERVER ##### IP-address (as per hostname): ***.***.***.*** [WARN] could not determine server's ip address by ifconfig [INFO] ISPConfig is installed. ##### ISPCONFIG ##### ISPConfig version is 3.0.5.4p3 ##### VERSION CHECK ##### [INFO] php (cli) version is 5.3.3-7+squeeze22 [INFO] php-cgi (used for cgi php in default vhost!) is version 5.3.3-7+squeeze22 [WARN] Your php-cgi in /usr/lib/cgi-bin/ seems to be outdated and might contain a known exploit (-7+squeeze22)! ##### PORT CHECK ##### [WARN] Port 465 (SMTP server SSL) seems NOT to be listening ##### MAIL SERVER CHECK ##### [WARN] I found no "submission" entry in your postfix master.cf [INFO] this is not critical, but if you want to offer port 587 for smtp connections you have to enable this. [WARN] I found no "smtps" entry in your postfix master.cf [INFO] this is not critical, but if you want to offer SSL for smtp (not TLS) connections you have to enable this. ##### RUNNING SERVER PROCESSES ##### [INFO] I found the following web server(s): Apache 2 (PID 1386) [INFO] I found the following mail server(s): Postfix (PID 2625) [INFO] I found the following pop3 server(s): Courier Mailserver (PID 588) [INFO] I found the following imap server(s): Courier Mailserver (PID 600) [INFO] I found the following ftp server(s): PureFTP (PID 1567) ##### LISTENING PORTS ##### (only () Local (Address) [anywhere]:21 (1567/pure-ftpd) [localhost]:53 (658/named) [anywhere]:22 (1547/sshd) [anywhere]:25 (2625/master) [localhost]:953 (658/named) [localhost]:10024 (1277/amavisd) [localhost]:10025 (2625/master) [anywhere]:3306 (1165/mysqld) [localhost]10 (588/couriertcpd) [localhost]43 (600/couriertcpd) *:*:*:*::*:8080 (1386/apache2) *:*:*:*::*:80 (1386/apache2) *:*:*:*::*:8081 (1386/apache2) *:*:*:*::*:21 (1567/pure-ftpd) *:*:*:*::*:53 (658/named) *:*:*:*::*:22 (1547/sshd) *:*:*:*::*:25 (2625/master) *:*:*:*::*:953 (658/named) *:*:*:*::*:443 (1386/apache2) *:*:*:*::*:80 (1386/apache2) *:*:*:*::*:8081 (1386/apache2) *:*:*:*::*:21 (1567/pure-ftpd) *:*:*:*::*:53 (658/named) *:*:*:*::*:22 (1547/sshd) *:*:*:*::*:25 (2625/master) *:*:*:*::*:953 (658/named) *:*:*:*::*:443 (1386/apache2) *:*:*:*::*:993 (651/couriertcpd) *:*:*:*::*:995 (672/couriertcpd) ##### IPTABLES ##### Chain INPUT (policy ACCEPT) target prot opt source destination fail2ban-courierimaps tcp -- [anywhere]/0 [anywhere]/0 multiport dports 993 fail2ban-sasl tcp -- [anywhere]/0 [anywhere]/0 multiport dports 25 fail2ban-ssh tcp -- [anywhere]/0 [anywhere]/0 multiport dports 22 fail2ban-pureftpd tcp -- [anywhere]/0 [anywhere]/0 multiport dports 21 fail2ban-courierpop3s tcp -- [anywhere]/0 [anywhere]/0 multiport dports 995 fail2ban-courierpop3 tcp -- [anywhere]/0 [anywhere]/0 multiport dports 110 fail2ban-courierimap tcp -- [anywhere]/0 [anywhere]/0 multiport dports 143 Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination Chain fail2ban-courierimap (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 Chain fail2ban-courierimaps (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 Chain fail2ban-courierpop3 (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 Chain fail2ban-courierpop3s (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 Chain fail2ban-pureftpd (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 Chain fail2ban-sasl (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 Chain fail2ban-ssh (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 cheers!
Ok, now I get: master.cf: Code: # # Postfix master process configuration file. For details on the format # of the file, see the master(5) manual page (command: "man 5 master"). # # Do not forget to execute "postfix reload" after editing this file. # # ========================================================================== # service type private unpriv chroot wakeup maxproc command + args # (yes) (yes) (yes) (never) (100) # ========================================================================== smtp inet n - - - - smtpd submission inet n - - - - smtpd -o syslog_name=postfix/submission -o smtpd_tls_security_level=encrypt -o smtpd_sasl_auth_enable=yes -o smtpd_client_restrictions=permit_sasl_authenticated,reject # -o milter_macro_daemon_name=ORIGINATING smtps inet n - - - - smtpd -o syslog_name=postfix/smtps -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes -o smtpd_client_restrictions=permit_sasl_authenticated,reject # -o milter_macro_daemon_name=ORIGINATING #628 inet n - - - - qmqpd pickup fifo n - - 60 1 pickup cleanup unix n - - - 0 cleanup qmgr fifo n - n 300 1 qmgr #qmgr fifo n - - 300 1 oqmgr tlsmgr unix - - - 1000? 1 tlsmgr rewrite unix - - - - - trivial-rewrite bounce unix - - - - 0 bounce defer unix - - - - 0 bounce trace unix - - - - 0 bounce verify unix - - - - 1 verify flush unix n - - 1000? 0 flush proxymap unix - - n - - proxymap proxywrite unix - - n - 1 proxymap smtp unix - - - - - smtp # When relaying mail as backup MX, disable fallback_relay to avoid MX loops relay unix - - - - - smtp -o smtp_fallback_relay= # -o smtp_helo_timeout=5 -o smtp_connect_timeout=5 showq unix n - - - - showq error unix - - - - - error retry unix - - - - - error discard unix - - - - - discard local unix - n n - - local virtual unix - n n - - virtual lmtp unix - - - - - lmtp anvil unix - - - - 1 anvil scache unix - - - - 1 scache # # ==================================================================== # Interfaces to non-Postfix software. Be sure to examine the manual # pages of the non-Postfix software to find out what options it wants. # # Many of the following services use the Postfix pipe(8) delivery # agent. See the pipe(8) man page for information about ${recipient} # and other message envelope options. # ==================================================================== # # maildrop. See the Postfix MAILDROP_README file for details. # Also specify in main.cf: maildrop_destination_recipient_limit=1 # maildrop unix - n n - - pipe flags=DRhu user=vmail argv=/usr/bin/maildrop -d vmail ${extension} ${recipient} ${user} ${nexthop} ${sender} # # ==================================================================== # # Recent Cyrus versions can use the existing "lmtp" master.cf entry. # # Specify in cyrus.conf: # lmtp cmd="lmtpd -a" listen="localhost:lmtp" proto=tcp4 # # Specify in main.cf one or more of the following: # mailbox_transport = lmtp:inet:localhost # virtual_transport = lmtp:inet:localhost # # ==================================================================== # # Cyrus 2.1.5 (Amos Gouaux) # Also specify in main.cf: cyrus_destination_recipient_limit=1 # #cyrus unix - n n - - pipe # user=cyrus argv=/cyrus/bin/deliver -e -r ${sender} -m ${extension} ${user} # # ==================================================================== # Old example of delivery via Cyrus. # #old-cyrus unix - n n - - pipe # flags=R user=cyrus argv=/cyrus/bin/deliver -e -m ${extension} ${user} # # ==================================================================== # # See the Postfix UUCP_README file for configuration details. # uucp unix - n n - - pipe flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient) # # Other external delivery methods. # ifmail unix - n n - - pipe flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient) bsmtp unix - n n - - pipe flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender $recipient scalemail-backend unix - n n - 2 pipe flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store ${nexthop} ${user} ${extension} mailman unix - n n - - pipe flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py ${nexthop} ${user} amavis unix - - - - 2 smtp -o smtp_data_done_timeout=1200 -o smtp_send_xforward_command=yes 127.0.0.1:10025 inet n - - - - smtpd -o content_filter= -o local_recipient_maps= -o relay_recipient_maps= -o smtpd_restriction_classes= -o smtpd_client_restrictions= -o smtpd_helo_restrictions= -o smtpd_sender_restrictions= -o smtpd_recipient_restrictions=permit_mynetworks,reject -o mynetworks=127.0.0.0/8 -o strict_rfc821_envelopes=yes -o receive_override_options=no_unknown_recipient_checks,no_header_body_checks looking good. and the php test script: Code: ##### SERVER ##### IP-address (as per hostname): ***.***.***.*** [WARN] could not determine server's ip address by ifconfig [INFO] ISPConfig is installed. ##### ISPCONFIG ##### ISPConfig version is 3.0.5.4p3 ##### VERSION CHECK ##### [INFO] php (cli) version is 5.3.3-7+squeeze22 [INFO] php-cgi (used for cgi php in default vhost!) is version 5.3.3-7+squeeze22 [WARN] Your php-cgi in /usr/lib/cgi-bin/ seems to be outdated and might contain a known exploit (-7+squeeze22)! ##### PORT CHECK ##### [WARN] Port 25 (SMTP server) seems NOT to be listening [WARN] Port 465 (SMTP server SSL) seems NOT to be listening [WARN] Port 25 (SMTP server) seems NOT to be listening ##### MAIL SERVER CHECK ##### ##### RUNNING SERVER PROCESSES ##### [INFO] I found the following web server(s): Apache 2 (PID 1408) [WARN] I could not determine which mail server is running. [INFO] I found the following pop3 server(s): Courier Mailserver (PID 614) [INFO] I found the following imap server(s): Courier Mailserver (PID 610) [INFO] I found the following ftp server(s): PureFTP (PID 1486) ##### LISTENING PORTS ##### (only () Local (Address) [anywhere]:21 (1486/pure-ftpd) [localhost]:53 (718/named) [anywhere]:22 (771/sshd) [localhost]:953 (718/named) [localhost]:10024 (1311/amavisd) [anywhere]:3306 (1064/mysqld) [localhost]10 (614/couriertcpd) [localhost]43 (610/couriertcpd) *:*:*:*::*:8080 (1408/apache2) *:*:*:*::*:80 (1408/apache2) *:*:*:*::*:8081 (1408/apache2) *:*:*:*::*:21 (1486/pure-ftpd) *:*:*:*::*:53 (718/named) *:*:*:*::*:22 (771/sshd) *:*:*:*::*:953 (718/named) *:*:*:*::*:443 (1408/apache2) *:*:*:*::*:993 (666/couriertcpd) *:*:*:*::*:995 (638/couriertcpd) ##### IPTABLES ##### Chain INPUT (policy ACCEPT) target prot opt source destination fail2ban-courierimaps tcp -- [anywhere]/0 [anywhere]/0 multiport dports 993 fail2ban-sasl tcp -- [anywhere]/0 [anywhere]/0 multiport dports 25 fail2ban-ssh tcp -- [anywhere]/0 [anywhere]/0 multiport dports 22 fail2ban-pureftpd tcp -- [anywhere]/0 [anywhere]/0 multiport dports 21 fail2ban-courierpop3s tcp -- [anywhere]/0 [anywhere]/0 multiport dports 995 fail2ban-courierpop3 tcp -- [anywhere]/0 [anywhere]/0 multiport dports 110 fail2ban-courierimap tcp -- [anywhere]/0 [anywhere]/0 multiport dports 143 Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination Chain fail2ban-courierimap (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 Chain fail2ban-courierimaps (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 Chain fail2ban-courierpop3 (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 Chain fail2ban-courierpop3s (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 Chain fail2ban-pureftpd (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 Chain fail2ban-sasl (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 Chain fail2ban-ssh (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 Looks like 25 port dead and ispconfig monitor says: "SMTP-Server: Offline" Regards,MT