Hi Guys, I hope someone has an idea what do look for. Originally that was a Perfect Server setup on Debian 10 with ISPConfig3.1x But I had to ugrade since Typo3 needs a newer PHP version. I follwed the Upgrade guide: Update the ISPConfig Perfect Server from Debian 10 to Debian 11 step by step. Code: ispconfig_update.sh --force done a couple of times. All services restarted Current system status: Code: root@vls001:~# lsb_release -a No LSB modules are available. Distributor ID: Debian Description: Debian GNU/Linux 11 (bullseye) Release: 11 Codename: bullseye root@vls001:~# php -v PHP 7.4.33 (cli) (built: Jun 9 2023 07:37:37) ( NTS ) Copyright (c) The PHP Group Zend Engine v3.4.0, Copyright (c) Zend Technologies with Zend OPcache v7.4.33, Copyright (c), by Zend Technologies Mailserver does not to accept emails anymore, if the network printer tries to connect a error is shown. I verified this on Roundcube (where sending failed too, and found in the mail log: Code: postfix/submission/smtpd[852079]: NOQUEUE: reject: RCPT from localhost[127.0.0.1]: 451 4.3.0 <[email protected]>: Temporary lookup failure; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<vls001.thisdomain.net> Jun 13 13:29:57 vls001 postfix/submission/smtpd[852079]: disconnect from localhost[127.0.0.1] ehlo=2 starttls=1 auth=1 mail=1 rcpt=0/1 rset=1 quit=1 commands=7/8 In mail error log I see a lot of: Code: Jun 13 13:36:42 vls001 postfix/smtpd[853850]: error: unsupported dictionary type: mysql Jun 13 13:37:17 vls001 postfix/smtps/smtpd[853874]: error: unsupported dictionary type: mysql Test Script output below: Code: root@vls001:~# cat htf_report.txt | more ##### SERVER ##### IP-address (as per hostname): ***.***.***.*** [WARN] could not determine server's ip address by ifconfig [INFO] OS version is Debian GNU/Linux 11 (bullseye) [INFO] uptime: 14:33:49 up 22:55, 2 users, load average: 0.16, 0.13, 0.10 [INFO] memory: total used free shared buff/cache available Mem: 3.9Gi 2.0Gi 145Mi 95Mi 1.7Gi 1.4Gi Swap: 974Mi 11Mi 963Mi [INFO] systemd failed services status: UNIT LOAD ACTIVE SUB DESCRIPTION ● monit.service loaded failed failed LSB: service and resource monitoring d aemon ● networking.service loaded failed failed Raise network interfaces ● [email protected] loaded failed failed Postfix Mail Transport Agent (instance -) LOAD = Reflects whether the unit definition was properly loaded. ACTIVE = The high-level unit activation state, i.e. generalization of SUB. SUB = The low-level unit activation state, values depend on unit type. 3 loaded units listed. [INFO] ISPConfig is installed. ##### ISPCONFIG ##### ISPConfig version is 3.2.10 ##### VERSION CHECK ##### [INFO] php (cli) version is 7.4.33 [INFO] php-cgi (used for cgi php in default vhost!) is version 7.4.33 ##### PORT CHECK ##### ##### MAIL SERVER CHECK ##### ##### RUNNING SERVER PROCESSES ##### [INFO] I found the following web server(s): Apache 2 (PID 526054) [INFO] I found the following mail server(s): Postfix (PID 853059) [INFO] I found the following pop3 server(s): Dovecot (PID 518376) [INFO] I found the following imap server(s): Dovecot (PID 518376) [INFO] I found the following ftp server(s): PureFTP (PID 518468) ##### LISTENING PORTS ##### (only () Local (Address) [anywhere]:110 (518376/dovecot) [anywhere]:143 (518376/dovecot) [anywhere]:465 (853059/master) ***.***.***.***:53 (518581/named) ***.***.***.***:53 (518581/named) ***.***.***.***:53 (518581/named) ***.***.***.***:53 (518581/named) ***.***.***.***:53 (518581/named) ***.***.***.***:53 (518581/named) [localhost]:53 (518581/named) [localhost]:53 (518581/named) [anywhere]:21 (518468/pure-ftpd) [anywhere]:22 (12464/sshd:) [anywhere]:25 (853059/master) [localhost]:953 (518581/named) [anywhere]:4190 (518376/dovecot) [anywhere]:993 (518376/dovecot) [anywhere]:995 (518376/dovecot) [localhost]:11332 (518363/rspamd:) [localhost]:11333 (518363/rspamd:) [localhost]:11334 (518363/rspamd:) [localhost]:10023 (687/postgrey) [anywhere]:587 (853059/master) [localhost]:11211 (23140/memcached) [localhost]:6379 (638/redis-server) [localhost]10 (518376/dovecot) [localhost]43 (518376/dovecot) *:*:*:*::*:8080 (526054/apache2) *:*:*:*::*:80 (526054/apache2) *:*:*:*::*:465 (853059/master) *:*:*:*::*:8081 (526054/apache2) *:*:*:*::*:21 (518468/pure-ftpd) *:*:*:*::*:4949 (10802/perl) *:*:*:*::*:53 (518581/named) *:*:*:*::*:53 (518581/named) *:*:*:*::*dc24:dbff:fe7e:53 (518581/named) *:*:*:*::*dc24:dbff:fe7e:53 (518581/named) *:*:*:*::*:22 (12464/sshd:) *:*:*:*::*:25 (853059/master) *:*:*:*::*:953 (518581/named) *:*:*:*::*:443 (526054/apache2) *:*:*:*::*:4190 (518376/dovecot) *:*:*:*::*:993 (518376/dovecot) *:*:*:*::*:995 (518376/dovecot) *:*:*:*::*:11332 (518363/rspamd:) *:*:*:*::*:11333 (518363/rspamd:) *:*:*:*::*:11334 (518363/rspamd:) *:*:*:*::*:10023 (687/postgrey) *:*:*:*::*:3306 (518110/mariadbd) *:*:*:*::*:587 (853059/master) *:*:*:*::*:6379 (638/redis-server) ##### IPTABLES ##### Chain INPUT (policy DROP) target prot opt source destination ufw-before-logging-input all -- [anywhere]/0 [anywhere]/0 ufw-before-input all -- [anywhere]/0 [anywhere]/0 ufw-after-input all -- [anywhere]/0 [anywhere]/0 ufw-after-logging-input all -- [anywhere]/0 [anywhere]/0 ufw-reject-input all -- [anywhere]/0 [anywhere]/0 ufw-track-input all -- [anywhere]/0 [anywhere]/0 Chain FORWARD (policy DROP) target prot opt source destination ufw-before-logging-forward all -- [anywhere]/0 [anywhere]/0 ufw-before-forward all -- [anywhere]/0 [anywhere]/0 ufw-after-forward all -- [anywhere]/0 [anywhere]/0 ufw-after-logging-forward all -- [anywhere]/0 [anywhere]/0 ufw-reject-forward all -- [anywhere]/0 [anywhere]/0 ufw-track-forward all -- [anywhere]/0 [anywhere]/0 Chain OUTPUT (policy ACCEPT) target prot opt source destination ufw-before-logging-output all -- [anywhere]/0 [anywhere]/0 ufw-before-output all -- [anywhere]/0 [anywhere]/0 ufw-after-output all -- [anywhere]/0 [anywhere]/0 ufw-after-logging-output all -- [anywhere]/0 [anywhere]/0 ufw-reject-output all -- [anywhere]/0 [anywhere]/0 ufw-track-output all -- [anywhere]/0 [anywhere]/0 Chain ufw-after-forward (1 references) target prot opt source destination Chain ufw-after-input (1 references) target prot opt source destination ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:137 ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:138 ufw-skip-to-policy-input tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:139 ufw-skip-to-policy-input tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:445 ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:67 ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:68 ufw-skip-to-policy-input all -- [anywhere]/0 [anywhere]/0 ADDRTYPE match dst-type BROADCAST Chain ufw-after-logging-forward (1 references) target prot opt source destination LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] " Chain ufw-after-logging-input (1 references) target prot opt source destination LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] " Chain ufw-after-logging-output (1 references) target prot opt source destination Chain ufw-after-output (1 references) target prot opt source destination Chain ufw-before-forward (1 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 ctstate RELATED,ESTABLISHED ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 3 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 11 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 12 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 8 ufw-user-forward all -- [anywhere]/0 [anywhere]/0 Chain ufw-before-input (1 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 ACCEPT all -- [anywhere]/0 [anywhere]/0 ctstate RELATED,ESTABLISHED ufw-logging-deny all -- [anywhere]/0 [anywhere]/0 ctstate INVALID DROP all -- [anywhere]/0 [anywhere]/0 ctstate INVALID ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 3 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 11 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 12 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 8 ACCEPT udp -- [anywhere]/0 [anywhere]/0 udp spt:67 dpt:68 ufw-not-local all -- [anywhere]/0 [anywhere]/0 ACCEPT udp -- [anywhere]/0 ***.***.***.*** udp dpt:5353 ACCEPT udp -- [anywhere]/0 ***.***.***.*** udp dpt:1900 ufw-user-input all -- [anywhere]/0 [anywhere]/0 Chain ufw-before-logging-forward (1 references) target prot opt source destination Chain ufw-before-logging-input (1 references) target prot opt source destination Chain ufw-before-logging-output (1 references) target prot opt source destination Chain ufw-before-output (1 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 ACCEPT all -- [anywhere]/0 [anywhere]/0 ctstate RELATED,ESTABLISHED ufw-user-output all -- [anywhere]/0 [anywhere]/0 Chain ufw-logging-allow (0 references) target prot opt source destination LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW ALLOW] " Chain ufw-logging-deny (2 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 ctstate INVALID limit: avg 3/min burst 10 LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] " Chain ufw-not-local (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 ADDRTYPE match dst-type LOCAL RETURN all -- [anywhere]/0 [anywhere]/0 ADDRTYPE match dst-type MULTICAST RETURN all -- [anywhere]/0 [anywhere]/0 ADDRTYPE match dst-type BROADCAST ufw-logging-deny all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 DROP all -- [anywhere]/0 [anywhere]/0 Chain ufw-reject-forward (1 references) target prot opt source destination Chain ufw-reject-input (1 references) target prot opt source destination Chain ufw-reject-output (1 references) target prot opt source destination Chain ufw-skip-to-policy-forward (0 references) target prot opt source destination DROP all -- [anywhere]/0 [anywhere]/0 Chain ufw-skip-to-policy-input (7 references) target prot opt source destination DROP all -- [anywhere]/0 [anywhere]/0 Chain ufw-skip-to-policy-output (0 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 Chain ufw-track-forward (1 references) target prot opt source destination Chain ufw-track-input (1 references) target prot opt source destination Chain ufw-track-output (1 references) target prot opt source destination ACCEPT tcp -- [anywhere]/0 [anywhere]/0 ctstate NEW ACCEPT udp -- [anywhere]/0 [anywhere]/0 ctstate NEW Chain ufw-user-forward (1 references) target prot opt source destination Chain ufw-user-input (1 references) target prot opt source destination ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:21 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:22 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:25 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:53 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:80 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:110 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:143 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:443 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:465 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:587 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:993 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:995 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:3306 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:4190 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:8080 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:8081 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 multiport dports 40110:40210 ACCEPT udp -- [anywhere]/0 [anywhere]/0 udp dpt:53 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:2812 Chain ufw-user-limit (0 references) target prot opt source destination LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 5 LOG flags 0 level 4 prefix "[UFW LIMIT BLOCK] " REJECT all -- [anywhere]/0 [anywhere]/0 reject-with icmp-port-unreachable Chain ufw-user-limit-accept (0 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 Chain ufw-user-logging-forward (0 references) target prot opt source destination Chain ufw-user-logging-input (0 references) target prot opt source destination Chain ufw-user-logging-output (0 references) target prot opt source destination Chain ufw-user-output (1 references) target prot opt source destination ##### LET'S ENCRYPT ##### acme.sh is installed in /root/.acme.sh/acme.sh Hope someone has an idea, since we can't use scan2email now in the office. The only use case for the mailserver.
In the report I read: Code: ● networking.service loaded failed failed So connection to network is lost. Check the usual suspects: cable is connected, link led is on, etc. Try starting the network: Code: systemctl start networking.service systemctl status networking.service Read the error messages, if any, and continue troubleshooting.
Hi Taleman, checking network cables, not that easy - massivegrid data center in Frankfurt. (and I am in Bangkok/Thailand) However, network must work, since I am connected to this server per ssh. Code: --- 185.85.xxx.xx ping statistics --- 5 packets transmitted, 5 received, 0% packet loss, time 4005ms rtt min/avg/max/mdev = 252.094/252.443/252.787/0.281 ms Assigned server IP / smtp ports are reachable: Code: mzerbe@sln10003:~$ nc -v -z -w2 185.85.xxx.xx 25 Connection to 185.85.xxx.xx 25 port [tcp/smtp] succeeded! mzerbe@sln10003:~$ nc -v -z -w2 185.85.xxx.xx 587 Connection to 185.85.xxx.xx 587 port [tcp/submission] succeeded!
I solved it! I tried to reinstall postfix-mysql (this was already the current version), but the problem came from libhyperscan5 (which was not updated last night! Code: root@vls001:~# apt-get install postfix-mysql Reading package lists... Done Building dependency tree... Done Reading state information... Done postfix-mysql is already the newest version (3.5.18-0+deb11u1). You might want to run 'apt --fix-broken install' to correct these. The following packages have unmet dependencies: rspamd : Depends: libhyperscan5 (>= 5.4.0) but 5.1.0-1 is to be installed E: Unmet dependencies. Try 'apt --fix-broken install' with no packages (or specify a solution). root@vls001:~# apt --fix-broken install After that again a forced install of ispconfig 3.2 - Code: root@vls001:~# ispconfig_update.sh --force Issue solved. Anyway thanks for your fast reply!
