Postfix / Dovecot not working with ISPConfig

Discussion in 'Server Operation' started by Sgt. Rock, Feb 25, 2016.

  1. Sgt. Rock

    Sgt. Rock Member

    Made changes to master.cf to match what was shown in the HowTo (uncomment smtp....) now I am getting a different error message of connect error 10060 when I use an email app in an attempt to send/receive. Roundcube starts now but still fails to send or receive emails.

    Making progress?
    CB
     
  2. Sgt. Rock

    Sgt. Rock Member

    To make sure I am understanding this correctly:
    You will be asked the following questions:

    General type of mail configuration: <-- Internet Site
    System mail name: <-- server1.example.com

    It is important that you use a subdomain as "system mail name" like server1.example.com or server1.yourdomain.com and not a domain that you want to use as email domain (e.g. yourdomain.tld) later.

    When I set this up I chose Intenet Site from list of options, then my system mail name was set to server name WebServer.HedHouse.net as it is listed in ISP config and on the machine network settings. This is different from my website (www.handyman-it.com) and email [email protected] so I believe that I have it set correctly.

    Please let me know if I need to reset the System mail name from WebServer.HedHouse.net to something different.

    Thanks in advance.

    CB
     
  3. ztk.me

    ztk.me Well-Known Member HowtoForge Supporter

    Something is really wrong here. Please make sure everything's running, including postfix, dovecot and amavisd.
    Try sending a mail from command line
    Code:
    mail [email protected]
    Subject: test
    test
    .
    EOT
    
    Check the last lines of /var/log/mail.info

    Did you make changes to postfix main.cf ? How does it look like?
    If in doubt, you could try
    Code:
    cd /tmp
    wget http://www.ispconfig.org/downloads/ISPConfig-3-stable.tar.gz
    tar xvfz ISPConfig-3-stable.tar.gz
    cd ispconfig3_install/install
    php -q update.php
    
    
    and say yes to reconfigure services. Make sure the generated SSL certs are in the right place and have correct permissions.

    Your hostname looks ok.
     
  4. Sgt. Rock

    Sgt. Rock Member

    Need to know if the starting script for Postfix where you select your type of server and then name it should be as stated in the howto or using your real information (ie - webserver.hedhouse.net)

    Thanks
     
  5. ztk.me

    ztk.me Well-Known Member HowtoForge Supporter

    It should be your real hostname of course
     
  6. Sgt. Rock

    Sgt. Rock Member

    Tried sending mail from command line - error log shows the following:
    Mar 17 08:50:01 Webserver postfix/smtpd[25586]: connect from localhost[::1]
    Mar 17 08:50:01 Webserver postfix/smtpd[25586]: lost connection after CONNECT from localhost[::1]

    Mar 17 08:50:01 Webserver postfix/smtpd[25586]: disconnect from localhost[::1]
    Mar 17 08:50:01 Webserver dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=::1, lip=::1, secured, session=<3I9RlUAuHAAAAAAAAAAAAAAAAAAAAAAB>
    Mar 17 08:52:17 Webserver postfix/pickup[24034]: 9E06A5A11F1: uid=1000 from=<brad>
    Mar 17 08:52:17 Webserver postfix/cleanup[25771]: 9E06A5A11F1: message-id=<[email protected]>
    Mar 17 08:52:17 Webserver postfix/qmgr[16283]: 9E06A5A11F1: from=<[email protected]>, size=334, nrcpt=1 (queue active)
    Mar 17 08:52:17 Webserver amavis[1558]: (01558-05) NOTICE: reconnecting in response to: err=2006, HY000, DBD::mysql::st execute failed: MySQL server has gone away at (eval 99) line 170, <GEN32> line 402.
    Mar 17 08:52:17 Webserver postfix/smtpd[25777]: connect from localhost[127.0.0.1]
    Mar 17 08:52:17 Webserver postfix/smtpd[25777]: E5D2C5A11E3: client=localhost[127.0.0.1]
    Mar 17 08:52:17 Webserver postfix/cleanup[25771]: E5D2C5A11E3: message-id=<[email protected]>
    Mar 17 08:52:18 Webserver postfix/qmgr[16283]: E5D2C5A11E3: from=<[email protected]>, size=813, nrcpt=1 (queue active)
    Mar 17 08:52:18 Webserver postfix/smtpd[25777]: disconnect from localhost[127.0.0.1]
    Mar 17 08:52:18 Webserver amavis[1558]: (01558-05) Passed CLEAN {RelayedOutbound}, <[email protected]> -> <[email protected]>, Message-ID: <[email protected]>, mail_id: 8iD0CBONme7S, Hits: 1.178, size: 334, queued_as: E5D2C5A11E3, 310 ms
    Mar 17 08:52:18 Webserver postfix/smtp[25774]: 9E06A5A11F1: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.44, delays=0.12/0.01/0/0.31, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as E5D2C5A11E3)
    Mar 17 08:52:18 Webserver postfix/qmgr[16283]: 9E06A5A11F1: removed
    Mar 17 08:52:48 Webserver postfix/smtp[25778]: connect to mta6.am0.yahoodns.net[66.196.118.33]:25: Connection timed out
    Mar 17 08:53:18 Webserver postfix/smtp[25778]: connect to mta6.am0.yahoodns.net[66.196.118.37]:25: Connection timed out


    There appears to be several issues - if I am seeing this correctly... Hot spots in bold text.

    CB​
     
  7. Sgt. Rock

    Sgt. Rock Member

    As far as installing SSL certificate - I followed the instructions for adding my cert from the ISPConfig manual. It only talked about inserting the cert into the area withing the ISPConfig program, not anywhere else in the file system. Am I needing to take extra steps here?

    Thanks in advance.

    CB
     
  8. ztk.me

    ztk.me Well-Known Member HowtoForge Supporter

    The connect to ::1 is just a "ping" no issue here.
    MySQL has gone away ... well happens but services do reconnect.
    telnet 66.196.118.33 25 told me it should not say Connection timed out here :(
    Does it work if you do a telnet from your server to that IP/Port? If not, you may need to check your network connection.

    Regarding SSL/TLS, maybe this thread can help you, too?
     
  9. Sgt. Rock

    Sgt. Rock Member

    After reloading ISPConfig and telling it to reconfigure services I see my same SSL (Comodo provided) in the SSL tab for my website, but not one listed for ISPConfig. Is this normal?

    CB
     
  10. ztk.me

    ztk.me Well-Known Member HowtoForge Supporter

    Ther cert might be still stored for that site in the database. What do you mean "not one listed for ISPConfig" ?
     
  11. Sgt. Rock

    Sgt. Rock Member

    When I use telnet to connect - it states "Unable to connect to remote host: Connection timed out" but I know I have that port open, as well as some others. This may mean that Frontier is actively blocking ports, despite what they are saying to the contrary.
     
  12. ztk.me

    ztk.me Well-Known Member HowtoForge Supporter

    Are you able to ping that IP? If that works, yeah port seems to be blocked. If it doesn't work aswll it's a network issue. At least I was able to ping it.
     
  13. Sgt. Rock

    Sgt. Rock Member

    I performed the update to ISPConfig - this time it set up the SSL option where I filled in details. I am now rechecking to see if my Comodo SSL Certificate for my website is still in place.
     
  14. Sgt. Rock

    Sgt. Rock Member

    Yup - can ping it with decent ms response times. That means the outbound port is being blocked from my side (ISP)... or internally on my router... HMM... Looking at router first.
    CB
     
  15. Sgt. Rock

    Sgt. Rock Member

    OK... I just bypassed the router interface to the server (DMZ) to eliminate that from the troubleshooting. Telnet still coming back with unable to connect, connection timed out.

    Will attempt to send email from server command line next.

    CB
     
  16. Sgt. Rock

    Sgt. Rock Member

    This is new - now getting a postfix error message 5828, 5829 and 5830 from attempts to send mail via command line. It appears that none of the connections to mta(x).am0.yahoodns.net work even when not behind router.

    Am I correct in thinking that the mail transport agent (mta) from yahoodns is not working? Is this the default mta that ISPConfig uses or am I missing something here as well...

    CB
     
  17. ztk.me

    ztk.me Well-Known Member HowtoForge Supporter

    error message 5828, 5829 and 5830? Could you post the actual error? It more looks like job ids.
    No, which mta your destinations offers to you is not a part of your server. Except you did setup some relayhost stuff using this.
     
  18. Sgt. Rock

    Sgt. Rock Member

    Here is the actual error messages -
    Mar 17 10:23:07 Webserver postfix/error[5829]: 33D1C5A11ED: to=<[email protected]>, relay=none, delay=81169, delays=81018/151/0/0.06, dsn=4.4.1, status=deferred (delivery temporarily suspended: connect to mta5.am0.yahoodns.net[98.136.216.25]:25: Connection timed out)
    Mar 17 10:23:07 Webserver postfix/error[5828]: 85C875A11E6: to=<[email protected]>, relay=none, delay=165803, delays=165652/151/0/0.07, dsn=4.4.1, status=deferred (delivery temporarily suspended: connect to mta5.am0.yahoodns.net[98.136.216.25]:25: Connection timed out)
    Mar 17 10:23:07 Webserver postfix/error[5830]: E5D2C5A11E3: to=<[email protected]>, relay=none, delay=5449, delays=5299/151/0/0.06, dsn=4.4.1, status=d
    I am trying to understand why this is reaching out to a MTA from Yahoo.... I did not set this in ISP or on the server, is it something that is "automatic" on the outside lan (ie - from ISP - Frontier)?
     
  19. ztk.me

    ztk.me Well-Known Member HowtoForge Supporter

    yes
    They're using yahoodns as MX
     
  20. Sgt. Rock

    Sgt. Rock Member

    This is the listing of open ports I have set from my server to the WLAN on the router:
    192.168.1.200 FTP TCP Any -> 21 All Broadband Devices Active
    192.168.1.200 HTTP TCP Any -> 80 All Broadband Devices Active
    192.168.1.200 HTTPS TCP Any -> 443 All Broadband Devices Active
    192.168.1.200 SNMP UDP Any -> 161 All Broadband Devices Active
    192.168.1.200 TFTP UDP 1024-65535 -> 69 All Broadband Devices Active
    192.168.1.200 POP3 TCP Any -> 110 All Broadband Devices Active
    192.168.1.200 IMAP TCP Any -> 143 All Broadband Devices Active
    192.168.1.200 SSH TCP Any -> 22 All Broadband Devices Active
    192.168.1.200 SMTP TCP Any -> 25 All Broadband Devices Active

    This would appear to be allowing the mail server in / out on Pop3, IMAP and SMTP .... I am not sure why it is not able to connect otherwise. Will look at server config next.
     
    Last edited: Mar 17, 2016

Share This Page