Which exact dig command did you use? The command to query the local dns is: dig @localhost domain.me and ths command has to be run on the shell of that server.
Please contact the ISPConfig Business support of you need help by remote login: http://www.ispconfig.org/get-support/?type=ispconfig
I use dig domain.me Result of your command: Code: [root@server postfix]# dig @localhost domain.me ; <<>> DiG 9.9.4-RedHat-9.9.4-50.el7_3.1 <<>> @localhost domain.me ; (2 servers found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 63862 ;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 3 ;; WARNING: recursion requested but not available ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;domain.me. IN A ;; ANSWER SECTION: domain.me. 3600 IN A 201.202.ext.ip ;; AUTHORITY SECTION: domain.me. 172800 IN NS server.domain.me. domain.me. 172800 IN NS server2.domain.me. ;; ADDITIONAL SECTION: server.domain.me. 172800 IN A 201.202.ext.ip server2.domain.me. 172800 IN A 201.202.ext.ip ;; Query time: 0 msec ;; SERVER: ::1#53(::1) ;; WHEN: Wed Jul 26 05:29:23 CST 2017 ;; MSG SIZE rcvd: 127
This queries external name servers and not the local one. The output seems to be ok for the local server. Now check the domain at intodns.com and please post your real domain name as I guess that parts of the problem in this discussion come from confusions with the domain name obfuscation.
I have some errors Nameserver records returned by the parent servers are: ns1.domain.me. ['201.202.ext.ip'] [TTL=86400] ns2.domain.me. ['201.202.ext.ip'] [TTL=86400] a2.nic.me was kind enough to give us that information. offuscate my domain and my ip pls. Thanks
On your DNS zone file, the nameservers are server and server2. But at the registry, you used ns1 and ns2, this can't work. either change it at the registry or change it in your zone file. And on the server IP, there is no dns server responding. check that bind is listening on the external IP and not just localhost and ensure that the DNS ports are not closed in a firewall on the server or in front of the server. In case the server is behind a router, then ensure that you forwarded the dns port from the router to the internal server IP.
It changed everything, but I do not know how to verify that. My new zone: Code: $TTL 10800 @ IN SOA ns1.domain.me. postmaster.domain.me. ( 2017072306 ;serial 21600 ;refresh after 6 hours 3600 ;retry after 1 hour 86400 ;expire after 1 week 86400 ) ;minimum TTL of 1 day @ 3600 IN A 201.202.ext.ip @ 172800 IN NS ns1.domain.me. @ 172800 IN NS ns2.domain.me. @ 86400 IN MX 10 mail.domain.me. ns1 172800 IN A 201.202.ext.ip ns2 172800 IN A 201.202.ext.ip mail 3600 IN A 201.202.ext.ip www 3600 IN CNAME @ ftp 3600 IN CNAME @ domain.me. 3600 IN TXT "v=spf1 mx a ~all" My /etc/named.conf Code: // // named.conf // // Provided by Red Hat bind package to configure the ISC BIND named(8) DNS // server as a caching only nameserver (as a localhost DNS resolver only). // // See /usr/share/doc/bind*/sample/ for example named configuration files. // options { listen-on port 53 { any; }; listen-on-v6 port 53 { any; }; directory "/var/named"; dump-file "/var/named/data/cache_dump.db"; statistics-file "/var/named/data/named_stats.txt"; memstatistics-file "/var/named/data/named_mem_stats.txt"; allow-query { any; }; allow-recursion {"none";}; recursion no; }; logging { channel default_debug { file "data/named.run"; severity dynamic; }; }; zone "." IN { type hint; file "named.ca"; }; zone "domain.me" IN { type master; allow-transfer {none;}; file "/var/named/master.domain.me"; }; include "/etc/named.conf.local";
There is still no dns server responding on your external IP. Run the test script and post the result: https://www.howtoforge.com/community/threads/please-read-before-posting.58408/
Hello again till. I fell asleep, that's why I could not do it. My file: /etc/named.conf Code: // // named.conf // // Provided by Red Hat bind package to configure the ISC BIND named(8) DNS // server as a caching only nameserver (as a localhost DNS resolver only). // // See /usr/share/doc/bind*/sample/ for example named configuration files. // options { listen-on port 53 { any; }; listen-on-v6 port 53 { any; }; directory "/var/named"; dump-file "/var/named/data/cache_dump.db"; statistics-file "/var/named/data/named_stats.txt"; memstatistics-file "/var/named/data/named_mem_stats.txt"; allow-query { any; }; allow-recursion {"none";}; recursion no; }; logging { channel default_debug { file "data/named.run"; severity dynamic; }; }; zone "." IN { type hint; file "named.ca"; }; //CRYN MASTER zone "domain.me" IN { type master; allow-transfer {none;}; file "/var/named/master.domain.me"; }; include "/etc/named.conf.local"; Test result: Code: [root@server ~]# cat /tmp/htf_report.txt ##### SERVER ##### IP-address (as per hostname): ***.***.***.*** [WARN] could not determine server's ip address by ifconfig [INFO] ISPConfig is installed. ##### ISPCONFIG ##### ISPConfig version is 3.1dev ##### VERSION CHECK ##### [INFO] php (cli) version is 5.4.16 ##### PORT CHECK ##### [WARN] Port 8080 (ISPConfig) seems NOT to be listening ##### MAIL SERVER CHECK ##### ##### RUNNING SERVER PROCESSES ##### [INFO] I found the following web server(s): Unknown process (httpd) (PID 1311) [INFO] I found the following mail server(s): Postfix (PID 1606) [INFO] I found the following pop3 server(s): Dovecot (PID 1041) [INFO] I found the following imap server(s): Dovecot (PID 1041) [INFO] I found the following ftp server(s): PureFTP (PID 999) ##### LISTENING PORTS ##### (only () Local (Address) [localhost]:10024 (2458/amavisd) [localhost]:9000 (962/php-fpm:) [localhost]:10025 (1606/master) [localhost]:10026 (2458/amavisd) [anywhere]:3306 (1582/mysqld) [localhost]:10027 (1606/master) [anywhere]:587 (1606/master) [anywhere]:110 (1041/dovecot) [anywhere]:143 (1041/dovecot) [anywhere]:111 (1/systemd) [anywhere]:465 (1606/master) ***.***.***.***:53 (1267/named) [localhost]:53 (1267/named) [anywhere]:21 (999/pure-ftpd) [anywhere]:22 (972/sshd) [anywhere]:25 (1606/master) [localhost]:953 (1267/named) [anywhere]:993 (1041/dovecot) [anywhere]:995 (1041/dovecot) *:*:*:*::*:10024 (2458/amavisd) *:*:*:*::*:10026 (2458/amavisd) *:*:*:*::*:587 (1606/master) [localhost]10 (1041/dovecot) [localhost]43 (1041/dovecot) [localhost]11 (1/systemd) *:*:*:*::*:80 (1311/httpd) *:*:*:*::*:8081 (1311/httpd) *:*:*:*::*:465 (1606/master) *:*:*:*::*:53 (1267/named) *:*:*:*::*:21 (999/pure-ftpd) *:*:*:*::*:22 (972/sshd) *:*:*:*::*:25 (1606/master) *:*:*:*::*:953 (1267/named) *:*:*:*::*:443 (1311/httpd) *:*:*:*::*:993 (1041/dovecot) *:*:*:*::*:2083 (1311/httpd) *:*:*:*::*:995 (1041/dovecot) ##### IPTABLES ##### Chain INPUT (policy ACCEPT) target prot opt source destination f2b-postfix-sasl tcp -- [anywhere]/0 [anywhere]/0 multiport dports 25,465,587 f2b-dovecot tcp -- [anywhere]/0 [anywhere]/0 multiport dports 110,995,143,993 f2b-FTP tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:21 f2b-sshd tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:22 Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination Chain f2b-FTP (1 references) target prot opt source destination REJECT all -- ***.***.***.*** [anywhere]/0 reject-with icmp-port-unreachable RETURN all -- [anywhere]/0 [anywhere]/0 Chain f2b-dovecot (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 Chain f2b-postfix-sasl (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 Chain f2b-sshd (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0
This is nothing new, this was the case yesterday as well as you don't have any reachable DNS servers. The reason that it worked before for you was just that some old dns info was cached on your systems and the email errors that you got about address not found were probably from another mail system that hosted this domain before. So back to the source of the problem (which is not a mail problem, that you can't use the mail system is just one of the symptoms of missing DNS), your DNS server is running, it is reachable locally, it responds locally to your domain but it is not reachable from outside. So there must be either a firewall or router in front of the server which blocks DNS. You will either have to configure that router or firewall to allow DNS queries to reach your server or you must keep DNS for this domain at your domain registry and don't run your own dns server.
Hello Till again here. For those who do not understand what happened and to resume the issue: Last time I uninstalled ISPC and installed another panel. Already calmer I come to try this panel, but I have the same problem again, I can not send emails to an external domain, the error is the same, (550-Verification failed for <[email protected]> 550-No Such User Here 550 Sender verify failed (in reply to RCPT TO command)). I have the server behind a dmz that works perfectly the issue of ports. Continuing with the subject if I send an email to my account on the server my log show this: tail -f /var/log/maillog
Ok, this means that there is no problem on your ISPConfig system, which is good and this also explains why you were able to reproduce the same behavior as your first install attempt was successful too then. Just a guess: The system that you first tried to send an email to and which failed is a Plesk system and it has the email address that you are using in ispconfig now still configured? In this case, the Plesk server will reject all incoming emails from this as it thinks that its a local address that someone tries to spoof. So the error is on the target system and not on the ISPConfig server.
Ohhh God Till, problem solved. The domain had it configured on that server. I already deleted it and it worked perfect. Thank you very much for the support. For those who have the same problem, the solution is to try a server that is not configured for that domain or delete the domain of that server. Greetings and excellent panel. I love.
