SOLVED: ISPConfig 3/Postfix/Dovecot/SASL issues

Discussion in 'Installation/Configuration' started by webhunter, Jun 5, 2016.

  1. webhunter

    webhunter Member

    Hi,
    first, I'd like to thank you for all the tutorials you offer here and howtoforge.com! Really great work! Thank you very much!

    I am running an ISPConfig install within a Proxmox 4.1 CT w/ disabled firewall. Installation went smooth, followed this tutorial/howto:
    The Perfect Server - Debian 8.4 Jessie (Apache2, BIND, Dovecot, ISPConfig 3.1
    All is working fine, except the mailsystem.
    At first, I ran into an "fatal: no sasl authentication mechanism"-error, which I'd fixed with
    Code:
    chmod 666 /var/spool/postfix/private/auth
    and
    Code:
    chown postfix:postfix /var/spool/postfix/private/auth
    followed an another howto here at howtoforge.com.

    Anyway, the mailsystem is not available. I can't send/receive any e-mails. Even through webmail.
    mail.log
    Code:
    Jun  4 21:27:01 server100 postfix/smtpd[32317]: disconnect from localhost[::1]
    Jun  4 21:27:01 server100 dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=::1, lip=::1, secured, session=<OAEEgHo0wgAAAAAAAAAAAAAAAAAAAAAB>
    Jun  4 21:27:01 server100 dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=::1, lip=::1, secured, session=<5goEgHo0BgAAAAAAAAAAAAAAAAAAAAAB>
    Jun  4 21:27:24 server100 dovecot: imap-login: Login: user=<<xxxxxx@mydomain>>, method=PLAIN, rip=::1, lip=::1, mpid=2594, secured, session=<4WtegXo0CgAAAAAAAAAAAAAAAAAAAAAB>
    Jun  4 21:27:24 server100 dovecot: imap(<xxxxxx@mydomain>): Disconnected: Logged out in=697 out=3711
    Jun  4 21:28:01 server100 postfix/smtpd[32317]: connect from localhost[::1]
    Jun  4 21:28:01 server100 postfix/smtpd[32317]: lost connection after CONNECT from localhost[::1]
    Jun  4 21:28:01 server100 postfix/smtpd[32317]: disconnect from localhost[::1]
    
    Besides of that, I've found this one here too (mail.info)
    Code:
    Jun  3 22:20:55 server100 amavis-mc[2154]: Process [2822] started: /usr/sbin/amavis-services childproc-minder
    Jun  3 22:20:55 server100 amavis-mc[2154]: Process [2823] started: /usr/sbin/amavis-services snmp-responder
    Jun  3 22:20:55 server100 amavis-mc[2154]: Process [2821] exited (/usr/sbin/amavis-services msg-forwarder) after 0.0 s: exit 2
    Jun  3 22:20:55 server100 amavis-mc[2154]: Exceeded restart count, giving up on (/usr/sbin/amavis-services msg-forwarder)
    Jun  3 22:20:55 server100 amavis-mc[2154]: Process [2822] exited (/usr/sbin/amavis-services childproc-minder) after 0.0 s: exit 2
    Jun  3 22:20:55 server100 amavis-mc[2154]: Exceeded restart count, giving up on (/usr/sbin/amavis-services childproc-minder)
    Jun  3 22:20:55 server100 amavis-mc[2154]: Process [2823] exited (/usr/sbin/amavis-services snmp-responder) after 0.0 s: exit 2
    Jun  3 22:20:55 server100 amavis-mc[2154]: Exceeded restart count, giving up on (/usr/sbin/amavis-services snmp-responder)
    
    Here comes the content of htf_report.txt
    Code:
    ##### SERVER #####
    IP-address (as per hostname): ***.***.***.***
    IP-address(es) (as per ifconfig): ***.***.***.***
    [INFO] ISPConfig is installed.
    
    ##### ISPCONFIG #####
    ISPConfig version is 3.0.5.4p9
    
    ##### VERSION CHECK #####
    [INFO] php (cli) version is 5.6.20-0+deb8u1
    [INFO] php-cgi (used for cgi php in default vhost!) is version 5.6.20-0+deb8u1
    
    ##### PORT CHECK #####
    
    ##### MAIL SERVER CHECK #####
    
    ##### RUNNING SERVER PROCESSES #####
    [INFO] I found the following web server(s):
            Unknown process (fcgi-pm) (PID 696)
    [INFO] I found the following mail server(s):
            Postfix (PID 3202)
    [INFO] I found the following pop3 server(s):
            Dovecot (PID 3253)
    [INFO] I found the following imap server(s):
            Dovecot (PID 3253)
    [INFO] I found the following ftp server(s):
            PureFTP (PID 2546)
    
    ##### LISTENING PORTS #####
    (only           ()
    Local           (Address)
    [anywhere]:993          (3253/dovecot)
    [anywhere]:995          (3253/dovecot)
    [localhost]:10023               (1758/postgrey.pid)
    [localhost]:10024               (1854/amavisd-new)
    [localhost]:10025               (3202/master)
    [localhost]:587         (3202/master)
    [localhost]:11211               (1543/memcached)
    [anywhere]:110          (3253/dovecot)
    [anywhere]:143          (3253/dovecot)
    [anywhere]:111          (950/rpcbind)
    [localhost]:465         (3202/master)
    [anywhere]:21           (2546/pure-ftpd)
    ***.***.***.***:53              (1722/named)
    [localhost]:53          (1722/named)
    [anywhere]:22           (1703/sshd)
    [localhost]:25          (3202/master)
    [localhost]:953         (1722/named)
    *:*:*:*::*:993          (3253/dovecot)
    *:*:*:*::*:995          (3253/dovecot)
    *:*:*:*::*:10023                (1758/postgrey.pid)
    *:*:*:*::*:10024                (1854/amavisd-new)
    *:*:*:*::*:3306         (2401/mysqld)
    *:*:*:*::*:587          (3202/master)
    [localhost]10           (3253/dovecot)
    [localhost]43           (3253/dovecot)
    [localhost]11           (950/rpcbind)
    *:*:*:*::*:8080         (696/fcgi-pm)
    *:*:*:*::*:80           (696/fcgi-pm)
    *:*:*:*::*:465          (3202/master)
    *:*:*:*::*:8081         (696/fcgi-pm)
    *:*:*:*::*:8083         (696/fcgi-pm)
    *:*:*:*::*:21           (2546/pure-ftpd)
    *:*:*:*::*:8085         (696/fcgi-pm)
    *:*:*:*::*:53           (1722/named)
    *:*:*:*::*:22           (1703/sshd)
    *:*:*:*::*:25           (3202/master)
    *:*:*:*::*:953          (1722/named)
    *:*:*:*::*:443          (696/fcgi-pm)
    
    ##### IPTABLES #####
    Chain INPUT (policy ACCEPT)
    target     prot opt source               destination
    fail2ban-postfix-sasl  tcp  --  [anywhere]/0            [anywhere]/0            multiport dports 25
    fail2ban-dovecot-pop3imap  tcp  --  [anywhere]/0            [anywhere]/0            multiport dports 110,995,143,993
    fail2ban-pureftpd  tcp  --  [anywhere]/0            [anywhere]/0            multiport dports 21
    fail2ban-ssh  tcp  --  [anywhere]/0            [anywhere]/0            multiport dports 22
    
    Chain FORWARD (policy ACCEPT)
    target     prot opt source               destination
    
    Chain OUTPUT (policy ACCEPT)
    target     prot opt source               destination
    
    Chain fail2ban-dovecot-pop3imap (1 references)
    target     prot opt source               destination
    RETURN     all  --  [anywhere]/0            [anywhere]/0
    
    Chain fail2ban-postfix-sasl (1 references)
    target     prot opt source               destination
    RETURN     all  --  [anywhere]/0            [anywhere]/0
    
    Chain fail2ban-pureftpd (1 references)
    target     prot opt source               destination
    RETURN     all  --  [anywhere]/0            [anywhere]/0
    
    Chain fail2ban-ssh (1 references)
    target     prot opt source               destination
    RETURN     all  --  [anywhere]/0            [anywhere]/0
    
    screen of postconf -n
    Code:
    alias_database = hash:/etc/aliases, hash:/var/lib/mailman/data/aliases
    alias_maps = hash:/etc/aliases, hash:/var/lib/mailman/data/aliases
    append_dot_mydomain = no
    biff = no
    body_checks = regexp:/etc/postfix/body_checks
    broken_sasl_auth_clients = yes
    config_directory = /etc/postfix
    content_filter = amavis:[127.0.0.1]:10024
    dovecot_destination_recipient_limit = 1
    header_checks = regexp:/etc/postfix/header_checks
    html_directory = /usr/share/doc/postfix/html
    inet_interfaces = loopback-only
    inet_protocols = all
    mailbox_size_limit = 0
    maildrop_destination_concurrency_limit = 1
    maildrop_destination_recipient_limit = 1
    message_size_limit = 0
    mime_header_checks = regexp:/etc/postfix/mime_header_checks
    mydestination = server100.xxxxxx.xxx, localhost, localhost.localdomain
    myhostname = server100.xxxxxx.xxx
    mynetworks = 127.0.0.0/8 [::1]/128
    nested_header_checks = regexp:/etc/postfix/nested_header_checks
    owner_request_special = no
    proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks
    queue_directory = /var/spool/postfix
    readme_directory = /usr/share/doc/postfix
    receive_override_options = no_address_mappings
    recipient_delimiter = +
    relay_domains = mysql:/etc/postfix/mysql-virtual_relaydomains.cf
    relay_recipient_maps = mysql:/etc/postfix/mysql-virtual_relayrecipientmaps.cf
    relayhost =
    smtp_tls_protocols = !SSLv2,!SSLv3
    smtp_tls_security_level = may
    smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
    smtpd_client_message_rate_limit = 100
    smtpd_client_restrictions = check_client_access mysql:/etc/postfix/mysql-virtual_client.cf
    smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, check_recipient_access mysql:/etc/postfix/mysql-virtual_recipient.cf
    smtpd_sasl_auth_enable = yes
    smtpd_sasl_authenticated_header = yes
    smtpd_sasl_path = private/auth
    smtpd_sasl_type = dovecot
    smtpd_sender_restrictions = check_sender_access mysql:/etc/postfix/mysql-virtual_sender.cf
    smtpd_tls_cert_file = /etc/postfix/smtpd.cert
    smtpd_tls_key_file = /etc/postfix/smtpd.key
    smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3
    smtpd_tls_protocols = !SSLv2,!SSLv3
    smtpd_tls_security_level = may
    smtpd_use_tls = yes
    transport_maps = hash:/var/lib/mailman/data/transport-mailman, proxy:mysql:/etc/postfix/mysql-virtual_transports.cf
    virtual_alias_domains =
    virtual_alias_maps = hash:/var/lib/mailman/data/virtual-mailman, proxy:mysql:/etc/postfix/mysql-virtual_forwardings.cf, proxy:mysql:/etc/postfix/mysql-virtual_email2email.cf
    virtual_gid_maps = static:5000
    virtual_mailbox_base = /var/vmail
    virtual_mailbox_domains = proxy:mysql:/etc/postfix/mysql-virtual_domains.cf
    virtual_mailbox_maps = proxy:mysql:/etc/postfix/mysql-virtual_mailboxes.cf
    virtual_transport = dovecot
    virtual_uid_maps = static:5000
    
    All services are up and running.
    Any help apreciated!
    Thank you!
    ----
    EDIT: An e-mail from my gmail-account couldn't be delivered. Socket error..
     
    Last edited: Jun 5, 2016
  2. webhunter

    webhunter Member

    SOLVED: Had to change the parm inet_interfaces in /etc/postfix/main.cf to

    Code:
    inet_interfaces = all
    #inet_interfaces = loopback-only
    ;)
     
  3. hsluis

    hsluis New Member

    Hello webhunter, I have a question for you:
    Do you have Proxmox and Ispconfig installed on the server? Or Proxmox on server and ISPConfig into VM?
     
  4. webhunter

    webhunter Member

    So, Proxmox as host and ISPConfig as a guest.
     

Share This Page