Newbie warning...
Any ideas what is wrong with my postfix configuration? I'm trying to setup web and mail server on SuSE 9.2 Pro so that authenticated users can read and send their mail anywhere in the internet (from their homes mostly), not just logged locally in to the system. Users are using Outlook or Eudora to read/send their mail. Reading works but sending does not. SMTP connection is for some reason refused (SuSE firewall is off or allows SMTP and POP3, tried both)...
Software: SuSE 9.2 Pro, Postfix 2.1.5, Cyrus SASL 2.1.19, Cyrus 2.2.8 POP/IMAP (straight out of SuSE installation DVDs).
I've setup saslauthd (shadow with plain & login) and added postfix to the shadow group (it should have read access to /etc/shadow). I have also followed multiple guides (this for example: ariejan.net/content/view/22/5/) to setup the necessary parameters on postfix's main.cf but I just can't make the SMTP connection... Locally sending seems to work ok though...
I'm testing on 2 machine test environment and have no DNS or MX (plays any factor?).
Server ip: 192.168.0.99
Client ip: 192.168.0.122
/etc/hosts is though (in client too):
127.0.0.1 localhost
192.168.0.99 apps2 apps2.testdom.com testdom.com
I guess (?) the following has something to do with the problem, just don't know what:
On server:
apps2:~ # telnet localhost 25 - works and allows authentication (AUTH PLAIN <base64>)
apps2:~ # telnet 127.0.0.1 25 - works and allows authentication (AUTH PLAIN <base64>)
apps2:~ # telnet 192.168.0.99 25 - does not work (Connection refused, adds nothing to logs)
On client:
C:\> telnet 192.168.0.99 25 - does not work (Connection refused, adds nothing to logs)
I've tried for days, I'm feeling dumb and I am out of ideas... Can anyone please help? Btw, next step will be adding TLS...
Configuration:
apps2:~ # postconf -n
Code:
alias_maps = hash:/etc/aliases
biff = no
canonical_maps = hash:/etc/postfix/canonical
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/lib/postfix
debug_peer_level = 2
defer_transports =
disable_dns_lookups = no
html_directory = /usr/share/doc/packages/postfix/html
inet_interfaces = 127.0.0.1 ::1
mail_owner = postfix
mail_spool_directory = /var/mail
mailbox_command =
mailbox_size_limit = 0
mailbox_transport = cyrus
mailq_path = /usr/bin/mailq
manpage_directory = /usr/share/man
masquerade_classes = envelope_sender, header_sender, header_recipient
masquerade_domains =
masquerade_exceptions = root
message_size_limit = 10240000
mydestination = $myhostname, localhost.$mydomain, $mydomain, localhost
mydomain = testdom.com
myhostname = apps2.testdom.com
mynetworks = 192.168.0.0/28, 127.0.0.0/8
myorigin = $mydomain
newaliases_path = /usr/bin/newaliases
queue_directory = /var/spool/postfix
readme_directory = /usr/share/doc/packages/postfix/README_FILES
relayhost =
relocated_maps = hash:/etc/postfix/relocated
sample_directory = /usr/share/doc/packages/postfix/samples
sender_canonical_maps = hash:/etc/postfix/sender_canonical
sendmail_path = /usr/sbin/sendmail
setgid_group = maildrop
smtp_sasl_auth_enable = no
smtp_use_tls = no
smtpd_client_restrictions =
smtpd_helo_required = no
smtpd_helo_restrictions =
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
smtpd_sasl_auth_enable = yes
smtpd_sender_restrictions = hash:/etc/postfix/access
smtpd_use_tls = no
strict_rfc821_envelopes = no
transport_maps = hash:/etc/postfix/transport
unknown_local_recipient_reject_code = 550
And master.cf:
apps2:~ # cat /etc/postfix/master.cf | grep -v '#'
Code:
smtp inet n - n - - smtpd -v
pickup fifo n - n 60 1 pickup
cleanup unix n - n - 0 cleanup
qmgr fifo n - n 300 1 qmgr
rewrite unix - - n - - trivial-rewrite
bounce unix - - n - 0 bounce
defer unix - - n - 0 bounce
trace unix - - n - 0 bounce
verify unix - - n - 1 verify
flush unix n - n 1000? 0 flush
proxymap unix - - n - - proxymap
smtp unix - - n - - smtp
relay unix - - n - - smtp
showq unix n - n - - showq
error unix - - n - - error
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - n - - lmtp
anvil unix - - n - 1 anvil
maildrop unix - n n - - pipe
flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d ${recipient}
cyrus unix - n n - - pipe
user=cyrus argv=/usr/lib/cyrus/bin/deliver -e -r ${sender} -m ${extension} ${user}
uucp unix - n n - - pipe
flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
ifmail unix - n n - - pipe
flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp unix - n n - - pipe
flags=Fq. user=foo argv=/usr/local/sbin/bsmtp -f $sender $nexthop $recipient
procmail unix - n n - - pipe
flags=R user=nobody argv=/usr/bin/procmail -t -m /etc/procmailrc ${sender} ${recipient}
Don't know if this helps but:
apps2:~ # netstat -l
Code:
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State
tcp 0 0 *:sunrpc *:* LISTEN
tcp 0 0 *:ipp *:* LISTEN
tcp 0 0 *:telnet *:* LISTEN
tcp 0 0 localhost:smtp *:* LISTEN
tcp 0 0 *:ssh *:* LISTEN
tcp 0 0 localhost:smtp *:* LISTEN
udp 0 0 *:sunrpc *:*
udp 0 0 *:ipp *:*
Active UNIX domain sockets (only servers)
Proto RefCnt Flags Type State I-Node Path
unix 2 [ ACC ] STREAM LISTENING 7881 private/bsmtp
unix 2 [ ACC ] STREAM LISTENING 7885 private/procmail
unix 2 [ ACC ] STREAM LISTENING 7798 public/cleanup
unix 2 [ ACC ] STREAM LISTENING 7805 private/rewrite
unix 2 [ ACC ] STREAM LISTENING 7809 private/bounce
unix 2 [ ACC ] STREAM LISTENING 7813 private/defer
unix 2 [ ACC ] STREAM LISTENING 5560 /var/run/sasl2//mux
unix 2 [ ACC ] STREAM LISTENING 7817 private/trace
unix 2 [ ACC ] STREAM LISTENING 7821 private/verify
unix 2 [ ACC ] STREAM LISTENING 7825 public/flush
unix 2 [ ACC ] STREAM LISTENING 6689 /var/run/acpid.socket
unix 2 [ ACC ] STREAM LISTENING 7829 private/proxymap
unix 2 [ ACC ] STREAM LISTENING 7833 private/smtp
unix 2 [ ACC ] STREAM LISTENING 7837 private/relay
unix 2 [ ACC ] STREAM LISTENING 7841 public/showq
unix 2 [ ACC ] STREAM LISTENING 7845 private/error
unix 2 [ ACC ] STREAM LISTENING 7849 private/local
unix 2 [ ACC ] STREAM LISTENING 7853 private/virtual
unix 2 [ ACC ] STREAM LISTENING 7857 private/lmtp
unix 2 [ ACC ] STREAM LISTENING 7861 private/anvil
unix 2 [ ACC ] STREAM LISTENING 7865 private/maildrop
unix 2 [ ACC ] STREAM LISTENING 7869 private/cyrus
unix 2 [ ACC ] STREAM LISTENING 7030 /var/run/powersave_socket
unix 2 [ ACC ] STREAM LISTENING 7507 /var/run/nscd/socket
unix 2 [ ACC ] STREAM LISTENING 7873 private/uucp
unix 2 [ ACC ] STREAM LISTENING 5544 /var/run/.resmgr_socket
unix 2 [ ACC ] STREAM LISTENING 7877 private/ifmail