imap connection failed.
Server is centos 7 with postfix, dovecot, roundcube, mysql recently installed. Webmail works ok. can send/receive messages.
Problem is that cannot connect imap client from outside, but inside it works ok. Forexample configuring account in outlook, testmessage receives ok but cannot login to account. Testing with telnet commands to localhost port143 seems ok. Code:
Trying 127.0.0.1... Any help would be grateful. |
Without looking at your configuration, not much we can help.
And, how do you define outside; is it still same network or different? Inside is on the same server I assume? When you telnet to localhost port 143 that is bypassing localhost's firewall rules, so that is not a valid test. Try to telnet from a different machine on network. |
Quote:
outside -> it means different machine on same subnet Code:
[root@xch2 ~]# postconf -n Code:
[root@xch2 ~]# dovecot -n |
Try using telnet from the host you are trying to connect from. Where did you run tcpdump from? I would assume you ran it from the server, filtering for the IMAP port and the outside machine's IP?
|
Quote:
this is what server sees in same time: Code:
[root@xch2 ~]# tcpdump -i ens192 -nn -s0 -v port imap |
imap still not working from outside. Maybe must start all installation over again. :~
|
Is there anything relevant in your logs? Since it seems your client can connect to it, I would assume there would be something there. Maybe it is a TLS issue? Are you using a self signed cert or private CA?
|
Just in case to simplify all these configuration process,
I use only plaintext login until I get it done successfully. If I connect telnet to mailserver imap from outside. Is it normal I only see blank screen ? I expect response something like that. Code:
OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready. |
So when you use telnet from the client machine you get nothing back? I noticed in your tcpdump output that traffic was coming in, nothing was going out. I would check outbound firewall rules on the mail server:
Code:
iptables-save | egrep 'REJECT|DROP' |
Code:
[root@xch2 ~]# iptables-save | egrep 'REJECT|DROP' Code:
# iptables -A INPUT -p tcp --dport 143 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT result no changes and tcpdump still shows those "zero packets" |
-A appends rules to the end of the chain, so in the case of your chains, you are adding the ACCEPT rule after it would already be rejected. I don't use firewalld, so I'm not sure if stopping it just turns off the daemon or actually flushes your rules. If you have console access to the machine try this instead:
Code:
# iptables -F |
Code:
# iptables -F |
today tried same move:
Code:
iptables -F Wonder why it did'nt work yesterday with the same moves? Anyway, thanks to all to all responders who tried to help! |
Maybe you accidentally grabbed the # from my post? I sometimes do things like that if I am tired. I wouldn't recommend leaving the firewall off. I would add the necessary rules and re-enable it.
|
All times are GMT -5. The time now is 01:47 PM. |