Linux - SoftwareThis forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Essentially the problem is that I cannot receieve e-mails from people on other domains (@yahoo.com, @gmail.com, @hotmail.com etc), they are telling me that they get an e-mail notice back saying the domain name could not be found. They can receieve my emails that I send out to them but again, they can't reply back to me. (It also seems that I can receieve e-mail from other e-mail accounts that are on my domain).
Anyone know why this is going on? I don't know what config files you want, reply back what you information you want and I will give you it.
(CentOS 6.5 postfix/dovecot and roundcubemail for web frontend)
1. Has this ever worked or has this just recently been setup?
2. Can you ping your domain internally / externally? i.e. pingwww.YourDomainName?
3. I use sendmail rather than postfix so the log files may differ somewhat thus you may have to find your own equivalents.
Check the log contents i.e. /var/log/maillog
4. Do you by chance use a spam filter embedded in your postfix file? I use a SpamHaus filter that performs an external spam lookup on all mail entering my domain - at one point there was an issue with the SpamHaus lookup service which resulted in all mail received by my domain mail server being marked as spam and thus rejected. Again, if you do then check the contents of /var/log/maillog
5. Can you receive external mail at all excluding gmail, Hotmail, yahoo...?
1. Has this ever worked or has this just recently been setup?
2. Can you ping your domain internally / externally? i.e. pingwww.YourDomainName?
3. I use sendmail rather than postfix so the log files may differ somewhat thus you may have to find your own equivalents.
Check the log contents i.e. /var/log/maillog
4. Do you by chance use a spam filter embedded in your postfix file? I use a SpamHaus filter that performs an external spam lookup on all mail entering my domain - at one point there was an issue with the SpamHaus lookup service which resulted in all mail received by my domain mail server being marked as spam and thus rejected. Again, if you do then check the contents of /var/log/maillog
5. Can you receive external mail at all excluding gmail, Hotmail, yahoo...?
Post the results of the above.
Adios,
Rawcous!!
I will answer in order below:
1. This has never worked, I set it up back in September, ran into a problem with sending e-mail to people out of the domainname and I found that I needed to enable SASL which I did, it works and I know this because I can send emails out (but not receieve).
2. I can ping internally but I can not ping externally because I have a router (Sonicwall router from Dell) configured to block ping. I did an internal and external nslookup instead and here is what I got
Internal
I should point out that when I try adding my DNS server (by putting the FQDN) on my ISPs DNS it gives back an error, however if I try another server (which runs windows server) it does not give back an error. So either there is something with my DNS or my ISPs DNS isnt compatible with linux (dobut it)?
3. I tried sending a message to my email server by my gmail account and waited a bit for something to show in the log file viewer but nothing. I do have a log file of what happens when I send out emails (although that works fine however if you want the log I will post).
4. I do have some spam protection,I have the conjunection of the three programs ClamAV, SpamAssassin, and Amavisd. However before I installed and configured these I still was unable to receieve email from other people on different domains.
5. I can only receieve mail from within the same domain, I can not receive mail AT ALL from other domains.
So essentially, could be Postfix/dovecot not configured correctly (although I can actually receieve things from the same domain so i dont think so), something wrong with DNS config (as that website for my ISP gave me an error), or SELinux or something.
EDIT (READ FIRST): Its something with my DNS server, when I put in the IP address for my server that runs the dns server/postfix/dovecot on preferred DNS option (when configuring the network on linux) I do not get internet. If I go and put in the IP address of the DNS server that I talked about earlier (the one that is running windows) I get internet. So its something with my DNS.
EDIT (READ FIRST): Its something with my DNS server, when I put in the IP address for my server that runs the dns server/postfix/dovecot on preferred DNS option (when configuring the network on linux) I do not get internet. If I go and put in the IP address of the DNS server that I talked about earlier (the one that is running windows) I get internet. So its something with my DNS.
This indicates that the DNS side on the Linux server is malfunctioning.
Quote:
I should point out that when I try adding my DNS server (by putting the FQDN) on my ISPs DNS it gives back an error,
Please explain what you mean by this.
So if you set you the DNS to that of the Windows Server - internet connection works - does this then also allow your mail server to receive and process external mail?
Also you mentioned you can perform both internal & external nslookups on your doman - thus your DNS A records have been setup, but perhaps your MX records have not been set up correctly with your DNS hoster - i.e. mail.YourDomainName - Can you perform an nslookup on your MX record i.e. nslookup mail.YourDomainName ?
This indicates that the DNS side on the Linux server is malfunctioning.
Please explain what you mean by this.
So if you set you the DNS to that of the Windows Server - internet connection works - does this then also allow your mail server to receive and process external mail?
Also you mentioned you can perform both internal & external nslookups on your doman - thus your DNS A records have been setup, but perhaps your MX records have not been set up correctly with your DNS hoster - i.e. mail.YourDomainName - Can you perform an nslookup on your MX record i.e. nslookup mail.YourDomainName ?
Regards,
Rawcous!
Sorry for being unclear. Basically, I have two servers in my home, one windows server, and the other centos. The other thing I am talking about is that my ISP has a website (comcast.business.com or something) that allows you to enter the required DNS rules on their dns server (the A and MX records, etc.) And, also the ability to add another DNS server that the comcast dns server can use (I don't know how to explain too well, I can post a picture if required).
Whenever I input the fully qualified domain name of the centos box in there, I get an error saying it could not be resolved, however if I enter the fully qualified domain name of the windows server computer then it seems to go fine and I do not get an error. This would mean something is wrong with the dns on the centos box.
I will perform an nslookup once I can be near my computer (internal and external)
Thank you for all of your help.
The other thing I am talking about is that my ISP has a website (comcast.business.com or something) that allows you to enter the required DNS rules on their dns server (the A and MX records, etc.) And, also the ability to add another DNS server that the comcast dns server can use (I don't know how to explain too well, I can post a picture if required).
Please post the above w/o giving too much info. away if possible.
Am in my assumptions that because you mention you have 2 different WAN addresses for your two different servers , thus 2 separate broadband connections / routers etc, if not then surely all that is required is that all of your records simply point towards the same WAN address with port forwarding set via the router....
Please post the above w/o giving too much info. away if possible.
Am in my assumptions that because you mention you have 2 different WAN addresses for your two different servers , thus 2 separate broadband connections / routers etc, if not then surely all that is required is that all of your records simply point towards the same WAN address with port forwarding set via the router....
Regards,
Rawcous!
The two servers are independent from each other (in the sense of what they are to be doing). They are both for testing purposes, they are in fact on the same router but have different external and internal IPs.
I did an external nslookup of mail.mydomainhere.com and I got
Code:
Server cdns10.comcast.net
Address: 75.75.75.75
Name: mail.mydomainhere.net
It appears that I am not getting the "Non-authoritive answer" like I do when I get an nslookup of just the domain itself.
An interal nslookup of mail.mydomainhere.com shows
Here are my forward and reverse lookup zones for my DNS server incase you want them
Code:
$ORIGIN mydomainhere.com.
$TTL 86400
@ IN SOA dns1.mydomainhere.com. hostmaster.mydomainhere.com. (
2013071101 ;serial
21600 ;refresh after 6 hours
3600 ;retry after 1 hour
604800 ;expire after1 week
86400 ) ;minimum TTL 1 day
IN NS dns1.mydomainhere.com.com.
IN MX 10 mail.mydomainhere.com.
IN A 192.168.12.137
dns1 IN A 192.168.12.137
nc-data IN A 192.168.12.137
ftp IN A 192.168.12.137
mail IN A 192.168.12.137
www IN A 192.168.12.137
mydomainhere.com. IN NS nc-data.mydomainhere.com.
Code:
$ORIGIN 12.168.192.in-addr.arpa.
$TTL 86400
@ IN SOA dns1.mydomainhere.com. hostmaster.mydomainhere.com. (
2013071101 ;serial
21600 ;refresh after 6 hours
3600 ;retry after 1 hour
604800 ;expire after1 week
86400 ) ;minimum TTL 1 day
@ IN NS nc-data.mydomainhere.com.
137 IN PTR nc-data.mail.mydomainhere.com.
137 IN PTR nc-data.mydomainhere.com.
137 IN PTR nc-data.mydomainhere.com.
137 IN PTR nc-data.mydomainhere.com.
IN NS nc-data.mydomainhere.com.
137 IN PTR nc-data.mydomainhere.com.
137 IN PTR nc-data.mydomainhere.com.
I have to admit i'm stumped at the moment - I will re-read through the postings so far and have another think about this - the chances are it's something so obvious....
I have to admit i'm stumped at the moment - I will re-read through the postings so far and have another think about this - the chances are it's something so obvious....
Rawcous...
If you need me to reiterate or explain something in a different way, need more information just ask. Thank you for helping me btw...and it probably is something very obvious...I run into doing that a lot.
The other thing I am talking about is that my ISP has a website (comcast.business.com or something) that allows you to enter the required DNS rules on their dns server (the A and MX records, etc.) And, also the ability to add another DNS server that the comcast dns server can use (I don't know how to explain too well, I can post a picture if required).
What happens if rather than entering "another" DNS server as indicated above you simply set the MX record to point towards the mailserver's WAN address? (Or am I missing something here)...?
As a Sendmail user rather than Postfix i'm guessing here, Sendmail makes use of an \etc\mail\access file that can be used for determining rules such as hosts that can relay mail through the server, external domains that can send you mail, etc. I believe the Postfix equivalent is /etc/postfix/access see this sendmail link: http://www.sendmail.co.uk/sm/open_so...anti_spam.html (see the entry at the bottom of this link concerning building the db file if you make any amendments to it).
Also out of interest, in your /etc/postfix/main.cf file what do you have "mydestination set to....? (Again i'm stabbing in the dark here..)
I'm still not convinced about the contents of the /var/log/maillog file - this file should contain all messages indicating successful /failed mail delivery attempts for both postfix and dovecot - try sending mail an external domain, make a note of the time and post on here the contents of the log file corresponding to around that time - bear in mind it may be a few minutes before the mail is rejected.
For your first question, that is how I set it up since I first registered the domain. I can not add my dns server on that list (I get the weird error) so I just left it with the MX record pointing to my mail server in the rules it has.
There is indeed a /etc/postfix/access file but I believe it is documentation (everything is uncommented). On Postfix/dovecot in order to send mail to other domains you need to enable SASL which I have, which is why I can send out mails, remember that the problem is with people sending email to me/I can't receieve email from people on other domains.
In /etc/postfix/main.cf mydestion is set to this below:
mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain
Here is the logfile when I sent an email to another domain, but remember that sending out emails isnt the issue, receiving them is the issue. PROCEDURE: I am doing this on the server/same computer and via roundcube page, I logged in ONCE (the log says I disconnect multiple times but I didnt hit any logout button) and composed a message to one of my other emails and then I just left it like that, I have not hit the logout button yet)
Code:
Mar 11 20:48:45 n-data dovecot: imap(tom): Disconnected: Logged out bytes=196/736
Mar 11 20:49:14 n-data dovecot: imap-login: Login: user=<tom>, method=PLAIN, rip=::1, lip=::1, mpid=12953, secured
Mar 11 20:49:14 n-data dovecot: imap(tom): Disconnected: Logged out bytes=32/384
Mar 11 20:49:14 n-data dovecot: imap-login: Login: user=<tom>, method=PLAIN, rip=::1, lip=::1, mpid=12959, secured
Mar 11 20:49:14 n-data dovecot: imap(tom): Disconnected: Logged out bytes=44/464
Mar 11 20:49:27 n-data postfix/tlsmgr[12968]: warning: request to update table btree:/var/spool/postfix/smtpd_tls_cache in non-postfix directory /var/spool/postfix
Mar 11 20:49:27 n-data postfix/tlsmgr[12968]: warning: redirecting the request to postfix-owned data_directory /var/lib/postfix
Mar 11 20:49:27 n-data postfix/smtpd[12966]: connect from localhost[127.0.0.1]
Mar 11 20:49:27 n-data postfix/smtpd[12966]: 2AEF6BE05AC: client=localhost[127.0.0.1]
Mar 11 20:49:27 n-data postfix/cleanup[12970]: 2AEF6BE05AC: message-id=<5e7f1808356a66cc7bca6dbb3be10bf3@domain.com>
Mar 11 20:49:27 n-data postfix/qmgr[12485]: 2AEF6BE05AC: from=<tom@domain.com>, size=548, nrcpt=1 (queue active)
Mar 11 20:49:27 n-data dovecot: imap-login: Login: user=<tom>, method=PLAIN, rip=::1, lip=::1, mpid=12976, secured
Mar 11 20:49:27 n-data amavis[17686]: (17686-01) (!)run_av (ClamAV-clamd) FAILED - unexpected , output="/var/spool/amavisd/tmp/amavis-20140311T204927-17686-KKVlMYB_/parts: lstat() failed: Permission denied. ERROR\n"
Mar 11 20:49:27 n-data amavis[17686]: (17686-01) (!)ClamAV-clamd av-scanner FAILED: CODE(0x26960f0) unexpected , output="/var/spool/amavisd/tmp/amavis-20140311T204927-17686-KKVlMYB_/parts: lstat() failed: Permission denied. ERROR\n" at (eval 113) line 897.
Mar 11 20:49:27 n-data amavis[17686]: (17686-01) (!)WARN: all primary virus scanners failed, considering backups
Mar 11 20:49:27 n-data postfix/smtpd[12966]: disconnect from localhost[127.0.0.1]
Mar 11 20:49:27 n-data dovecot: imap(tom): Disconnected: Logged out bytes=448/500
Mar 11 20:49:28 n-data dovecot: imap-login: Login: user=<tom>, method=PLAIN, rip=::1, lip=::1, mpid=12985, secured
Mar 11 20:49:28 n-data dovecot: imap(tom): Disconnected: Logged out bytes=44/464
Mar 11 20:49:28 n-data dovecot: imap-login: Login: user=<tom>, method=PLAIN, rip=::1, lip=::1, mpid=12995, secured
Mar 11 20:49:28 n-data dovecot: imap(tom): Disconnected: Logged out bytes=196/736
Mar 11 20:49:28 n-data dovecot: imap-login: Login: user=<tom>, method=PLAIN, rip=::1, lip=::1, mpid=12997, secured
Mar 11 20:49:28 n-data dovecot: imap(tom): Disconnected: Logged out bytes=50/404
Mar 11 20:49:35 n-data postfix/smtpd[12998]: connect from localhost[127.0.0.1]
Mar 11 20:49:35 n-data postfix/smtpd[12998]: 55606BE0A21: client=localhost[127.0.0.1]
Mar 11 20:49:35 n-data postfix/cleanup[12970]: 55606BE0A21: message-id=<5e7f1808356a66cc7bca6dbb3be10bf3@domain.com>
Mar 11 20:49:35 n-data postfix/qmgr[12485]: 55606BE0A21: from=<tom@domain.com>, size=1005, nrcpt=1 (queue active)
Mar 11 20:49:35 n-data amavis[17686]: (17686-01) Passed CLEAN {RelayedOutbound}, MYNETS LOCAL [127.0.0.1]:46781 [127.0.0.1] <tom@domain.com> -> <prohazer@yahoo.com>, Message-ID: <5e7f1808356a66cc7bca6dbb3be10bf3@domain.com>, mail_id: G6_c5nz7nMyJ, Hits: -1, size: 548, queued_as: 55606BE0A21, 8146 ms
Mar 11 20:49:35 n-data postfix/lmtp[12971]: 2AEF6BE05AC: to=<prohazer@yahoo.com>, relay=127.0.0.1[127.0.0.1]:10024, delay=8.3, delays=0.09/0.02/0.02/8.1, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 55606BE0A21)
Mar 11 20:49:35 n-data postfix/qmgr[12485]: 2AEF6BE05AC: removed
Mar 11 20:49:37 n-data postfix/smtp[13000]: 55606BE0A21: to=<prohazer@yahoo.com>, relay=mta7.am0.yahoodns.net[63.250.192.45]:25, delay=2.2, delays=0.06/0.01/0.89/1.2, dsn=2.0.0, status=sent (250 ok dirdel)
Mar 11 20:49:37 n-data postfix/qmgr[12485]: 55606BE0A21: removed
I think the end issue is just with my DNS, the messages I get back from my yahoo/gmail accounts are that it cant resolve the domain name, same with when I try to register my DNS on my ISPs website.
You may have mentioned / tried this already but what happens if you disable / remove your DNS server entries via the Comcast site so that it only contains your Mail Server settings (i.e. A and MX records), and simultaneously temporarily disable the DNS service on your Centos server...?
This definitely needs a fresh pair of eyes - surprised no networking Gurus did not latch onto this one when you originally posted this.....
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
