Having a few problems with pop3 server ...


/etc/init.d/courier-pop3 start

Starting Courier-POP3 bind: Address already in use
ll_daemon_start: Resource temporarily unavailable


Any suggestions to whats worng ? :(

Can you restart courier-pop3?

/etc/init.d/courier-pop3 restart

If not, please post the output of the command:

netstat -tap

I guess you have another pop3 package installed or another instance of courier is running.

Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 *:ccowcmr *:* LISTEN 17295/sc_serv
tcp 0 0 *:mentaclient *:* LISTEN 17295/sc_serv
tcp 0 0 *:smpnameres *:* LISTEN 8498/xinetd
tcp 0 0 localhost:10024 *:* LISTEN 12689/amavisd (mast
tcp 0 0 localhost:10025 *:* LISTEN 18477/master
tcp 0 0 *:5801 *:* LISTEN 8498/xinetd
tcp 0 0 *:mysql *:* LISTEN 6255/mysqld
tcp 0 0 *:netbios-ssn *:* LISTEN 6706/smbd
tcp 0 0 *:5901 *:* LISTEN 8498/xinetd
tcp 0 0 *:pop3 *:* LISTEN 8498/xinetd
tcp 0 0 *:sunrpc *:* LISTEN 6026/portmap
tcp 0 0 *:6001 *:* LISTEN 20934/Xvnc
tcp 0 0 *:hosts2-ns *:* LISTEN 7945/ispconfig_http
tcp 0 0 gemini.domain.c:domain *:* LISTEN 4405/named
tcp 0 0 localhost:domain *:* LISTEN 4405/named
tcp 0 0 *:ftp *:* LISTEN 13731/proftpd: (acc
tcp 0 0 *:ipp *:* LISTEN 6593/cupsd
tcp 0 0 *:smtp *:* LISTEN 18477/master
tcp 0 0 localhost:953 *:* LISTEN 4405/named
tcp 0 0 localhost:37435 *:* LISTEN 14263/kded [kdeinit
tcp 0 0 *:microsoft-ds *:* LISTEN 6706/smbd
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:4087 ESTABLISHED 20934/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:4102 ESTABLISHED 20934/Xvnc
tcp 0 0 gemini.domain.co.:4102 gemini.domain.co.:6001 ESTABLISHED 21122/suseplugger [
tcp 0 0 gemini.kd:igo-incognito gemini.domain.co.:6001 ESTABLISHED 21117/kpowersave [k
tcp 0 0 gemini.domain.co.:4101 gemini.domain.co.:6001 ESTABLISHED 21119/klipper [kdei
tcp 0 0 gemini.domain.:drmsfsd gemini.domain.co.:6001 ESTABLISHED 21112/kdesktop [kde
tcp 0 0 gemini.domain.co.:dpcp gemini.domain.co.:6001 ESTABLISHED 21114/kicker [kdein
tcp 0 0 gemini.domain.co.u:bre gemini.domain.co.:6001 ESTABLISHED 21106/ksmserver [kd
tcp 0 0 gemini.kd3si:patrolview gemini.domain.co.:6001 ESTABLISHED 21109/kwin [kdeinit
tcp 0 0 gemini.domain.co.:4110 gemini.domain.co.:6001 ESTABLISHED 21134/knotify [kdei
tcp 0 0 gemini.domain.co.:4106 gemini.domain.co.:6001 ESTABLISHED 21128/konqueror [kd
tcp 0 0 gemini.domain.co.:4107 gemini.domain.co.:6001 ESTABLISHED 21068/klauncher [kd
tcp 0 0 gemini.domain.co.:4104 gemini.domain.co.:6001 ESTABLISHED 21127/kmix [kdeinit
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:4101 ESTABLISHED 20934/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:4085 ESTABLISHED 20934/Xvnc
tcp 0 2689 gemini.domain.co.:5901 no-dns-yet.demon.:55590 ESTABLISHED 20934/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.kd:igo-incognito ESTABLISHED 20934/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:dpcp ESTABLISHED 20934/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.domain.:drmsfsd ESTABLISHED 20934/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.k:sns-dispatcher ESTABLISHED 20934/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.kd3si:patrolview ESTABLISHED 20934/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.u:bre ESTABLISHED 20934/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:4110 ESTABLISHED 20934/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:4094 ESTABLISHED 20934/Xvnc
tcp 0 0 gemini.domain.co.:kana gemini.domain.co.:6001 TIME_WAIT -
tcp 0 0 gemini.k:sns-dispatcher gemini.domain.co.:6001 ESTABLISHED 21342/konsole [kdei
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:4107 ESTABLISHED 20934/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:4106 ESTABLISHED 20934/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:4074 ESTABLISHED 20934/Xvnc
tcp 32 0 gemini.domain.co.:4074 gemini.domain.co.:6001 ESTABLISHED 20941/-gemini.kd3si
tcp 0 0 gemini.domain.co.:4088 gemini.domain.co.:6001 ESTABLISHED 21063/kdeinit Runni
tcp 0 0 gemini.domain.co.:4094 gemini.domain.co.:6001 ESTABLISHED 21097/kaccess [kdei
tcp 0 0 gemini.domain.co.:4085 gemini.domain.co.:6001 ESTABLISHED 21071/kded [kdeinit
tcp 32 0 gemini.domain.co.:4087 gemini.domain.co.:6001 ESTABLISHED 21071/kded [kdeinit
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:4104 ESTABLISHED 20934/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:4088 ESTABLISHED 20934/Xvnc
tcp 0 0 *:imaps *:* LISTEN 31851/couriertcpd
tcp 0 0 *:pop3s *:* LISTEN 32117/couriertcpd
tcp 0 0 localhost:10025 *:* LISTEN 18477/master
tcp 0 0 *:imap *:* LISTEN 31815/couriertcpd
tcp 0 0 *:www-http *:* LISTEN 10253/httpd2-prefor
tcp 0 0 *:6001 *:* LISTEN 20934/Xvnc
tcp 0 0 *:ssh *:* LISTEN 6670/sshd
tcp 0 0 *:smtp *:* LISTEN 18477/master
tcp 0 0 localhost:953 *:* LISTEN 4405/named

Another pop3 daemon is running on your server with xinetd.

tcp 0 0 *pop3 *:* LISTEN 8498/xinetd

Remove the pop3 daemon from your xinetd configuration, restart xinetd and the you can start courier-pop3

Cool, that fixed it but now im getting another error from my email client saying :

Mail Server Responded: Maildir invalid (no 'cur' directory)

Have you checked the "Maildir" checkbox in ispconfig under management > server > settings and send an email to that account before you tried to fetch mails?

yea, maildir is checked ... this is my log file ... /var/log/mail


Jan 12 18:51:51 gemini postfix/postfix-script: starting the Postfix mail system
Jan 12 18:51:51 gemini postfix/master[20166]: daemon started -- version 2.2.1, configuration /etc/postfix
Jan 12 18:51:51 gemini postfix/qmgr[20168]: 601014CA6D: from=<info@domain.co.uk>, size=556, nrcpt=1 (queue active)
Jan 12 18:51:51 gemini postfix/smtp[20178]: warning: connect to private/tlsmgr: No such file or directory
Jan 12 18:51:52 gemini postfix/qmgr[20168]: 49B6D37E91: from=<info@domain.co.uk>, size=551, nrcpt=1 (queue active)
Jan 12 18:51:52 gemini postfix/qmgr[20168]: 78FC437C09: from=<info@alulinedesign.demon.co.uk>, size=581, nrcpt=1 (queue active)
Jan 12 18:51:52 gemini postfix/qmgr[20168]: BC09B381F2: from=<info@domain.co.uk>, size=551, nrcpt=1 (queue active)
Jan 12 18:51:52 gemini postfix/smtp[20178]: warning: connect to private/tlsmgr: No such file or directory
Jan 12 18:51:52 gemini postfix/smtp[20178]: warning: problem talking to server private/tlsmgr: No such file or directory
Jan 12 18:51:52 gemini postfix/smtp[20178]: warning: no entropy for TLS key generation: disabling TLS support
Jan 12 18:51:52 gemini postfix/smtp[20184]: warning: connect to private/tlsmgr: No such file or directory
Jan 12 18:51:53 gemini amavis[4855]: (04855-07) WARN: all primary virus scanners failed, considering backups
Jan 12 18:51:53 gemini amavis[4855]: (04855-07) TROUBLE in check_mail: virus_scan FAILED: virus_scan: NO VIRUS SCANNERS AVAILABLE
Jan 12 18:51:53 gemini amavis[4855]: (04855-07) PRESERVING EVIDENCE in /var/spool/amavis/tmp/amavis-20060112T185152-04855
Jan 12 18:51:53 gemini postfix/smtp[20178]: 601014CA6D: to=<root@localhost.domain.co.uk>, orig_to=<root@localhost>, relay=127.0.0.1[127.0.0.1], delay=28781, status=deferred (host 127.0.0.1[127.0.0.1] said: 451 4.5.0 Error in processing, id=04855-07, virus_scan FAILED: virus_scan: NO VIRUS SCANNERS AVAILABLE (in reply to end of DATA command))
Jan 12 18:51:53 gemini amavis[8920]: (08920-05) WARN: all primary virus scanners failed, considering backups
Jan 12 18:51:53 gemini amavis[8920]: (08920-05) TROUBLE in check_mail: virus_scan FAILED: virus_scan: NO VIRUS SCANNERS AVAILABLE
Jan 12 18:51:53 gemini amavis[8920]: (08920-05) PRESERVING EVIDENCE in /var/spool/amavis/tmp/amavis-20060112T185153-08920
Jan 12 18:51:53 gemini postfix/smtp[20178]: 49B6D37E91: to=<info@domain.co.uk>, relay=127.0.0.1[127.0.0.1], delay=351955, status=deferred (host 127.0.0.1[127.0.0.1] said: 451 4.5.0 Error in processing, id=08920-05, virus_scan FAILED: virus_scan: NO VIRUS SCANNERS AVAILABLE (in reply to end of DATA command))
Jan 12 18:51:53 gemini amavis[8920]: (08920-05-2) WARN: all primary virus scanners failed, considering backups
Jan 12 18:51:53 gemini amavis[8920]: (08920-05-2) TROUBLE in check_mail: virus_scan FAILED: virus_scan: NO VIRUS SCANNERS AVAILABLE
Jan 12 18:51:53 gemini amavis[8920]: (08920-05-2) PRESERVING EVIDENCE in /var/spool/amavis/tmp/amavis-20060112T185153-08920
Jan 12 18:51:53 gemini postfix/smtp[20184]: warning: connect to private/tlsmgr: No such file or directory
Jan 12 18:51:53 gemini postfix/smtp[20184]: warning: problem talking to server private/tlsmgr: No such file or directory
Jan 12 18:51:53 gemini postfix/smtp[20184]: warning: no entropy for TLS key generation: disabling TLS support
Jan 12 18:51:54 gemini amavis[4855]: (04855-08) WARN: all primary virus scanners failed, considering backups
Jan 12 18:51:54 gemini amavis[4855]: (04855-08) TROUBLE in check_mail: virus_scan FAILED: virus_scan: NO VIRUS SCANNERS AVAILABLE
Jan 12 18:51:54 gemini amavis[4855]: (04855-08) PRESERVING EVIDENCE in /var/spool/amavis/tmp/amavis-20060112T185153-04855
Jan 12 18:51:54 gemini postfix/smtp[20178]: 78FC437C09: to=<info@domain.co.uk>, relay=127.0.0.1[127.0.0.1], delay=43417, status=deferred (host 127.0.0.1[127.0.0.1] said: 451 4.5.0 Error in processing, id=08920-05-2, virus_scan FAILED: virus_scan: NO VIRUS SCANNERS AVAILABLE (in reply to end of DATA command))
Jan 12 18:51:54 gemini postfix/smtp[20184]: BC09B381F2: to=<info@domain.co.uk>, relay=127.0.0.1[127.0.0.1], delay=45544, status=deferred (host 127.0.0.1[127.0.0.1] said: 451 4.5.0 Error in processing, id=04855-08, virus_scan FAILED: virus_scan: NO VIRUS SCANNERS AVAILABLE (in reply to end of DATA command))
Jan 12 18:51:55 gemini pop3d: Connection, ip=[::ffff:192.168.0.3]
Jan 12 18:51:55 gemini pop3d: LOGIN, user=web1_domain, ip=[::ffff:192.168.0.3]
Jan 12 18:51:55 gemini pop3d: scancur opendir("cur"): No such file or directory

This one might help you: http://www.howtoforge.com/forums/showthread.php?t=781

done that and still i cant recieve mail ...:'( .... , it seems to login in and check for emails ok but this is what i get when trying to send ..

Jan 12 20:48:59 gemini postfix/smtpd[32108]: connect from unknown[192.168.0.3]
Jan 12 20:48:59 gemini postfix/smtpd[32108]: B6EF84CB04: client=unknown[192.168.0.3]
Jan 12 20:48:59 gemini postfix/cleanup[32111]: B6EF84CB04: message-id=<43C6C11F.1060606@domain.co.uk>
Jan 12 20:48:59 gemini postfix/qmgr[32049]: B6EF84CB04: from=<info@domain.co.uk>, size=561, nrcpt=1 (queue active)
Jan 12 20:48:59 gemini postfix/smtpd[32108]: disconnect from unknown[192.168.0.3]
Jan 12 20:49:00 gemini amavis[32098]: (32098-02) WARN: all primary virus scanners failed, considering backups
Jan 12 20:49:00 gemini amavis[32098]: (32098-02) TROUBLE in check_mail: virus_scan FAILED: virus_scan: NO VIRUS SCANNERS AVAILABLE
Jan 12 20:49:00 gemini amavis[32098]: (32098-02) PRESERVING EVIDENCE in /var/spool/amavis/tmp/amavis-20060112T204859-32098
Jan 12 20:49:00 gemini postfix/smtp[32066]: B6EF84CB04: to=<info@domain.co.uk>, relay=127.0.0.1[127.0.0.1], delay=1, status=deferred (host 127.0.0.1[127.0.0.1] said: 451 4.5.0 Error in processing, id=32098-02, virus_scan FAILED: virus_scan: NO VIRUS SCANNERS AVAILABLE (in reply to end of DATA command))

This is a problem with amavisd and ClamAV. Please check your amavisd setup.

ok ... i removed them both ... still no luck ...

log file:

Jan 12 21:26:07 gemini pop3d: Connection, ip=[::ffff:192.168.0.3]
Jan 12 21:26:07 gemini pop3d: LOGIN, user=web1_domain, ip=[::ffff:192.168.0.3]
Jan 12 21:26:07 gemini pop3d: LOGOUT, user=web1_domain, ip=[::ffff:192.168.0.3], top=0, retr=0, time=0
Jan 12 21:26:12 gemini postfix/smtpd[3443]: warning: database /etc/postfix/virtusertable.db is older than source file /etc/postfix/virtusertable
Jan 12 21:26:13 gemini postfix/smtpd[3443]: connect from unknown[192.168.0.3]
Jan 12 21:26:13 gemini postfix/trivial-rewrite[3445]: warning: database /etc/postfix/virtusertable.db is older than source file /etc/postfix/virtusertable
Jan 12 21:26:13 gemini postfix/cleanup[3446]: warning: database /etc/postfix/virtusertable.db is older than source file /etc/postfix/virtusertable
Jan 12 21:26:13 gemini postfix/smtpd[3443]: 63E234B82: client=unknown[192.168.0.3]
Jan 12 21:26:13 gemini postfix/cleanup[3446]: 63E234B82: message-id=<43C6C9D7.1020008@alulinedesign.demon.co.uk>
Jan 12 21:26:13 gemini postfix/qmgr[2915]: 63E234B82: from=<info@alulinedesign.demon.co.uk>, size=586, nrcpt=1 (queue active)
Jan 12 21:26:13 gemini postfix/smtpd[3443]: disconnect from unknown[192.168.0.3]
Jan 12 21:26:13 gemini postfix/smtp[3447]: connect to 127.0.0.1[127.0.0.1]: Connection refused (port 10024)
Jan 12 21:26:13 gemini postfix/smtp[3447]: 63E234B82: to=<info@domain.co.uk>, relay=none, delay=0, status=deferred (connect to 127.0.0.1[127.0.0.1]: Connection refused)


how do i fix this?

Jan 12 21:26:13 gemini postfix/cleanup[3446]: warning: database /etc/postfix/virtusertable.db is older than source file /etc/postfix/virtusertable

okey fixed it with

postmap /etc/postfix/virtusertable

but now i get this ... :S


Jan 12 22:00:47 gemini postfix/smtpd[5000]: connect from unknown[192.168.0.3]
Jan 12 22:00:47 gemini postfix/smtpd[5000]: 3A0C41F2A7: client=unknown[192.168.0.3]
Jan 12 22:00:47 gemini postfix/cleanup[5003]: 3A0C41F2A7: message-id=<43C6D1F3.6020309@alulinedesign.demon.co.uk>
Jan 12 22:00:47 gemini postfix/qmgr[2915]: 3A0C41F2A7: from=<info@alulinedesign.demon.co.uk>, size=591, nrcpt=1 (queue active)
Jan 12 22:00:47 gemini postfix/smtpd[5000]: disconnect from unknown[192.168.0.3]
Jan 12 22:00:47 gemini postfix/qmgr[2915]: 3A0C41F2A7: to=<info@domain.co.uk>, relay=none, delay=0, status=deferred (delivery temporarily suspended: connect to 127.0.0.1[127.0.0.1]: Connection refused)

I have a feeling its a DNS problem ... im abit of a n00b so i dunno if this is correct ...


dig domain.co.uk

; <<>> DiG 9.3.1 <<>> domain.co.uk
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 51616
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;domain.co.uk. IN A

;; ANSWER SECTION:
domain.co.uk. 33559 IN A 80.177.125.92

;; Query time: 28 msec
;; SERVER: 158.152.1.43#53(158.152.1.43)
;; WHEN: Thu Jan 12 22:20:21 2006
;; MSG SIZE rcvd: 47



and...

dig MX domain.co.uk

; <<>> DiG 9.3.1 <<>> MX domain.co.uk
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 56760
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 17

;; QUESTION SECTION:
;domain.co.uk. IN MX

;; ANSWER SECTION:
domain.co.uk. 34680 IN MX 20 mx1.123-reg.co.uk.
domain.co.uk. 34680 IN MX 10 mx0.123-reg.co.uk.

;; ADDITIONAL SECTION:
mx0.123-reg.co.uk. 69271 IN A 195.224.48.121
mx0.123-reg.co.uk. 69271 IN A 195.224.48.123
mx0.123-reg.co.uk. 69271 IN A 195.224.48.124
mx0.123-reg.co.uk. 69271 IN A 195.224.48.125
mx0.123-reg.co.uk. 69271 IN A 195.224.48.122
mx0.123-reg.co.uk. 69271 IN A 195.224.48.118
mx0.123-reg.co.uk. 69271 IN A 195.224.48.119
mx0.123-reg.co.uk. 69271 IN A 195.224.48.126
mx0.123-reg.co.uk. 69271 IN A 195.224.48.120
mx1.123-reg.co.uk. 69287 IN A 195.224.48.121
mx1.123-reg.co.uk. 69287 IN A 195.224.48.120
mx1.123-reg.co.uk. 69287 IN A 195.224.48.119
mx1.123-reg.co.uk. 69287 IN A 195.224.48.118
mx1.123-reg.co.uk. 69287 IN A 195.224.48.126
mx1.123-reg.co.uk. 69287 IN A 195.224.48.125
mx1.123-reg.co.uk. 69287 IN A 195.224.48.124
mx1.123-reg.co.uk. 69287 IN A 195.224.48.123

;; Query time: 33 msec
;; SERVER: 158.152.1.43#53(158.152.1.43)
;; WHEN: Thu Jan 12 22:22:02 2006
;; MSG SIZE rcvd: 351



hope this may help ...

Please post your /etc/postfix/main.cf and /etc/postfix/master.cf. And also the output of netstat -tap

/etc/postfix/main.cf


queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/lib/postfix
mail_owner = postfix
unknown_local_recipient_reject_code = 550
debug_peer_level = 2

debugger_command =
PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
xxgdb $daemon_directory/$process_name $process_id & sleep 5


sendmail_path = /usr/sbin/sendmail
newaliases_path = /usr/bin/newaliases
mailq_path = /usr/bin/mailq
setgid_group = maildrop
html_directory = /usr/share/doc/packages/postfix/html
manpage_directory = /usr/share/man
sample_directory = /usr/share/doc/packages/postfix/samples
readme_directory = /usr/share/doc/packages/postfix/README_FILES
inet_protocols = all
biff = no
mail_spool_directory = /var/mail
canonical_maps = hash:/etc/postfix/canonical
#virtual_maps = hash:/etc/postfix/virtual
relocated_maps = hash:/etc/postfix/relocated
transport_maps = hash:/etc/postfix/transport
sender_canonical_maps = hash:/etc/postfix/sender_canonical
masquerade_exceptions = root
masquerade_classes = envelope_sender, header_sender, header_recipient
myhostname = gemini.$mydomain
program_directory = /usr/lib/postfix
inet_interfaces = all
masquerade_domains =
#mydestination = $myhostname, localhost.$mydomain
defer_transports =
disable_dns_lookups = no
relayhost =
mailbox_command =
mailbox_transport =
smtpd_sender_restrictions = hash:/etc/postfix/access
smtpd_client_restrictions =
smtpd_helo_required = no
smtpd_helo_restrictions =
strict_rfc821_envelopes = no
smtpd_recipient_restrictions = permit_mynetworks, reject_unauth_destination, permit_sasl_authenticated
smtp_sasl_auth_enable = no
smtpd_sasl_auth_enable = yes
smtpd_use_tls = yes
smtp_use_tls = yes
alias_maps = hash:/etc/aliases
mailbox_size_limit = 0
message_size_limit = 10240000

virtual_maps = hash:/etc/postfix/virtusertable

mydestination = /etc/postfix/local-host-names
mydomain = domain.co.uk
smtpd_sasl_local_domain =
smtpd_sasl_securtiy_options = noanonymous
broken_sasl_auth_clients = yes
smtpd_tls_auth_only = no
smtp_tls_note_starttls_offer = yes
smtpd_tls_key_file = /etc/postfix/ssl/smtpd.key
smtpd_tls_cert_file = /etc/postfix/ssl/smtpd.crt
smtpd_tls_CAfile = /etc/postfix/ssl/cacert.pem
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
home_mailbox = Maildir/

/etc/postfix/master.cf


smtp inet n - n - 2 smtpd -o content_filter=smtp:[127.0.0.1]:10024
#submission inet n - n - - smtpd
# -o smtpd_etrn_restrictions=reject
# -o smtpd_client_restrictions=permit_sasl_authenticate d,reject
#smtps inet n - n - 2 smtpd -o smtpd_tls_wrappermode=yes -o content_filter=smtp:[127.0.0.1]:10024
# -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes
#submission inet n - n - - smtpd
# -o smtpd_etrn_restrictions=reject
# -o smtpd_enforce_tls=yes -o smtpd_sasl_auth_enable=yes
#628 inet n - n - - qmqpd
pickup fifo n - n 60 1 pickup
cleanup unix n - n - 0 cleanup
qmgr fifo n - n 300 1 qmgr
#qmgr fifo n - n 300 1 oqmgr
tlsmgr unix - - n 1000? 1 tlsmgr
rewrite unix - - n - - trivial-rewrite
bounce unix - - n - 0 bounce
defer unix - - n - 0 bounce
trace unix - - n - 0 bounce
verify unix - - n - 1 verify
flush unix n - n 1000? 0 flush
proxymap unix - - n - - proxymap
smtp unix - - n - - smtp
# When relaying mail as backup MX, disable fallback_relay to avoid MX loops
relay unix - - n - - smtp
-o fallback_relay=
# -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq unix n - n - - showq
error unix - - n - - error
discard unix - - n - - discard
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - n - - lmtp
anvil unix - - n - 1 anvil
localhost:10025 inet n - n - - smtpd -o content_filter=
scache unix - - n - 1 scache

maildrop unix - n n - - pipe
flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d ${recipient}
cyrus unix - n n - - pipe
user=cyrus argv=/usr/lib/cyrus/bin/deliver -e -r ${sender} -m ${extension} ${user}
uucp unix - n n - - pipe
flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
ifmail unix - n n - - pipe
flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp unix - n n - - pipe
flags=Fq. user=foo argv=/usr/local/sbin/bsmtp -f $sender $nexthop $recipient
procmail unix - n n - - pipe
flags=R user=nobody argv=/usr/bin/procmail -t -m /etc/procmailrc ${sender} ${recipient}

netstat -tap

Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 *:ccowcmr *:* LISTEN 17295/sc_serv
tcp 0 0 *:smpnameres *:* LISTEN 31263/xinetd
tcp 0 0 *:mentaclient *:* LISTEN 17295/sc_serv
tcp 0 0 localhost:10025 *:* LISTEN 11947/master
tcp 0 0 *:5801 *:* LISTEN 31263/xinetd
tcp 0 0 *:mysql *:* LISTEN 6255/mysqld
tcp 0 0 *:netbios-ssn *:* LISTEN 6706/smbd
tcp 0 0 *:5901 *:* LISTEN 31263/xinetd
tcp 0 0 *:sunrpc *:* LISTEN 6026/portmap
tcp 0 0 *:6001 *:* LISTEN 5864/Xvnc
tcp 0 0 *:hosts2-ns *:* LISTEN 7945/ispconfig_http
tcp 0 0 *:ftp *:* LISTEN 11997/proftpd: (acc
tcp 0 0 gemini.domain.c:domain *:* LISTEN 23664/named
tcp 0 0 localhost:domain *:* LISTEN 23664/named
tcp 0 0 *:telnet *:* LISTEN 31263/xinetd
tcp 0 0 *:ipp *:* LISTEN 6593/cupsd
tcp 0 0 *:smtp *:* LISTEN 11947/master
tcp 0 0 localhost:953 *:* LISTEN 23664/named
tcp 0 0 localhost:37435 *:* LISTEN 14263/kded [kdeinit
tcp 0 0 *:microsoft-ds *:* LISTEN 6706/smbd
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:1287 ESTABLISHED 5864/Xvnc
tcp 576 0 gemini.domain.co.:4490 gemini.domain.co.:6001 ESTABLISHED 6356/konquerorJkZDs
tcp 0 0 gemini.domain.co.:6001 gemini.kd3s:sim-control ESTABLISHED 5864/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.kd3sig:netuitive ESTABLISHED 5864/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.k:ci3-software-2 ESTABLISHED 5864/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.domain.c:a13-an ESTABLISHED 5864/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.domain:neoiface ESTABLISHED 5864/Xvnc
tcp 0 0 gemini.domain.:ccowcmr tetris.dreamhost.:41905 TIME_WAIT -
tcp 0 0 gemini.domain.co.u:ftp no-dns-yet.demon.:53744 ESTABLISHED 6361/proftpd: web1_
tcp 0 32 gemini.domain.co.:6001 gemini.k:h323hostcallsc ESTABLISHED 5864/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:edix ESTABLISHED 5864/Xvnc
tcp 0 0 gemini.domain.co.:1287 gemini.domain.co.:6001 ESTABLISHED 6056/suseplugger [k
tcp 0 0 gemini.kd3sig:netuitive gemini.domain.co.:6001 ESTABLISHED 6052/klipper [kdein
tcp 0 0 gemini.domain:neoiface gemini.domain.co.:6001 ESTABLISHED 6051/kpowersave [kd
tcp 0 0 gemini.kd3si:seagulllms gemini.domain.co.:6001 ESTABLISHED 6063/konqueror [kde
tcp 0 0 gemini.kd3s:jwalkserver gemini.domain.co.:6001 ESTABLISHED 6062/kmix [kdeinit]
tcp 0 0 gemini.domain.co.:ehtp gemini.domain.co.:6001 ESTABLISHED 6065/knotify [kdein
tcp 0 0 gemini.domain.co.:dsdn gemini.domain.co.:6001 ESTABLISHED 6001/klauncher [kde
tcp 0 0 gemini.k:ci3-software-2 gemini.domain.co.:6001 ESTABLISHED 6248/firefox-bin
tcp 0 0 gemini.k:h323hostcallsc gemini.domain.co.:6001 ESTABLISHED 6232/konsole [kdein
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:3121 ESTABLISHED 5864/Xvnc
tcp 0 0 gemini.domain.co.:topx 216.239.59.103:www-http ESTABLISHED 6248/firefox-bin
tcp 0 0 gemini.kd3si:unicontrol 216.239.59.103:www-http ESTABLISHED 6248/firefox-bin
tcp 0 0 gemini.domain.co.:6001 gemini.kd:peerbook-port ESTABLISHED 5864/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:ehtp ESTABLISHED 5864/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.u:ecp ESTABLISHED 5864/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.kd3:prism-deploy ESTABLISHED 5864/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.k:ms-rule-engine ESTABLISHED 5864/Xvnc
tcp 0 23112 gemini.domain.co.:5901 no-dns-yet.demon.:52991 ESTABLISHED 5864/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:dsdn ESTABLISHED 5864/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.kd3si:seagulllms ESTABLISHED 5864/Xvnc
tcp 0 0 gemini.kd3s:sim-control gemini.domain.co.:6001 ESTABLISHED 5871/-gemini.kd3sig
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co:icpv2 ESTABLISHED 5864/Xvnc
tcp 0 0 gemini.domain.co:icpv2 gemini.domain.co.:6001 ESTABLISHED 6034/kaccess [kdein
tcp 0 0 gemini.domain.co.u:ecp gemini.domain.co.:6001 ESTABLISHED 6040/kdesktop [kdei
tcp 0 0 gemini.kd:peerbook-port gemini.domain.co.:6001 ESTABLISHED 6048/kicker [kdeini
tcp 0 0 gemini.k:ms-rule-engine gemini.domain.co.:6001 ESTABLISHED 6037/ksmserver [kde
tcp 0 0 gemini.kd3:prism-deploy gemini.domain.co.:6001 ESTABLISHED 6038/kwin [kdeinit]
tcp 0 0 gemini.domain.co.:edix gemini.domain.co.:6001 ESTABLISHED 5996/kdeinit Runnin
tcp 0 0 gemini.domain.co.:3121 gemini.domain.co.:6001 ESTABLISHED 6004/kded [kdeinit]
tcp 32 0 gemini.domain.c:a13-an gemini.domain.co.:6001 ESTABLISHED 6004/kded [kdeinit]
tcp 0 0 gemini.domain.co.:6001 gemini.domain.co.:4490 ESTABLISHED 5864/Xvnc
tcp 0 0 gemini.domain.co.:6001 gemini.kd3s:jwalkserver ESTABLISHED 5864/Xvnc
tcp 0 0 *:imaps *:* LISTEN 19954/couriertcpd
tcp 0 0 *:pop3s *:* LISTEN 20001/couriertcpd
tcp 0 0 localhost:10025 *:* LISTEN 11947/master
tcp 0 0 *:pop3 *:* LISTEN 31199/couriertcpd
tcp 0 0 *:imap *:* LISTEN 19937/couriertcpd
tcp 0 0 *:www-http *:* LISTEN 10253/httpd2-prefor
tcp 0 0 *:6001 *:* LISTEN 5864/Xvnc
tcp 0 0 *:ssh *:* LISTEN 6670/sshd
tcp 0 0 *:smtp *:* LISTEN 11947/master
tcp 0 0 localhost:953 *:* LISTEN 23664/named

Please change the first line in /etc/postfix/master.cf from
smtp inet n - n - 2 smtpd -o content_filter=smtp:[127.0.0.1]:10024

to

smtp inet n - n - 2 smtpd and restart Postfix.

Ok, done that and now some thing has started to work ....

could you tell me if my domain zone file is correct because i would like to change the name servers on my domain so it points to my server but i dont want to untill i know it correct ....

server ip on lan is 192.168.0.4
on the net its 80.177.125.92
server name is gemini
and the domain is domain.co.uk

/etc/named.conf


options {
pid-file "/var/lib/named/var/run/named/named.pid";
directory "/var/lib/named";
auth-nxdomain no;
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
// query-source address * port 53;
};

//
// a caching only nameserver config
//
zone "." {
type hint;
file "root.hint";
};

zone "0.0.127.in-addr.arpa" {
type master;
file "127.0.0.zone";
};

zone "0.168.192.in-addr.arpa" {
type master;
file "pri.0.168.192.in-addr.arpa";
};


zone "domain.co.uk" {
type master;
file "pri.domain.co.uk";
};
zone "howtoanimatethedead.co.uk" {
type master;
file "pri.howtoanimatethedead.co.uk";
};
zone "alisonmcaree.co.uk" {
type master;
file "pri.alisonmcaree.co.uk";
};
zone "alisonmcaree.com" {
type master;
file "pri.alisonmcaree.com";
};
zone "timestepdance.co.uk" {
type master;
file "pri.timestepdance.co.uk";
};
zone "northscene.co.uk" {
type master;
file "pri.northscene.co.uk";
};
zone "international-home.co.uk" {
type master;
file "pri.international-home.co.uk";
};



//// MAKE MANUAL ENTRIES BELOW THIS LINE! ////


zone file for domain.co.uk


$TTL 86400
@ IN SOA gemini.domain.co.uk. admin.domain.co.uk. (
2005111702 ; serial, todays date + todays serial #
28800 ; refresh, seconds
7200 ; retry, seconds
604800 ; expire, seconds
86400 ) ; minimum, seconds
;
NS gemini.domain.co.uk. ; Inet Address of name server 1
NS gemini.domain.co.uk. ; Inet Address of name server 2
;

www MX 10 domain.co.uk.

domain.co.uk. A 192.168.0.4
www A 192.168.0.4

;;;; MAKE MANUAL ENTRIES BELOW THIS LINE! ;;;;

The zone file for kd3sign.co.uk is not correct.

1) The nameserver for kd3sign.co.uk cannot be gemini.kd3sign.co.uk, because the nameserver of a domain can never be a subdomain of the same domain. Thats the Hen <==> Egg problem. You cannot resolve a domain when you need to know the IP of the same domain to resolve it.

2) The A-Records:

kd3sign.co.uk. A 192.168.0.4
www A 192.168.0.4

point to internal IP addresses. If you want to reach the domain from outside your local network, the IP addresses must point to yor external (router) IP-address.

Ok, so making these changes would this but ok ...

zone file for domain.co.uk


$TTL 86400
@ IN SOA gemini.domain.co.uk. admin.domain.co.uk. (
2005111702 ; serial, todays date + todays serial #
28800 ; refresh, seconds
7200 ; retry, seconds
604800 ; expire, seconds
86400 ) ; minimum, seconds
;
NS ns1.domain.co.uk. ; Inet Address of name server 1
NS ns1.domain.co.uk. ; Inet Address of name server 2
;

www MX 10 domain.co.uk.

domain.co.uk. A 80.177.125.92
www A 80.177.125.92

;;;; MAKE MANUAL ENTRIES BELOW THIS LINE! ;;;;


would i have to rename my server from gemini to ns1 ?

The A-Records where OK now.

But the NS records still wont work. ns1.kd3sign.co.uk is a subdomain of kd3sign.co.uk. You need at least two domains if you want to run your own nameserver and the domain of your nameserver can never be hosted on your nameserver itself.

so i can not host a site with a domain on one server ?

You can do that, that'S no problem. What Till wanted to say that you need a second domain that hosts the name servers for your first domain. Your zone file should look like this:

$TTL 86400
@ IN SOA gemini.kd3sign.co.uk. admin.kd3sign.co.uk. (
2005111702 ; serial, todays date + todays serial #
28800 ; refresh, seconds
7200 ; retry, seconds
604800 ; expire, seconds
86400 ) ; minimum, seconds
;
NS ns1.seconddomain.com. ; Inet Address of name server 1
NS ns2.seconddomain.com. ; Inet Address of name server 2
;

www MX 10 kd3sign.co.uk.

kd3sign.co.uk. A 80.177.125.92
www A 80.177.125.92

;;;; MAKE MANUAL ENTRIES BELOW THIS LINE! ;;;;

You can do that, that'S no problem. What Till wanted to say that you need a second domain that hosts the name servers for your first domain. Your zone file should look like this:

$TTL 86400
@ IN SOA gemini.domain.co.uk. admin.domain.co.uk. (
2005111702 ; serial, todays date + todays serial #
28800 ; refresh, seconds
7200 ; retry, seconds
604800 ; expire, seconds
86400 ) ; minimum, seconds
;
NS ns1.seconddomain.com. ; Inet Address of name server 1
NS ns2.seconddomain.com. ; Inet Address of name server 2
;

www MX 10 domain.co.uk.

domain.co.uk. A 80.177.125.92
www A 80.177.125.92

;;;; MAKE MANUAL ENTRIES BELOW THIS LINE! ;;;;


Ok, is it possible for me to have a domain point to my server? , i have one domain, one ip and one server ... if not then how would i go about setting it up... ?

you have two options:

1) Get a second domain that points to your server.

2) Do not use the BIND daemon on your server to run the DNS service for your domain. Instaed you might use the DNS Servers of you domain registry.

Cool, thankx for all your help.. i can now send emails but i cannot send emails to other address, other domain that are not on my server ... ive hunted high and low on a few forums and cannot find a solution ...

this is the error im getting ..


Jan 18 15:59:51 gemini postfix/smtpd[20728]: NOQUEUE: reject: RCPT from unknown[195.173.16.82]: 554 <yomi.ogunfowora@mybiz.co.uk>: Relay access denied; from=<mbl@kd3sign.co.uk> to=<yomi.ogunfowora@mybiz.co.uk> proto=ESMTP helo=<[195.173.16.82]>

You have to check "Server needs authentication" in you email client in the smtp settings.

Im using Thunderbird, im guessing it when you use username and password when sending emails ... i tried it before and it wont accept the password even tho i type it in correct , i even login into ispcondif conrtol panel and changed and trying again but still no joy .... is there a certain username and password i have to use?

this is the error ...


Jan 18 16:16:42 gemini postfix/smtpd[21657]: warning: SASL authentication failure: Password verification failed

Do you use the correct username? This is something like web<id>_<username>, not an email address or an ISPConfig user.

yes i used the correct username and password, it just dont seem to want to accept it ... :confused:

is there a way of looking at the virtusertable file ? or is there any other file that could be responsable ..

is there a way of looking at the virtusertable file ?It's the file /etc/postfix/virtusertable.

Is saslauthd running? Do you see it when you run ps aux?

No it wasnt running ... so i started saslauthd and still the same :(

heres the log file ...


Jan 19 08:56:01 gemini postfix/smtpd[3456]: warning: 195.173.16.82: hostname no-dns-yet.demon.co.uk verification failed: Name or service not known
Jan 19 08:56:01 gemini postfix/smtpd[3456]: connect from unknown[195.173.16.82]
Jan 19 08:56:06 gemini postfix/smtpd[3456]: warning: SASL authentication failure: Password verification failed
Jan 19 08:56:06 gemini postfix/smtpd[3456]: warning: unknown[195.173.16.82]: SASL PLAIN authentication failed
Jan 19 08:56:06 gemini postfix/smtpd[3456]: warning: unknown[195.173.16.82]: SASL LOGIN authentication failed
Jan 19 08:56:11 gemini postfix/smtpd[3456]: warning: SASL authentication failure: Password verification failed
Jan 19 08:56:11 gemini postfix/smtpd[3456]: warning: unknown[195.173.16.82]: SASL PLAIN authentication failed
Jan 19 08:56:11 gemini postfix/smtpd[3456]: warning: unknown[195.173.16.82]: SASL LOGIN authentication failed
Jan 19 08:56:15 gemini postfix/smtpd[3456]: lost connection after AUTH from unknown[195.173.16.82]
Jan 19 08:56:15 gemini postfix/smtpd[3456]: disconnect from unknown[195.173.16.82]

Did you follow any of the "Perfect Setup" guides on HowtoForge? Are you sure you followed them to the letter?

Yes i did, the whole thing start to finish, every thing works perfect cept email ..

on private network i can send and recieve emails to any one but on public network i can only send emails to accounts that are on my server and not to other email addresses ... :'(

You have to enable "Server needs authentication" in the SMTP Server settings of your email client to send mails to domains that are not on your server.

Yea i have and the problem is that it keeps asking for password even tho both username(web1_user) and password are correct .... :(

The problem seems to be with saslauthd. I recommend that you re-do the saslauthd part from the tutorial, and please try to avoid typos.

To avoid typos the best way is to use putty as SSH client on windows to connect to your server.

http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html

Yea thats wha i mainly use ...

Ah ... there was 3 packages missing ..

cyrus-sasl-devel
cyrus-sasl-gssapi
cyrus-sasl-otp

but after they've been installed and ive redone the whole part on postfix its still the same ...

mail log

Jan 20 10:14:22 gemini postfix/smtpd[11765]: warning: 195.173.16.82: hostname no-dns-yet.demon.co.uk verification failed: Name or service not known
Jan 20 10:14:22 gemini postfix/smtpd[11765]: connect from unknown[195.173.16.82]
Jan 20 10:14:26 gemini postfix/smtpd[11765]: warning: SASL authentication failure: Password verification failed
Jan 20 10:14:26 gemini postfix/smtpd[11765]: warning: unknown[195.173.16.82]: SASL PLAIN authentication failed
Jan 20 10:14:26 gemini postfix/smtpd[11765]: warning: unknown[195.173.16.82]: SASL LOGIN authentication failed
Jan 20 10:14:29 gemini postfix/smtpd[11765]: warning: SASL authentication failure: Password verification failed
Jan 20 10:14:29 gemini postfix/smtpd[11765]: warning: unknown[195.173.16.82]: SASL PLAIN authentication failed
Jan 20 10:14:29 gemini postfix/smtpd[11765]: warning: unknown[195.173.16.82]: SASL LOGIN authentication failed
Jan 20 10:14:32 gemini postfix/smtpd[11765]: warning: SASL authentication failure: Password verification failed
Jan 20 10:14:32 gemini postfix/smtpd[11765]: warning: unknown[195.173.16.82]: SASL PLAIN authentication failed
Jan 20 10:14:32 gemini postfix/smtpd[11765]: warning: unknown[195.173.16.82]: SASL LOGIN authentication failed
Jan 20 10:14:35 gemini postfix/smtpd[11765]: warning: SASL authentication failure: Password verification failed
Jan 20 10:14:35 gemini postfix/smtpd[11765]: warning: unknown[195.173.16.82]: SASL PLAIN authentication failed
Jan 20 10:14:35 gemini postfix/smtpd[11765]: warning: unknown[195.173.16.82]: SASL LOGIN authentication failed
Jan 20 10:14:38 gemini postfix/smtpd[11765]: lost connection after AUTH from unknown[195.173.16.82]
Jan 20 10:14:38 gemini postfix/smtpd[11765]: disconnect from unknown[195.173.16.82]

any ideas ? .... :(

Which linux distribution do you use?

suse 9.3

i found alil fix that has made saslauthd work

/etc/sysconfig/saslauthd:

SASLAUTHD_AUTHMECH = shadow

(this was set to PAM before)

and tested this with 'testsaslauthd -u user -p passwd' and works ok

but im still getting Relay error for emails to addresses that are not on my box

mail log

Jan 20 11:18:59 gemini postfix/smtpd[15248]: warning: 195.173.16.82: hostname no-dns-yet.demon.co.uk verification failed: Name or service not known
Jan 20 11:18:59 gemini postfix/smtpd[15248]: connect from unknown[195.173.16.82]
Jan 20 11:18:59 gemini postfix/smtpd[15248]: 795444D3C6: client=unknown[195.173.16.82], sasl_method=PLAIN, sasl_username=web1_mbl
Jan 20 11:18:59 gemini postfix/cleanup[15267]: 795444D3C6: message-id=<43D0C7D7.7060300@kd3sign.co.uk>
Jan 20 11:18:59 gemini postfix/qmgr[14861]: 795444D3C6: from=<mbl@kd3sign.co.uk>, size=524, nrcpt=1 (queue active)
Jan 20 11:19:00 gemini postfix/smtpd[15248]: disconnect from unknown[195.173.16.82]
Jan 20 11:19:00 gemini postfix/pickup[14860]: 219274D579: uid=10009 from=<web1_mbl>
Jan 20 11:19:00 gemini postfix/cleanup[15267]: 219274D579: message-id=<20060120111900.219274D579@gemini.kd3sign.co.uk>
Jan 20 11:19:00 gemini postfix/local[15268]: 795444D3C6: to=<web1_mbl@gemini.kd3sign.co.uk>, orig_to=<mbl@kd3sign.co.uk>, relay=local, delay=1, status=sent $
Jan 20 11:19:00 gemini postfix/qmgr[14861]: 795444D3C6: removed
Jan 20 11:19:00 gemini postfix/qmgr[14861]: 219274D579: from=<web1_mbl@gemini.kd3sign.co.uk>, size=365, nrcpt=1 (queue active)
Jan 20 11:19:00 gemini postfix/local[15295]: 219274D579: to=<admispconfig@localhost.kd3sign.co.uk>, orig_to=<admispconfig@localhost>, relay=local, delay=0, $
Jan 20 11:19:00 gemini postfix/qmgr[14861]: 219274D579: removed
Jan 20 11:19:05 gemini postfix/smtpd[15248]: warning: 195.173.16.82: hostname no-dns-yet.demon.co.uk verification failed: Name or service not known
Jan 20 11:19:05 gemini postfix/smtpd[15248]: connect from unknown[195.173.16.82]
Jan 20 11:19:06 gemini postfix/smtpd[15248]: NOQUEUE: reject: RCPT from unknown[195.173.16.82]: 554 <yomi.ogunfowora@mybiz.co.uk>: Relay access denied; from$
Jan 20 11:19:09 gemini postfix/smtpd[15248]: lost connection after RCPT from unknown[195.173.16.82]
Jan 20 11:19:09 gemini postfix/smtpd[15248]: disconnect from unknown[195.173.16.82]

And you are sure you connect with smtp auth, please check again in you email client.

yea, im using thunderbird and ive checked username and password for SMTP outgoing emails ...

mail log

email sent to a domain thats on my box ...


Jan 20 15:11:54 gemini postfix/smtpd[27382]: warning: 195.173.16.82: hostname no-dns-yet.demon.co.uk verification failed: Name or service not known
Jan 20 15:11:54 gemini postfix/smtpd[27382]: connect from unknown[195.173.16.82]
Jan 20 15:11:54 gemini postfix/smtpd[27382]: EB3BF1F288: client=unknown[195.173.16.82], sasl_method=PLAIN, sasl_username=web1_mbl
Jan 20 15:11:55 gemini postfix/cleanup[27386]: EB3BF1F288: message-id=<43D0FE6F.9090407@kd3sign.co.uk>
Jan 20 15:11:55 gemini postfix/qmgr[18558]: EB3BF1F288: from=<mbl@kd3sign.co.uk>, size=524, nrcpt=1 (queue active)
Jan 20 15:11:55 gemini postfix/smtpd[27382]: disconnect from unknown[195.173.16.82]
Jan 20 15:11:55 gemini postfix/pickup[23470]: C10D74D59B: uid=10009 from=<web1_mbl>
Jan 20 15:11:55 gemini postfix/cleanup[27386]: C10D74D59B: message-id=<20060120151155.C10D74D59B@gemini.kd3sign.co.uk>
Jan 20 15:11:55 gemini postfix/local[27387]: EB3BF1F288: to=<web1_mbl@gemini.kd3sign.co.uk>, orig_to=<mbl@kd3sign.co.uk>, relay=local, delay=1, status=sent $
Jan 20 15:11:55 gemini postfix/qmgr[18558]: EB3BF1F288: removed
Jan 20 15:11:55 gemini postfix/qmgr[18558]: C10D74D59B: from=<web1_mbl@gemini.kd3sign.co.uk>, size=365, nrcpt=1 (queue active)
Jan 20 15:11:55 gemini postfix/local[27387]: C10D74D59B: to=<admispconfig@localhost.kd3sign.co.uk>, orig_to=<admispconfig@localhost>, relay=local, delay=0, $
Jan 20 15:11:55 gemini postfix/qmgr[18558]: C10D74D59B: removed



and log for a email send to other address ...

Jan 20 15:12:03 gemini postfix/smtpd[27382]: warning: 195.173.16.82: hostname no-dns-yet.demon.co.uk verification failed: Name or service not known
Jan 20 15:12:03 gemini postfix/smtpd[27382]: connect from unknown[195.173.16.82]
Jan 20 15:12:05 gemini postfix/smtpd[27382]: NOQUEUE: reject: RCPT from unknown[195.173.16.82]: 554 <yomi.ogunfowora@mybiz.co.uk>: Relay access denied; from$
Jan 20 15:12:07 gemini postfix/smtpd[27382]: lost connection after RCPT from unknown[195.173.16.82]
Jan 20 15:12:07 gemini postfix/smtpd[27382]: disconnect from unknown[195.173.16.82]

In your first attempt, you connect with smtp-auth:

client=unknown[195.173.16.82], sasl_method=PLAIN, sasl_username=web1_mbl

In the second you do not connect with smtp-auth, the sasl authentication line is missing and so you cant send to external servers.

thats strage, i left the settings the same in thunderbird ... :/

Can you see saslauthd now when you run ps aux?

the service saslauthd is running but its not in there ... :confused:

how do i add it in there .. ?

its canny odd looking at the log file cause it says its using saslauthd ok ...


Jan 20 21:12:23 gemini postfix/smtpd[14230]: connect from unknown[192.168.0.3]
Jan 20 21:12:23 gemini postfix/smtpd[14230]: 640194D591: client=unknown[192.168.0.3], sasl_method=PLAIN, sasl_username=web1_kd3sign
Jan 20 21:12:23 gemini postfix/cleanup[14233]: 640194D591: message-id=<43D152A4.7020605@kd3sign.co.uk>
Jan 20 21:12:23 gemini postfix/qmgr[18558]: 640194D591: from=<info@kd3sign.co.uk>, size=563, nrcpt=1 (queue active)
Jan 20 21:12:23 gemini postfix/smtpd[14230]: disconnect from unknown[192.168.0.3]
Jan 20 21:12:23 gemini postfix/pickup[11759]: D4B574D59E: uid=10002 from=<web1_kd3sign>
Jan 20 21:12:23 gemini postfix/cleanup[14233]: D4B574D59E: message-id=<20060120211223.D4B574D59E@gemini.kd3sign.co.uk>
Jan 20 21:12:23 gemini postfix/qmgr[18558]: D4B574D59E: from=<web1_kd3sign@gemini.kd3sign.co.uk>, size=381, nrcpt=1 (queue active)
Jan 20 21:12:24 gemini postfix/local[14234]: D4B574D59E: to=<admispconfig@localhost.kd3sign.co.uk>, orig_to=<admispconfig@localhost>, relay=local, delay=1, $
Jan 20 21:12:24 gemini postfix/qmgr[18558]: D4B574D59E: removed
Jan 20 21:12:25 gemini postfix/local[14265]: 640194D591: to=<web1_kd3sign@gemini.kd3sign.co.uk>, orig_to=<info@kd3sign.co.uk>, relay=local, delay=2, status=$
Jan 20 21:12:25 gemini postfix/qmgr[18558]: 640194D591: removed

the service saslauthd is running but its not in there ... :confused:


If it's not in there, then it's not running.
Have you redone the saslauthd configuration from the tutorial?

Ok, i redone it, started service and its in pu aux ...


root 30627 0.0 0.4 4060 1132 ? Ss 15:52 0:00 /usr/sbin/saslauthd -a shadow
root 30628 0.0 0.5 4468 1512 ? S 15:52 0:00 /usr/sbin/saslauthd -a shadow
root 30629 0.0 0.5 4468 1512 ? S 15:52 0:00 /usr/sbin/saslauthd -a shadow
root 30630 0.0 0.4 4060 1132 ? S 15:52 0:00 /usr/sbin/saslauthd -a shadow
root 30631 0.0 0.4 4060 1132 ? S 15:52 0:00 /usr/sbin/saslauthd -a shadow



and still i can not send emails to domains not on my box ... this is my mail log where i sent two emails, first was sent to a domain on my box and u can see it works fine and the second is to a domain that is not and it does not send ..

Jan 24 16:45:27 gemini postfix/smtpd[32066]: warning: 195.173.16.82: hostname no-dns-yet.demon.co.uk verification failed: Name or service not known
Jan 24 16:45:27 gemini postfix/smtpd[32066]: connect from unknown[195.173.16.82]
Jan 24 16:45:28 gemini postfix/smtpd[32066]: 14AF2219C9: client=unknown[195.173.16.82], sasl_method=PLAIN, sasl_username=web1_mbl
Jan 24 16:45:28 gemini postfix/cleanup[32071]: 14AF2219C9: message-id=<43D65A5F.70206@kd3sign.co.uk>
Jan 24 16:45:28 gemini postfix/qmgr[31872]: 14AF2219C9: from=<mbl@kd3sign.co.uk>, size=518, nrcpt=1 (queue active)
Jan 24 16:45:28 gemini postfix/smtpd[32066]: disconnect from unknown[195.173.16.82]
Jan 24 16:45:28 gemini postfix/pickup[31871]: D3B68381BF: uid=10002 from=<web1_kd3sign>
Jan 24 16:45:28 gemini postfix/cleanup[32071]: D3B68381BF: message-id=<20060124164528.D3B68381BF@gemini.kd3sign.co.uk>
Jan 24 16:45:29 gemini postfix/qmgr[31872]: D3B68381BF: from=<web1_kd3sign@gemini.kd3sign.co.uk>, size=381, nrcpt=1 (queue active)
Jan 24 16:45:29 gemini postfix/local[32095]: D3B68381BF: to=<admispconfig@localhost.kd3sign.co.uk>, orig_to=<admispconfig@localhost>, relay=local, delay=1, $
Jan 24 16:45:29 gemini postfix/qmgr[31872]: D3B68381BF: removed
Jan 24 16:45:32 gemini postfix/local[32072]: 14AF2219C9: to=<web1_kd3sign@gemini.kd3sign.co.uk>, orig_to=<info@kd3sign.co.uk>, relay=local, delay=4, status=$
Jan 24 16:45:32 gemini postfix/qmgr[31872]: 14AF2219C9: removed
Jan 24 16:45:39 gemini postfix/smtpd[32066]: warning: 195.173.16.82: hostname no-dns-yet.demon.co.uk verification failed: Name or service not known
Jan 24 16:45:39 gemini postfix/smtpd[32066]: connect from unknown[195.173.16.82]
Jan 24 16:45:39 gemini postfix/smtpd[32066]: NOQUEUE: reject: RCPT from unknown[195.173.16.82]: 554 <dev@ispconfig.org>: Relay access denied; from=<mbl@kd3s$
Jan 24 16:45:42 gemini postfix/smtpd[32066]: lost connection after RCPT from unknown[195.173.16.82]
Jan 24 16:45:42 gemini postfix/smtpd[32066]: disconnect from unknown[195.173.16.82]

main.cf ...


queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/lib/postfix
mail_owner = postfix
unknown_local_recipient_reject_code = 550
debug_peer_level = 2
debugger_command =
PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
xxgdb $daemon_directory/$process_name $process_id & sleep 5

sendmail_path = /usr/sbin/sendmail
newaliases_path = /usr/bin/newaliases
mailq_path = /usr/bin/mailq
setgid_group = maildrop
html_directory = /usr/share/doc/packages/postfix/html
manpage_directory = /usr/share/man
sample_directory = /usr/share/doc/packages/postfix/samples
readme_directory = /usr/share/doc/packages/postfix/README_FILES
inet_protocols = all
biff = no
mail_spool_directory = /var/mail
canonical_maps = hash:/etc/postfix/canonical
#virtual_maps = hash:/etc/postfix/virtual
relocated_maps = hash:/etc/postfix/relocated
transport_maps = hash:/etc/postfix/transport
sender_canonical_maps = hash:/etc/postfix/sender_canonical
masquerade_exceptions = root
masquerade_classes = envelope_sender, header_sender, header_recipient
myhostname = gemini.$mydomain
program_directory = /usr/lib/postfix
inet_interfaces = all
masquerade_domains =
#mydestination = $myhostname, localhost.$mydomain
defer_transports =
disable_dns_lookups = no
mailbox_command =
mailbox_transport =
smtpd_sender_restrictions = hash:/etc/postfix/access
smtpd_client_restrictions =
smtpd_helo_required = no
smtpd_helo_restrictions =
strict_rfc821_envelopes = no
smtpd_recipient_restrictions = permit_mynetworks, reject_unauth_destination, permit_sasl_authenticated
smtp_sasl_auth_enable = no
smtpd_sasl_auth_enable = yes
smtpd_use_tls = yes
smtp_use_tls = yes
alias_maps = hash:/etc/aliases
mailbox_size_limit = 0
message_size_limit = 10240000

virtual_maps = hash:/etc/postfix/virtusertable

mydestination = /etc/postfix/local-host-names
mydomain = kd3sign.co.uk
smtpd_sasl_local_domain =
smtpd_sasl_securtiy_options = noanonymous
smtpd_sasl_local_domain =
smtpd_sasl_securtiy_options = noanonymous
broken_sasl_auth_clients = yes
smtpd_tls_auth_only = no
smtp_tls_note_starttls_offer = yes
smtpd_tls_key_file = /etc/postfix/ssl/smtpd.key
smtpd_tls_cert_file = /etc/postfix/ssl/smtpd.crt
smtpd_tls_CAfile = /etc/postfix/ssl/cacert.pem
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
home_mailbox = Maildir/
relayhost =

master.cf ....


smtp inet n - n - 2 smtpd
# smtp inet n - n - 2 smtpd -o content_filter=smtp:[127.0.0.1]:10024
#submission inet n - n - - smtpd
# -o smtpd_etrn_restrictions=reject
# -o smtpd_client_restrictions=permit_sasl_authenticate d,reject
#smtps inet n - n - 2 smtpd -o smtpd_tls_wrappermode=yes -o content_filter=smtp:[127.0.0.1]:10024
# -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes
#submission inet n - n - - smtpd
# -o smtpd_etrn_restrictions=reject
# -o smtpd_enforce_tls=yes -o smtpd_sasl_auth_enable=yes
#628 inet n - n - - qmqpd
pickup fifo n - n 60 1 pickup
cleanup unix n - n - 0 cleanup
qmgr fifo n - n 300 1 qmgr
#qmgr fifo n - n 300 1 oqmgr
tlsmgr unix - - n 1000? 1 tlsmgr
rewrite unix - - n - - trivial-rewrite
bounce unix - - n - 0 bounce
defer unix - - n - 0 bounce
trace unix - - n - 0 bounce
verify unix - - n - 1 verify
flush unix n - n 1000? 0 flush
proxymap unix - - n - - proxymap
smtp unix - - n - - smtp
# When relaying mail as backup MX, disable fallback_relay to avoid MX loops
relay unix - - n - - smtp
-o fallback_relay=
# -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq unix n - n - - showq
error unix - - n - - error
discard unix - - n - - discard
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - n - - lmtp
anvil unix - - n - 1 anvil
localhost:10025 inet n - n - - smtpd -o content_filter=
scache unix - - n - 1 scache
maildrop unix - n n - - pipe
flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d ${recipient}
cyrus unix - n n - - pipe
user=cyrus argv=/usr/lib/cyrus/bin/deliver -e -r ${sender} -m ${extension} ${user}
uucp unix - n n - - pipe
flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
ifmail unix - n n - - pipe
flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp unix - n n - - pipe
flags=Fq. user=foo argv=/usr/local/sbin/bsmtp -f $sender $nexthop $recipient
procmail unix - n n - - pipe
flags=R user=nobody argv=/usr/bin/procmail -t -m /etc/procmailrc ${sender} ${recipient}

SMTP AUTH is Checked >
Maildir in ISPConfig is Checked >

Jan 24 16:45:39 gemini postfix/smtpd[32066]: NOQUEUE: reject: RCPT from unknown[195.173.16.82]: 554 <dev@ispconfig.org>: Relay access denied; from=<mbl@kd3s$

You must enable something like "Server requires authentication." in your email client.

Ive already done that ... :( ... is there anything else you can think of that might be the problem ?

Did you do it as described here? http://mail.cs.uiuc.edu/relay/outlook-config.html

ok, im using thunderbird but ... when i have it setup like this ...

http://www.kd3sign.co.uk/Misc/00002.gif

it works when im sending from internal lan to outside lan address, but doesnt work when i send from outside lan to another outside address if you know what i mean ...

Is it because im using a proxy and there fore cant do a dns lookup on the ip ?

and when its setup like this ...

http://www.kd3sign.co.uk/Misc/00001.gif

i get an error from email client ..

The message could not be sent because connecting to SMTP server mail.kd3sign.co.uk failed. The server may be unavailable or is refusing SMTP connections. Please verify that your SMTP server setting is correct and try again.

mail log ...

Jan 24 22:35:09 gemini pop3d: LOGIN, user=web1_kd3sign, ip=[::ffff:192.168.0.3]
Jan 24 22:35:09 gemini pop3d: LOGOUT, user=web1_kd3sign, ip=[::ffff:192.168.0.3], top=0, retr=0, time=0

ok, im using thunderbird but ... when i have it setup like this ...

http://www.kd3sign.co.uk/Misc/00002.gif

it works when im sending from internal lan to outside lan address, but doesnt work when i send from outside lan to another outside address if you know what i mean ...


I guess it works from inside the LAN, because you're on an IP address that belongs to the mynetworks range in /etc/postfix/main.cf. This means you don't need to authenticate, you're trusted.

What's under the "Advanced" button?

Is there any way of lowering this security ? ... or some how allowing any ip address to auth with the server ? because looking at the logs it seems that it does not even attempt to auth because it can not do a dns look up on the ip ...

Advanced >

http://www.kd3sign.co.uk/Misc/00003.gif

Advanced > Edit

http://www.kd3sign.co.uk/Misc/00004.gif

I think this line in my log is the main problem ..


Jan 25 10:05:30 gemini postfix/smtpd[21941]: warning: 195.173.16.82: hostname no-dns-yet.demon.co.uk verification failed: Name or service not known


verification failed: Name or service not known

if i can disable this or some how fix it i guess it would work ... :/

Is no-dns-yet.demon.co.uk this the hostname of your server?

No, that is where im connecting from, at the moment im at work and that is works ip address and hostname ...

I fixed it :D



smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, check_relay_domains


Thankx for all your time and help, its much appreciated :)