Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 3 > Installation/Configuration

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #11  
Old 16th October 2009, 22:26
Stown Stown is offline
Member
 
Join Date: Jun 2009
Location: Limburg, NL
Posts: 82
Thanks: 12
Thanked 5 Times in 5 Posts
Send a message via Skype™ to Stown
Default

[root@server1 ~]# iptables -L
Chain INPUT (policy DROP)
target prot opt source destination
DROP tcp -- anywhere 127.0.0.0/8
ACCEPT all -- anywhere anywhere state RELATED,ESTAB LISHED
ACCEPT all -- anywhere anywhere
DROP all -- BASE-ADDRESS.MCAST.NET/4 anywhere
PUB_IN all -- anywhere anywhere
PUB_IN all -- anywhere anywhere
PUB_IN all -- anywhere anywhere
PUB_IN all -- anywhere anywhere
DROP all -- anywhere anywhere

Chain FORWARD (policy DROP)
target prot opt source destination
ACCEPT all -- anywhere anywhere state RELATED,ESTAB LISHED
DROP all -- anywhere anywhere

Chain OUTPUT (policy ACCEPT)
target prot opt source destination
PUB_OUT all -- anywhere anywhere
PUB_OUT all -- anywhere anywhere
PUB_OUT all -- anywhere anywhere
PUB_OUT all -- anywhere anywhere

Chain INT_IN (0 references)
target prot opt source destination
ACCEPT icmp -- anywhere anywhere
DROP all -- anywhere anywhere

Chain INT_OUT (0 references)
target prot opt source destination
ACCEPT icmp -- anywhere anywhere
ACCEPT all -- anywhere anywhere

Chain PAROLE (12 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere

Chain PUB_IN (4 references)
target prot opt source destination
ACCEPT icmp -- anywhere anywhere icmp destination-un reachable
ACCEPT icmp -- anywhere anywhere icmp echo-reply
ACCEPT icmp -- anywhere anywhere icmp time-exceeded
ACCEPT icmp -- anywhere anywhere icmp echo-request
PAROLE tcp -- anywhere anywhere tcp dpt:ftp-data
PAROLE tcp -- anywhere anywhere tcp dpt:ftp
PAROLE tcp -- anywhere anywhere tcp dpt:ssh
PAROLE tcp -- anywhere anywhere tcp dpt:smtp
PAROLE tcp -- anywhere anywhere tcp dpt:domain
PAROLE tcp -- anywhere anywhere tcp dpt:http
PAROLE tcp -- anywhere anywhere tcp dptop3
PAROLE tcp -- anywhere anywhere tcp dpt:imap
PAROLE tcp -- anywhere anywhere tcp dpt:https
PAROLE tcp -- anywhere anywhere tcp dpt:mysql
PAROLE tcp -- anywhere anywhere tcp dpt:webcache
PAROLE tcp -- anywhere anywhere tcp dpt:27960
ACCEPT udp -- anywhere anywhere udp dpt:domain
ACCEPT udp -- anywhere anywhere udp dpt:mysql
ACCEPT udp -- anywhere anywhere udp dpt:27960
ACCEPT udp -- anywhere anywhere udp dpt:smtp
DROP icmp -- anywhere anywhere
DROP all -- anywhere anywhere

Chain PUB_OUT (4 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere

Seems good isnt it?
Reply With Quote
Sponsored Links
  #12  
Old 17th October 2009, 09:54
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lneburg, Germany
Posts: 35,507
Thanks: 813
Thanked 5,266 Times in 4,129 Posts
Default

Looks good.

Is your server located in a datacenter or do you use a dsl or cable line for hosting it?
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #13  
Old 17th October 2009, 17:06
Stown Stown is offline
Member
 
Join Date: Jun 2009
Location: Limburg, NL
Posts: 82
Thanks: 12
Thanked 5 Times in 5 Posts
Send a message via Skype™ to Stown
Default

datacenter
Reply With Quote
  #14  
Old 19th October 2009, 01:33
Stown Stown is offline
Member
 
Join Date: Jun 2009
Location: Limburg, NL
Posts: 82
Thanks: 12
Thanked 5 Times in 5 Posts
Send a message via Skype™ to Stown
Default

Maybe this wil help:

Oct 19 01:18:04 server1 postfix/smtp[5769]: connect to 127.0.0.1[127.0.0.1]: Connection refused (port 10024)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: 4840E2A8855D: from=, size=2515, nrcpt=1 (queue active)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: 44DD12A88588: from=, size=1011, nrcpt=1 (queue active)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: 0216A2A885C6: from=, size=4724, nrcpt=1 (queue active)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: 04A212A8858E: from=, size=5950, nrcpt=1 (queue active)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: 5F9AA2A88578: from=, size=795, nrcpt=1 (queue active)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: 580A12A88599: from=<>, size=3021, nrcpt=1 (queue active)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: 5DE8B2A885C4: from=, size=43300, nrcpt=1 (queue active)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: 5AC9B2A88548: from=, size=6896, nrcpt=1 (queue active)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: 571E92A885BA: from=, size=1085, nrcpt=1 (queue active)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: 5F1F52A885BB: from=, size=7902, nrcpt=1 (queue active)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: EEE322A885B7: from=, size=6428, nrcpt=1 (queue active)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: E70F72A88558: from=, size=4857, nrcpt=1 (queue active)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: E485E2A885A3: from=, size=5615, nrcpt=1 (queue active)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: 9B05A2A885B2: from=, size=2537, nrcpt=1 (queue active)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: 971842A885D4: from=, size=5048, nrcpt=1 (queue active)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: 979702A8854E: from=, size=2091, nrcpt=1 (queue active)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: 96AF62A88538: from=, size=2941, nrcpt=1 (queue active)
Oct 19 01:18:04 server1 postfix/smtp[5770]: connect to 127.0.0.1[127.0.0.1]: Connection refused (port 10024)
Oct 18 23:18:04 server1 postfix/smtp[5769]: CD1BD2A88577: to=, relay=none, delay=115599, delays=115599/0.01/0/0, dsn=4.4.1, status=deferred (connect to 127.0.0.1[127.0.0.1]: Connection refused)
Oct 18 23:18:04 server1 postfix/smtp[5770]: C72802A88563: to=, relay=none, delay=127140, delays=127140/0.02/0/0, dsn=4.4.1, status=deferred (connect to 127.0.0.1[127.0.0.1]: Connection refused)
Oct 18 23:18:04 server1 postfix/smtp[5770]: connect to 127.0.0.1[127.0.0.1]: Connection refused (port 10024)
Oct 18 23:18:04 server1 postfix/smtp[5769]: connect to 127.0.0.1[127.0.0.1]: Connection refused (port 10024)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: 971842A885D4: to=, relay=none, delay=11909, delays=11908/0.26/0/0, dsn=4.4.1, status=deferred (delivery temporarily suspended: connect to 127.0.0.1[127.0.0.1]: Connection refused)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: 979702A8854E: to=, relay=none, delay=151888, delays=151887/0.26/0/0, dsn=4.4.1, status=deferred (delivery temporarily suspended: connect to 127.0.0.1[127.0.0.1]: Connection refused)
Oct 19 01:18:04 server1 postfix/qmgr[19378]: 96AF62A88538: to=, relay=none, delay=179929, delays=179929/0.27/0/0, dsn=4.4.1, status=deferred (delivery temporarily suspended: connect to 127.0.0.1[127.0.0.1]: Connection refused)
Reply With Quote
  #15  
Old 19th October 2009, 12:35
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lneburg, Germany
Posts: 35,507
Thanks: 813
Thanked 5,266 Times in 4,129 Posts
Default

Please post the output of:

netstat -tap
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #16  
Old 19th October 2009, 20:21
Stown Stown is offline
Member
 
Join Date: Jun 2009
Location: Limburg, NL
Posts: 82
Thanks: 12
Thanked 5 Times in 5 Posts
Send a message via Skype™ to Stown
Default

[root@server1 ~]# netstat -tap
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 *:esro-emsdp *:* LISTEN 2156/rpc.statd
tcp 0 0 server1.s-projects.nl:10025 *:* LISTEN 19370/master
tcp 0 0 *:mysql *:* LISTEN 19299/mysqld
tcp 0 0 server1.s-proje:dyna-access *:* LISTEN 19456/clamd
tcp 0 0 *:sunrpc *:* LISTEN 2115/portmap
tcp 0 0 213.163.64.101:domain *:* LISTEN 19574/mydns
tcp 0 0 213.163.64.100:domain *:* LISTEN 19574/mydns
tcp 0 0 213.163.64.99:domain *:* LISTEN 19574/mydns
tcp 0 0 server1.s-projects.n:domain *:* LISTEN 19574/mydns
tcp 0 0 *:ftp *:* LISTEN 19560/pure-ftpd (SE
tcp 0 0 *:smtp *:* LISTEN 19370/master
tcp 0 0 *:imaps *:* LISTEN 19510/couriertcpd
tcp 0 0 *op3s *:* LISTEN 19522/couriertcpd
tcp 0 0 *op3 *:* LISTEN 19516/couriertcpd
tcp 0 0 *:imap *:* LISTEN 19503/couriertcpd
tcp 0 0 *:webcache *:* LISTEN 838/httpd
tcp 0 0 *:http *:* LISTEN 838/httpd
tcp 0 0 localhost6.localdoma:domain *:* LISTEN 19574/mydns
tcp 0 0 *:ftp *:* LISTEN 19560/pure-ftpd (SE
tcp 0 0 *:ssh *:* LISTEN 2383/sshd
tcp 0 1776 ::ffff:213.163.64.99:ssh ip5653eaed.direct-ads:49202 ESTABLISHED 21186/0
[root@server1 ~]#
Reply With Quote
  #17  
Old 20th October 2009, 10:17
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lneburg, Germany
Posts: 35,507
Thanks: 813
Thanked 5,266 Times in 4,129 Posts
Default

Ok. postfix is listening on all interfaces.

Please restart postfix and amavisd and then look again into the error log if any erors have been added when the daemons restart.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #18  
Old 20th October 2009, 18:07
Stown Stown is offline
Member
 
Join Date: Jun 2009
Location: Limburg, NL
Posts: 82
Thanks: 12
Thanked 5 Times in 5 Posts
Send a message via Skype™ to Stown
Default

My netstat -tap results are the same as my post before (http://www.howtoforge.com/forums/sho...22&postcount=9), and now its not good?

i restarted postfix and then amavisd en the new netstat -tap results are:
the same.

When i restarted amavisd it failed to stop and succeed to start

Last edited by Stown; 20th October 2009 at 18:40.
Reply With Quote
  #19  
Old 21st October 2009, 09:30
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lneburg, Germany
Posts: 35,507
Thanks: 813
Thanked 5,266 Times in 4,129 Posts
 
Default

I'am not talking about netstat results. Postfix can be started and show up at netstat even if some parts of the postfix startup failed. And this is logged to the mail log then. So which lines had been added to the mail log as you restarted?
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
ispconfig 3 cant receive emails lishaw1968 Installation/Configuration 25 19th August 2013 10:37
Attacks on MTA dclardy Installation/Configuration 4 29th September 2009 16:50
Mail not working epicuniversal General 5 13th June 2009 08:24
debian etch courier pop3 issue docean Installation/Configuration 6 20th March 2008 15:38
Centos 4.4 32bit Hangs, High Server load 3cwired_com Server Operation 11 16th November 2006 15:47


All times are GMT +2. The time now is 19:17.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.