Can not receive mails

Discussion in 'Installation/Configuration' started by Curtis Maurand, Feb 26, 2021.

  1. Hello,
    I've been following this thread with fascination and difficulty. I just did two upgrades and I'm not sure which update was the problem. First I run Devuan, not Debian or Ubuntu. My system does not have systemd on it. Consider it Debian without sytemd. I state the debian versions this is based on above. Until now, it has been running fine. I upgraded the machine from Devuan Ascii (Debian Jesse) to Devuan Beowulf (Debian Buster) via apt-get dist-upgrade per the instructions on Devuan's website. I had to solve dovecot SSL troubles due to changes between 2.1 and 2.3. I then upgraded ispconfig to 3.2. Now I can no longer receive email from outside. I've tried sending between my hosted domains and it works fine.

    All of the posts that I've been reading involve postgrey not listening on That is not my issue.
    Please let me know what you need from me. I do have the differences in the and files handy. The error I get is the same amorphous "Server configuration problem"

    I did edit the and comment out the lines involving postgrey and it made no difference.

    Please tell me what you need. I'm pasting the diff between the two's below.
    Thanks, Curtis
    ********** Begin diff output *******************
    input file left: /var/backup/ispconfig_sirius.xyonet.com_2021-02-25_06-32/etc/postfix/
    input file right: /etc/postfix/
    < smtpd_tls_cert_file = /etc/letsencrypt/live/
    < smtpd_tls_key_file = /etc/letsencrypt/live/
    > smtpd_tls_cert_file = /etc/postfix/smtpd.cert
    > smtpd_tls_key_file = /etc/postfix/smtpd.key
    < smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination
    > smtpd_relay_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
    < inet_protocols = ipv4
    > inet_protocols = all
    < virtual_alias_domains =
    < virtual_alias_maps = hash:/var/lib/mailman/data/virtual-mailman, proxy:mysql:/etc/postfix/, proxy:mysql:/etc/postfix/
    > virtual_alias_domains = proxy:mysql:/etc/postfix/
    > virtual_alias_maps = hash:/var/lib/mailman/data/virtual-mailman, proxy:mysql:/etc/postfix/, proxy:mysql:/etc/postfix/, proxy:mysql:/etc/postfix/
    < virtual_uid_maps = mysql:/etc/postfix/
    < virtual_gid_maps = mysql:/etc/postfix/
    > virtual_uid_maps = proxy:mysql:/etc/postfix/
    > virtual_gid_maps = proxy:mysql:/etc/postfix/
    < smtpd_restriction_classes = greylisting
    < greylisting = check_policy_service inet:
    < smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, reject_rbl_client, check_recipient_access mysql:/etc/postfix/, check_recipient_access mysql:/etc/postfix/
    > #smtpd_restriction_classes = greylisting
    > #greylisting = check_policy_service inet:
    > smtpd_recipient_restrictions = permit_mynetworks, reject_unknown_recipient_domain, reject_unlisted_recipient, check_recipient_access proxy:mysql:/etc/postfix/, permit_sasl_authenticated, reject_non_fqdn_recipient, reject_unauth_destination, check_recipient_access proxy:mysql:/etc/postfix/, check_recipient_access mysql:/etc/postfix/, check_policy_service unix:private/quota-status
    < relay_domains = mysql:/etc/postfix/
    > relay_domains = proxy:mysql:/etc/postfix/
    < relay_recipient_maps = mysql:/etc/postfix/
    > relay_recipient_maps = proxy:mysql:/etc/postfix/
    < proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $sender_bcc_maps $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $smtpd_sender_login_maps
    > proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $sender_bcc_maps $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $smtpd_sender_login_maps $virtual_uid_maps $virtual_gid_maps $smtpd_client_restrictions $smtpd_sender_restrictions $smtpd_recipient_restrictions
    < smtpd_helo_restrictions = permit_sasl_authenticated, permit_mynetworks, check_helo_access regexp:/etc/postfix/helo_access, reject_invalid_hostname, reject_non_fqdn_hostname, reject_invalid_helo_hostname, reject_unknown_helo_hostname, check_helo_access regexp:/etc/postfix/blacklist_helo
    < smtpd_sender_restrictions = check_sender_access mysql:/etc/postfix/ regexp:/etc/postfix/, permit_mynetworks, permit_sasl_authenticated, check_sender_access regexp:/etc/postfix/
    < smtpd_client_restrictions = check_client_access mysql:/etc/postfix/
    > smtpd_helo_restrictions = reject_invalid_helo_hostname, permit_mynetworks, check_helo_access regexp:/etc/postfix/helo_access, permit_sasl_authenticated, reject_non_fqdn_helo_hostname, check_helo_access regexp:/etc/postfix/blacklist_helo, ,reject_unknown_helo_hostname, permit
    > smtpd_sender_restrictions = check_sender_access regexp:/etc/postfix/, permit_mynetworks, permit_sasl_authenticated, reject_non_fqdn_sender, check_sender_access regexp:/etc/postfix/, check_sender_access proxy:mysql:/etc/postfix/
    > smtpd_client_restrictions = check_client_access proxy:mysql:/etc/postfix/, permit_inet_interfaces, permit_mynetworks, permit_sasl_authenticated, reject_rbl_client, reject_unauth_pipelining , permit
    < virtual_transport = dovecot
    > virtual_transport = lmtp:unix:private/dovecot-lmtp
    < smtp_tls_security_level = may
    > smtp_tls_security_level = dane
    < content_filter = amavis:[]:10024
    > content_filter = lmtp:[]:10024
    > smtpd_reject_unlisted_sender = yes
    > smtpd_etrn_restrictions = permit_mynetworks, reject
    > smtpd_data_restrictions = permit_mynetworks, reject_unauth_pipelining, reject_multi_recipient_bounce, permit
    > smtpd_tls_mandatory_ciphers = medium
    > tls_preempt_cipherlist = yes
    > address_verify_negative_refresh_time = 60s
    > enable_original_recipient = no
    > smtpd_forbidden_commands = CONNECT,GET,POST,USER,PASS
    > address_verify_sender_ttl = 15686s
    > smtp_dns_support_level = dnssec
    Last edited: Feb 26, 2021
  2. Hello,
    An update. I copied the older back to /etc backing up the new one prior to the copy. Postfix is working, so there is something in that new config that broke postfix. There was essentially no difference in the files. Looking at that cf file, it looks like it assumes systemd. We don't all run systemd.

    Thanks, curtis
    Last edited: Feb 26, 2021
  3. Th0m

    Th0m ISPConfig Developer Staff Member ISPConfig Developer

    Jesse Norell likes this.
  4. Jesse Norell

    Jesse Norell ISPConfig Developer Staff Member ISPConfig Developer

    What do you mean by that?

    The only thing that stands out as maybe likely is the path to the lmtp socket; I don't know if that is created by systemd or elsewhere.

    What do you get in mail log when starting postfix and/or when sending mail from the outside?

Share This Page