roundcube install help

Discussion in 'Server Operation' started by Heeter, Dec 12, 2019.

  1. Heeter

    Heeter Member

    Hi all,
    Having trouble with a roundcube install on a different webserver than the mailserver. both servers are VMs on a main kvm server.
    webserver IP 192.168.1.18
    mailserver IP 192.168.1.17
    I am using the roundcube installer roundcube version1..4.1. Ubuntu18.04 for all servers, nginx for webserver, dovecot,postfix for mailserver.
    I have 2 domains being served from the mail server.
    This is my config.inc.php file:
    Code:
    <?php
    $config['db_dsnw'] = 'mysql://user:[email protected]/roundcube_db';
    $config['default_host'] = 'ssl://mail.example1.com';
    $config['username_domain'] = 'example1.com, example2.com'';
    $config['default_port'] = 993;
    
    $config['smtp_server'] = '%h';
    
    $config['des_key'] = 'XXXXXXXXXXXXXXXXXXXXXXXX';
    
    $config['product_name'] = 'Webmail';
    
    $config['plugins'] = array();
    
    $config['language'] = 'en_US';
    
    $config['spellcheck_engine'] = 'atd';
    
    $config['prefer_html'] = false;
    
    $config['draft_autosave'] = 180;
    
    $config['mime_param_folding'] = 0;
    
    roundcube refuses to connect to the mailserver:
    Code:
    Connecting to ssl://mail.example1.com...
    IMAP connect:  NOT OK(Login failed for [email protected] against mail.example1.com from 192.168.1.1. Could not connect to ssl://mail.example1.com:993: Unknown reason)
    
    All my other email clients connect with no issues, both inside and outside network. I use ports 993 & 587 to communicate with the mailserver with all the clients
     
  2. Steini86

    Steini86 Active Member

    What does the dovecot log on the mail server tell you when trying to log in? Have you tried with StartTLS on port 143?
    Have you tried to anonymize that or is this the wrong IP? Does mail.example1.com resolve to your mailserver?
     
    Heeter likes this.
  3. Heeter

    Heeter Member

    Hi, Thank you
    All the other mail clients use mail.example1.com and use ports 993 & 587. Thunderbird, Evolution, K-9, Rainloop, Nextcloud are all connected using the mail.example1.com:993 credentials.
    No errors are showing up on dovecot server logs
    192.168.1.1 is not anonymized, that is the error, dovecot located at 192.168.1.17.
     
  4. Steini86

    Steini86 Active Member

    Is 'something' showing up in the log? (is roundcube connecting to the server?) -> Can the two servers talk to each other?
    If the IP in the error is wrongly 192.168.1.1 (is this your host?) than it looks like some dns is wrong.
    - Try using the IP instead of the domain for connection.
    - Test dns resolver (dig)
    - Does ping work between servers?

    Do you get more information (in RC config.inc) with
    Code:
    $config['debug_level'] = 4;
    
    // Log IMAP conversation
    $config['imap_debug'] = true;
    
     
    Heeter likes this.
  5. Heeter

    Heeter Member

    Hi, Thank you so far for helping me.
    The dovecot log shows only the last few times I restarted dovecot, no sign that roundcube is trying to connect:
    I don't know how to test dns internally, but both ssllabs.com and mxtoolbox.com resolves the mailserver correctly from outside

    ffrom the errors.log:
    From the imap.log:
    I still don't know why the gateway IP 192.168.1.1 is showing up...........
     
    Last edited: Dec 15, 2019
  6. Steini86

    Steini86 Active Member

    So, it looks like something on the network is failing to connect (do you have a firewall installed on the server?), is dovecot listening to the internal IPs?
    Can you try from the webserver with
    Code:
    openssl s_client -showcerts -connect 192.168.1.17:993
    That is a different error message, isn't it?
    With the "dig" command, however, if pinging works with the hostname that should be fine
    Yes, but they resolve to the public IP, not the internal (192.168.1.17), right?
    It could be the client connected to the webserver
     
    Heeter likes this.
  7. Heeter

    Heeter Member

    Hi, Thank you again for sticking with me.
    The mailserver has UFW installed, ports are all open
    thats true about ssllanbs and mxtoolbox, forgot about that,
    That is the same error message that I get from roundcube webGUI when I try to connect
    Here is the webserver result:
    It is supposed to show Letsencrypt as a cert, I installed letsencrypt and it installed correctly with certbot
     
    Last edited: Dec 15, 2019
  8. Steini86

    Steini86 Active Member

    Have you restarted the server (at least dovecot) after installing the certificate?
    Roundcube needs additional settings to work with self signed certificates, see bottom of https://github.com/roundcube/roundcubemail/wiki/FAQ

    Best would be to get the LetsEncrypt certificate working
     
    Heeter likes this.
  9. Heeter

    Heeter Member

    Hi Steini86
    Thank you so much for your assistance
    It started working properly once I got letsencrypt to install properly on the mailserver
    Cannot thank you enough
    Regards
     
    Last edited: Dec 15, 2019
    Steini86 likes this.

Share This Page