Strange Email Problem on a new setup with five virtual domains.

5 posts / 0 new
Last post
#1 Wed, 11/02/2016 - 05:03
midihipi
midihipi's picture

Strange Email Problem on a new setup with five virtual domains.

Hello,

I have 5 virtual domains set up on a single virtualmin administered debian 8 server. None of the domain can access email although all other services are working as expected.

Here is some configuration information for one of the virtual domains but you can expect to see the same nomenclature in all and set to be unique to each virtual domain.

Domain: linuxnuts.com

DNS: ; linuxnuts.com [889704] $TTL 86400 @ IN SOA ns1.linode.com. bradley.linuxnuts.com. 2016110172 14400 7200 1209600 86400 @ NS ns1.linode.com. @ NS ns2.linode.com. @ NS ns3.linode.com. @ NS ns4.linode.com. @ NS ns5.linode.com. @ MX 10 mail.linuxnuts.com. @ A 192.81.128.181 mail A 192.81.128.181 www A 192.81.128.181 @ AAAA 2600:3c01::f03c:91ff:fea1:2613 mail AAAA 2600:3c01::f03c:91ff:fea1:2613 www AAAA 2600:3c01::f03c:91ff:fea1:2613

Firewall: Status: active

To Action From -- ------ ---- 22 ALLOW Anywhere 80/tcp ALLOW Anywhere 21/tcp ALLOW Anywhere 25/tcp ALLOW Anywhere 143 ALLOW Anywhere 443 ALLOW Anywhere 993 ALLOW Anywhere 10000 ALLOW Anywhere 22 ALLOW Anywhere (v6) 80/tcp ALLOW Anywhere (v6) 21/tcp ALLOW Anywhere (v6) 25/tcp ALLOW Anywhere (v6) 143 ALLOW Anywhere (v6) 443 ALLOW Anywhere (v6) 993 ALLOW Anywhere (v6) 10000 ALLOW Anywhere (v6)

Relevant results from mxtoolbox.com in regards to smtp: Connecting to 192.81.128.181

220 tesla.linuxnuts.com ESMTP Postfix (Debian/GNU) [844 ms] EHLO PWS3.mxtoolbox.com 250-tesla.linuxnuts.com 250-PIPELINING 250-SIZE 10240000 250-VRFY 250-ETRN 250-STARTTLS 250-AUTH PLAIN LOGIN 250-AUTH=PLAIN LOGIN 250-ENHANCEDSTATUSCODES 250-8BITMIME 250 DSN [662 ms] MAIL FROM: 250 2.1.0 Ok [656 ms] RCPT TO: 454 4.7.1 : Relay access denied [656 ms]

PWS3v2 3730ms

I am trying to connect with thunderbird and have come up empty on this one. It all looks good to me. Any thoughts?

Thanks,

Brad

ps i checked for the -r flag in saslauthd and it's there although your support doc says it should exist in the "params=" line when in fact it's "options=" that it is found. Also the same doc refers to a path of /etc/defaults/saslauthd and it should read /etc/DEFAULT/saslauthd .

Just thought you might want to know.

Wed, 11/02/2016 - 06:01
midihipi
midihipi's picture

I just attempted to login with thunderbird and dovecot logged this..... Nov 2 10:19:35 tesla dovecot: imap-login: Fatal: Couldn't parse private ssl_key: error:0906D06C:PEM routines:PEM_read_bio:no start line: Expecting: ANY PRIVATE KEY Nov 2 10:19:35 tesla dovecot: master: Error: service(imap-login): command startup failed, throttling for 16 secs Nov 2 10:23:03 tesla dovecot: imap-login: Fatal: Couldn't parse private ssl_key: error:0906D06C:PEM routines:PEM_read_bio:no start line: Expecting: ANY PRIVATE KEY Nov 2 10:23:03 tesla dovecot: master: Error: service(imap-login): command startup failed, throttling for 32 secs Nov 2 10:23:35 tesla dovecot: imap-login: Fatal: Couldn't parse private ssl_key: error:0906D06C:PEM routines:PEM_read_bio:no start line: Expecting: ANY PRIVATE KEY Nov 2 10:23:35 tesla dovecot: master: Error: service(imap-login): command startup failed, throttling for 60 secs root@tesla:~#

Owner of Linux Nuts Professional Services

Wed, 11/02/2016 - 17:31
midihipi
midihipi's picture

added a cert from one of my virtual domains, a fix I found in another posting here.... (https://www.virtualmin.com/node/38304) and restarted dovecot and recieved this error

Failed to re-start service :

Error: service(imap-login): listen(*, 143) failed: Address already in use Error: service(imap-login): listen(::, 143) failed: Address already in use Error: service(imap-login): listen(*, 993) failed: Address already in use Error: service(imap-login): listen(::, 993) failed: Address already in use Fatal: Failed to start listeners

Owner of Linux Nuts Professional Services

Wed, 11/02/2016 - 17:32
midihipi
midihipi's picture

I am at a loss and need to get this up and running !!

Owner of Linux Nuts Professional Services

Mon, 11/07/2016 - 22:28
midihipi
midihipi's picture

It was an ssl issue fixed that with letsencrypt (although I do now get an error saying host unknown even though I set letsencrypt up to create and renew a cert.pem and privkey.pem for each of my virtualdomains) I then went into manage ssl and set it up for the domain I am currently trying to access with thunderbird. AFter pointing to the location of my cert and ket, /home/mydomain/ssl_certificates/cert.pem etc. and copying them to dovecot and postfix. Now I can connect with username.domain to the server and successfully configure thunderbird. Then I went to a gmail account and tried to send a message to it and received: Recipient address rejected: Access denied

I then tried to send one out to the gmail account i used and got: nothing just waiting for a message delayed reply....

Owner of Linux Nuts Professional Services

Topic locked