Portál AbcLinuxu, 5. května 2025 21:35
Zdravím, při nové instalaci postfix + dovecot na ubuntu 14.04 LTS jsem si nastavil, co jsem potřeboval: postfix master:
smtp inet n - - - - smtpd
#smtp inet n - - - 1 postscreen
#smtpd pass - - - - - smtpd
#dnsblog unix - - - - 0 dnsblog
#tlsproxy unix - - - - 0 tlsproxy
submission inet n - - - - smtpd
-o syslog_name=postfix/submission
-o smtpd_tls_security_level=may
-o smtpd_sasl_auth_enable=yes
# -o smtpd_reject_unlisted_recipient=no
# -o smtpd_client_restrictions=$mua_client_restrictions
# -o smtpd_helo_restrictions=$mua_helo_restrictions
# -o smtpd_sender_restrictions=$mua_sender_restrictions
# -o smtpd_recipient_restrictions=
-o smtpd_relay_restrictions=permit_sasl_authenticated,reject
-o milter_macro_daemon_name=ORIGINATING
smtps inet n - - - - smtpd
-o syslog_name=postfix/smtps
-o smtpd_tls_wrappermode=yes
-o smtpd_sasl_auth_enable=yes
# -o smtpd_reject_unlisted_recipient=no
# -o smtpd_client_restrictions=$mua_client_restrictions
# -o smtpd_helo_restrictions=$mua_helo_restrictions
# -o smtpd_sender_restrictions=$mua_sender_restrictions
# -o smtpd_recipient_restrictions=
-o smtpd_relay_restrictions=permit_sasl_authenticated,reject
-o milter_macro_daemon_name=ORIGINATING
#628 inet n - - - - qmqpd
pickup unix n - - 60 1 pickup
cleanup unix n - - - 0 cleanup
qmgr unix n - n 300 1 qmgr
#qmgr unix n - n 300 1 oqmgr
tlsmgr unix - - - 1000? 1 tlsmgr
rewrite unix - - - - - trivial-rewrite
bounce unix - - - - 0 bounce
defer unix - - - - 0 bounce
trace unix - - - - 0 bounce
verify unix - - - - 1 verify
flush unix n - - 1000? 0 flush
proxymap unix - - n - - proxymap
proxywrite unix - - n - 1 proxymap
smtp unix - - - - - smtp
relay unix - - - - - smtp
# -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq unix n - - - - showq
error unix - - - - - error
retry unix - - - - - error
discard unix - - - - - discard
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - - - - lmtp
anvil unix - - - - 1 anvil
scache unix - - - - 1 scache
#
# ====================================================================
# Interfaces to non-Postfix software. Be sure to examine the manual
# pages of the non-Postfix software to find out what options it wants.
#
# Many of the following services use the Postfix pipe(8) delivery
# agent. See the pipe(8) man page for information about ${recipient}
# and other message envelope options.
# ====================================================================
#
# maildrop. See the Postfix MAILDROP_README file for details.
# Also specify in main.cf: maildrop_destination_recipient_limit=1
#
maildrop unix - n n - - pipe
flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}
#
# ====================================================================
postfix main:
smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
biff = no
# appending .domain is the MUA's job.
append_dot_mydomain = no
# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h
readme_directory = /usr/share/doc/postfix
# TLS parameters
#smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
#smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
# information on enabling SSL in the smtp client.
smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination
myhostname = mx2.mojedomena.cz
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = mx2.mojedomena.cz, localhost.mojedomena.cz, , localhost
relayhost =
mynetworks = 192.168.250.0/24 192.168.252.0/23 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
home_mailbox = Maildir/
mailbox_command = /usr/lib/dovecot/deliver
message_size_limit = 20480000
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
inet_protocols = all
html_directory = /usr/share/doc/postfix/html
local_recipient_maps = proxy:unix:passwd.byname $alias_maps
local_transport = local:$myhostname
#disable_vrfy_command = yes
smtpd_tls_auth_only = no
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth
smtpd_sasl_local_domain =
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes
smtpd_sasl_auth_enable = yes
smtpd_recipient_restrictions = permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination
smtp_tls_security_level = may
smtpd_tls_security_level = may
smtp_tls_note_starttls_offer = yes
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_key_file = /etc/ssl/certo/server.key
smtpd_tls_cert_file = /etc/ssl/certo/server.crt
V Dovecotu jsem nastavil toto: 10-auth.conf
auth_mechanisms = plain login !include auth-system.conf.ext
10-mail
mail_location = maildir:~/Maildir
10-master
service imap-login {
inet_listener imap {
port = 143
}
inet_listener imaps {
port = 993
ssl = yes
}
service pop3-login {
inet_listener pop3 {
port = 110
}
inet_listener pop3s {
port = 995
ssl = yes
}
}
service auth {
# Postfix smtp-auth
unix_listener /var/spool/postfix/private/auth {
mode = 0666
user = postfix
group = postfix
}
}
10-ssl
ssl_cert = /etc/dovecot/cert(.pem) ssl_key = /etc/dovecot/private/cert(.pem)
15-lda
postmaster_address = test@mx2.mojedomena.cz
Následně jsem vyzkoušel odesílání přes telnet:
telnet mx2.mojedomena.cz 25 Trying 192.168.250.99... Connected to mx2.mojedomena.cz. Escape character is '^]'. 220 mx2.mojedomena.cz ESMTP Postfix (Ubuntu) EHLO mx2 250-mx2.mojedomena.cz 250-PIPELINING 250-SIZE 20480000 250-VRFY 250-ETRN 250-STARTTLS 250-AUTH PLAIN LOGIN 250-AUTH=PLAIN LOGIN 250-ENHANCEDSTATUSCODES 250-8BITMIME 250 DSN AUTH PLAIN BASE64key 235 2.7.0 Authentication successful MAIL From: tester@mx2.mojedomena.cz 250 2.1.0 Ok RCPT To: test@mx2.mojedomena.cz 250 2.1.5 Ok DATA 354 End data with . Subject: Pokus Pokusny email. . 250 2.0.0 Ok: queued as 6AC16106004B quit 221 2.0.0 Bye
Email v pořádku došel do schránky. Následně jsem se pokusil přidat účet do Thunderbirdu. Účet se úspěšně připojil a načetl přijatý email. Následně jsem se pokusil email odeslat, ale vypíše mi to pouze toto:
Poslání zprávy selhalo. Zprávu se nepodařilo odeslat, protože spojení se SMTP serverem mx2.mojedomena.cz vypršelo. Zkuste to znovu, nebo kontaktujte správce sítě.
V logu na serveru není nic - mail.log
May 2 08:35:18 mx2 postfix/smtpd[5216]: connect from mx2.mojedomena.cz[192.168.250.99] May 2 08:35:53 mx2 postfix/smtpd[5216]: 6AC16106004B: client=mx2.mojedomena.cz[192.168.250.99], sasl_method=PLAIN, sasl_username=test May 2 08:36:10 mx2 postfix/cleanup[5222]: 6AC16106004B: message-id=<20160502063553.6AC16106004B@mx2.mojedomena.cz> May 2 08:36:10 mx2 postfix/qmgr[2657]: 6AC16106004B: from=, size=364, nrcpt=1 (queue active) May 2 08:36:10 mx2 dovecot: lda(pavel): msgid=<20160502063553.6AC16106004B@mx2.mojedomena.cz>: saved mail to INBOX May 2 08:36:10 mx2 postfix/local[5226]: 6AC16106004B: to=, relay=local, delay=28, delays=28/0/0/0.11, dsn=2.0.0, status=sent (delivered to command: /usr/lib/dovecot/deliver) May 2 08:36:10 mx2 postfix/qmgr[2657]: 6AC16106004B: removed May 2 08:36:13 mx2 postfix/smtpd[5216]: disconnect from mx2.mojedomena.cz[192.168.250.99] May 2 08:36:16 mx2 dovecot: imap-login: Login: user=, method=PLAIN, rip=192.168.252.142, lip=192.168.250.99, mpid=5230, TLS, session=<1KKuNdYxvQDAqMqO> May 2 08:40:28 mx2 postfix/smtpd[5232]: connect from unknown[192.168.252.142] May 2 08:41:29 mx2 dovecot: imap(pavel): Connection closed in=532 out=2444 May 2 08:42:10 mx2 postfix/smtpd[5232]: lost connection after CONNECT from unknown[192.168.252.142] May 2 08:42:10 mx2 postfix/smtpd[5232]: disconnect from unknown[192.168.252.142] May 2 08:43:09 mx2 dovecot: imap-login: Disconnected (no auth attempts in 100 secs): user=<>, rip=192.168.252.142, lip=192.168.250.99, session=
Email, který odešlu přes telnet i na jinou schránku v jiné doméně např na gmail účet, na tento doručený email můžu odpovědět a email dorazí do schránky na mx2 server. Můžete mi prosím poradit, kde mám něco špatně, nebo zda bych měl něco jinak nastavit? Děkuji předem za tipy a rady
Řešení dotazu:
spojení se SMTP serverem mx2.mojedomena.cz vypršeloTo vypada, ze se tam nemuze dostat. Vidis na serveru navazane spojeni?
Telnet jsem zkoušel přímo na serveru. Toto je pokus ze stanice ve stejné síti. Z ní jsem zkoušel i thundrebird.
220 mx2.mojedomena.cz ESMTP Postfix (Ubuntu) ehlo mx2 250-mx2.mojedomena.cz 250-PIPELINING 250-SIZE 20480000 250-VRFY 250-ETRN 250-STARTTLS 250-AUTH PLAIN LOGIN 250-AUTH=PLAIN LOGIN 250-ENHANCEDSTATUSCODES 250-8BITMIME 250 DSN AUTH PLAIN heslo 2.7.0 Authentication successful MAIL From: test@mx2.mojedomena.cz 250 2.1.0 Ok RCPT To: tester@mojedomena.cz 250 2.1.5 Ok DATA 354 End data with . Subject: Test test . 250 2.0.0 Ok: queued as 806271060933 quit 221 2.0.0 Bye
Aktivní Internetová spojení (servery a navázaná spojení) Proto Přích-F Odch-F Místní Adresa Vzdálená Adresa Stav PID/Program name tcp 0 0 0.0.0.0:993 0.0.0.0:* LISTEN 5920/dovecot tcp 0 0 0.0.0.0:995 0.0.0.0:* LISTEN 5920/dovecot tcp 0 0 0.0.0.0:587 0.0.0.0:* LISTEN 8332/master tcp 0 0 0.0.0.0:110 0.0.0.0:* LISTEN 5920/dovecot tcp 0 0 0.0.0.0:143 0.0.0.0:* LISTEN 5920/dovecot tcp 0 0 0.0.0.0:465 0.0.0.0:* LISTEN 8332/master tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 6712/sshd tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 8332/master tcp 0 0 192.168.250.99:143 192.168.250.251:57861 SPOJENO 7598/imap-login tcp 0 0 192.168.250.99:143 192.168.250.251:57863 SPOJENO 7600/imap-login tcp 0 0 192.168.250.99:143 192.168.250.251:57850 SPOJENO 7591/imap-login tcp 0 288 192.168.250.99:22 192.168.252.142:55824 SPOJENO 8901/sshd: pavel [p tcp6 0 0 :::993 :::* LISTEN 5920/dovecot tcp6 0 0 :::995 :::* LISTEN 5920/dovecot tcp6 0 0 :::587 :::* LISTEN 8332/master tcp6 0 0 :::110 :::* LISTEN 5920/dovecot tcp6 0 0 :::143 :::* LISTEN 5920/dovecot tcp6 0 0 :::465 :::* LISTEN 8332/master tcp6 0 0 :::22 :::* LISTEN 6712/sshd tcp6 0 0 :::25 :::* LISTEN 8332/masterz podsítě .250 to funguje, ale z podsítě .252 ne
Tiskni
Sdílej:
ISSN 1214-1267, (c) 1999-2007 Stickfish s.r.o.