| Welcome to the Zimbra :: Forums! | |
Welcome, if you would like to post a comment please register.
We also encourage you to explore all things Zimbra with our team and members of the community.
|
 | | 
04-06-2009, 10:09 PM
| | |  The problem is back
I don't know what has changed. I went through everything that has been suggested thus far but the problem keeps popping up. This really odd thing is that it started when I put it behind the firewall. The hosts file was corrected in accordance with what has been put here. There is no public IP though in there, which concerns me. It APPEARS that internal messages are being delivered, but anything on another domain is deferred. I just made a deal for this server to host a business domain so I really need some help here.
::UPDATE:: - Ok, this one is weird. When I have "Enable DNS Lookups" checked on that server, I can send mail, but cannot receive. When it is not checked, I can receive mail, but I cannot send it. I just did a number of test messages including Comcast.net and Yahoo.com domains and when I toggle that checkbox off and on, it looks like a functioning e-mail server. Unfortunately, I don't have the time to sit here and toggle that checkbox lol.
Last edited by buee; 04-06-2009 at 10:18 PM..
Reason: Update
|
04-06-2009, 10:43 PM
| | | Error Message
I'm getting the error message "host or domain name not found" in the deferred queue now. That is with DNS lookups enabled.
Without them enabled, I get a "connect to comcast.net[76.96.54:13]: connection timed out. 1 messages."
It would appear that messages are only sent and/or received about 1% of the time. I'm open to any suggestions that could get me back to a working server. Preferably without a reload. |
04-07-2009, 03:39 AM
| | Zimbra Consultant & Moderator | |
Posts: 19,653
| |
Which firewall are you using? Can you telnet from your Zimbra server to port 25 on the server that fails? Post the output again of the following commands: Code: cat /etc/hosts
cat /etc/resolv.conf
dig yourdomain mx
dig yourdomain any
host `hostname` <- use backticks not single quotes
__________________
Regards
Bill
|
04-07-2009, 09:19 AM
| | | Results
Quote:
Originally Posted by phoenix  Which firewall are you using? Can you telnet from your Zimbra server to port 25 on the server that fails? Post the output again of the following commands: Code: cat /etc/hosts
cat /etc/resolv.conf
dig yourdomain mx
dig yourdomain any
host `hostname` <- use backticks not single quotes | Code: root@box:~# cat /etc/hosts
127.0.0.1 localhost.localdomain localhost
192.1.1.10 mail.bcrockford.com mail
# The following lines are desirable for IPv6 capable hosts
::1 ip6-localhost ip6-loopback
fe00::0 ip6-localnet
ff00::0 ip6-mcastprefix
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
ff02::3 ip6-allhosts Code: root@box:~# cat /etc/resolv.conf
nameserver 192.1.1.10 Code: root@box:~# dig mail.bcrockford.com mx
; <<>> DiG 9.3.2-P2.1 <<>> mail.bcrockford.com mx
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 20812
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;mail.bcrockford.com. IN MX
;; Query time: 3 msec
;; SERVER: 192.1.1.10#53(192.1.1.10)
;; WHEN: Tue Apr 7 10:09:13 2009
;; MSG SIZE rcvd: 38 Code: root@box:~# dig mail.bcrockford.com any
; <<>> DiG 9.3.2-P2.1 <<>> mail.bcrockford.com any
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 38690
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;mail.bcrockford.com. IN ANY
;; Query time: 3 msec
;; SERVER: 192.1.1.10#53(192.1.1.10)
;; WHEN: Tue Apr 7 10:11:12 2009
;; MSG SIZE rcvd: 38 Not sure if the following is what you're looking for. I used the hostname of the box. The hostname is not really box, I'm just trying to keep some stuff confidential. Code: root@box:~# host 'box'
box has address 208.69.36.132
Host webmail not found: 3(NXDOMAIN) As I'm sure this matters, the output of that last command did not output my static IP address. I don't know what that IP address is. Oh, and the firewall is Endian
Last edited by buee; 04-07-2009 at 09:23 AM..
Reason: Answering question
|
04-07-2009, 10:16 AM
| | Zimbra Consultant & Moderator | |
Posts: 19,653
| |
Your dig commands are incorrect, they should be for the domain name not the FQDN of your server i.e. Code: dig bcrockford.com any
dig bcrockford.com mx and the host command should be exactly as I asked you for in the lost post: Code: host `hostname` <-- do not modify or add anything to that command use it as-is Are you using any of the SMTP proxy or inspection on the EFW? Is the EFW just set for the RED interface or GREEN as well?
I also asked if you can telnet from the Zimbra server to port 25 on the mail server of a failing host?
__________________
Regards
Bill
|
04-07-2009, 10:28 AM
| | | My bad
Quote:
Originally Posted by phoenix Your dig commands are incorrect, they should be for the domain name not the FQDN of your server i.e. Code: dig bcrockford.com any
dig bcrockford.com mx and the host command should be exactly as I asked you for in the lost post: Code: host `hostname` <-- do not modify or add anything to that command use it as-is Are you using any of the SMTP proxy or inspection on the EFW? Is the EFW just set for the RED interface or GREEN as well?
I also asked if you can telnet from the Zimbra server to port 25 on the mail server of a failing host? | Code: root@webmail:~# dig bcrockford.com any
; <<>> DiG 9.3.2-P2.1 <<>> bcrockford.com any
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 40341
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;bcrockford.com. IN ANY
;; ANSWER SECTION:
bcrockford.com. 604800 IN SOA mail.bcrockford.com. admin.bcrockford.com. 2008062801 604800 86400 2419200 604800
bcrockford.com. 604800 IN NS mail.bcrockford.com.
bcrockford.com. 604800 IN MX 10 mail.bcrockford.com.
bcrockford.com. 604800 IN A PUBLIC IP ADDRESS
;; Query time: 5 msec
;; SERVER: 192.1.1.10#53(192.1.1.10)
;; WHEN: Tue Apr 7 11:17:43 2009
;; MSG SIZE rcvd: 126 Code: root@webmail:~# dig baerconsult.com mx
; <<>> DiG 9.3.2-P2.1 <<>> bcrockford.com mx
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 49509
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;bcrockford.com. IN MX
;; ANSWER SECTION:
bcrockford.com. 604800 IN MX 10 mail.bcrockford.com.
;; AUTHORITY SECTION:
bcrockford.com. 604800 IN NS mail.bcrockford.com.
;; Query time: 4 msec
;; SERVER: 192.1.1.10#53(192.1.1.10)
;; WHEN: Tue Apr 7 11:21:18 2009
;; MSG SIZE rcvd: 68 Code: root@webmail:~# host `hostname`
webmail has address 208.69.36.132
Host webmail not found: 3(NXDOMAIN) Code: root@webmail:~# telnet mail.baerconsult.com 25
Trying 192.1.1.10...
Connected to mail.bcrockford.com.
Escape character is '^]'.
220 mail.baerconsult.com ESMTP Postfix EFW is not doing anything with SMTP or anything to do with the mail server. I have triple checked and it is configured with 1:1 NAT to the correct public IP and configured to allow all outgoing traffic. Everything there should be working correctly. Hopefully, this is what you're looking for.
Last edited by buee; 04-07-2009 at 10:29 AM..
Reason: Forgot to answer yet another question.
|
04-07-2009, 10:42 AM
| | Zimbra Consultant & Moderator | |
Posts: 19,653
| |
Your A record should point to the LAN IP of your Zimbra server not to the Public IP.
__________________
Regards
Bill
|
04-07-2009, 10:58 AM
| | | Propagate
Quote:
Originally Posted by phoenix Your A record should point to the LAN IP of your Zimbra server not to the Public IP. | Well, I did this now. It should take a few hours to propagate though, I assume. So we'll see what happens. Weird thing though, when I do an nslookup, I get the following: Code: Server: resolver1.opendns.com
Address: 208.67.222.222
Non-authoritative answer:
Name: mail.bcrockford.com.localdomain
Address: 208.69.36.132 Besides the obvious weird output of localdomain, that's not my public IP address. |
04-07-2009, 11:13 AM
| | | No go
Quote:
Originally Posted by phoenix Your A record should point to the LAN IP of your Zimbra server not to the Public IP. | I have made sure that the DNS resolves to the LAN IP, which it is now. I then attempted to get to my web page, it did not go. It just timed out. |
04-07-2009, 11:49 AM
| | Zimbra Consultant & Moderator | |
Posts: 19,653
| |
Quote:
Originally Posted by buee Well, I did this now. It should take a few hours to propagate though, I assume. So we'll see what happens. Weird thing though, when I do an nslookup, I get the following: Code: Server: resolver1.opendns.com
Address: 208.67.222.222
Non-authoritative answer:
Name: mail.bcrockford.com.localdomain
Address: 208.69.36.132 Besides the obvious weird output of localdomain, that's not my public IP address. | Was that done on the Zimbra server? Quote:
Originally Posted by buee I have made sure that the DNS resolves to the LAN IP, which it is now. I then attempted to get to my web page, it did not go. It just timed out. | Sorry, that was my mistake. You need an A record for your mail server and the records should look like the following ones: Code: bcrockford.com. 604800 IN A PUBLIC IP ADDRESS
mail.bcrockford.com. 604800 IN A 192.1.1.10
__________________
Regards
Bill
| | Thread Tools | Search this Thread | | | | | Display Modes |  Linear Mode | | Why Join? Registering let's you ask questions, makes it easier to search, displays any files attached to posts, and notifies you about replies.   |
Bugzilla
Wiki
Source
