Is this possible that Postfix is rejecting all incoming mail that's not originating from my ISP's SMTP server ?
For exemple, using Apple Mail in the same home network as my mail server I can send messages to every account I created and it is working fine. However, no one else can send me email. It is easy to test, I've not received any spam mail since I pointed my domain name on my mail server and I usually receive around 200 a day of those... :-) And i tested using an hotmail account, and the messages all bounced (however, the hotmail server is not very explicit as to why it bounced...).
Or maybe it is my router that's the problem? Then why can I send and receive mail using my ISP's SMTP server? I can see in the mail.log the connection from this server, but there's absolutly no trace of any email rejected nor any connection from another server... All there's in my log is traces from when I successfully connect to the Courier server.
dgrenier 22 Sep 2006
Maybe this can help:
Serveur:~ dgrenier$ telnet serveur.domain.tld 143
Trying ###.###.###.###...
Connected to serveur.domain.tld.
Escape character is '^]'.
Connection closed by foreign host.
Where serveur.domain.tld is my mail server domain in my MX Record.
The connection is closed automaticaly without I can do anything. It does not time out, as the above lines all appear at the same time.. don't know if you know what I mean...
I used to be able log into the server using this, but I don't remember having changed something that had to do with this...
EDIT: Well, well, well... I closed Apple Mail and then I could log using the former command... and if I opened it up, it'll stop working again... :? Also, once I'm logged using telnet, the server won't accept any command I issue, like "quit" it answer me:
quit NO Error in IMAP command received by server.
dgrenier 22 Sep 2006
Some other infos:
I went to my sister's home who use the same ISP as me. I sent an email to myself using her account and I received it, which kind of "fit" into my theory that currently, my postfix server only accept mail from my ISP's server. Or maybe it is my ISP who block incoming mail on port 25 that's not from their server?
Also, I did a
telnet mail.domain.tld 25
at her home, and the connection timed out, but if I do the same with port 143 instead, it works (however I can not issue any command, see my post, above). Hmmmmm.... The same command with port 25 works at my home. The port is opened in my router and my G4's firewall as well.
Other noteworthy infos:
If I go on canyouseeme.org to test my ports I can see that my port 143 is opened. However, I can't see port 25 nor port 80. However, I'm sure port 80 isn't blocked since I've got a some websites on my server and they all work on port 80 just as they should. I've tested this outside my home, but only at place which use the same ISP as me... maybe that's why...
Anyway, I'll try to find more infos, and I'll keep you posted.
UPDATE: I had someone who's ISP is not the same as me check my website, and they doesn't work. Which make me think it's my ISP who's opening port 25 and 80, but just among their clients... is that possible? Stupid, if you ask me... I'll call them...
Do you have a firewall running on your server or even on your ADSL modem. If your are using OS X all the ports are normally closed for th outside and most modems that get send out by ISP have all/most incoming ports closed.
dgrenier 23 Sep 2006
richard5 Escribió:
Do you have a firewall running on your server or even on your ADSL modem. If your are using OS X all the ports are normally closed for th outside and most modems that get send out by ISP have all/most incoming ports closed.
Well ports 25 and 80 on both my router and my G4 are opened. However, I'm pretty sure now that's because my ISP is blocking those ports for connections outside their network, which is stupid. That mean, someone that use the same ISP as me can connect to my websites using port 80 and can send me email on port 25, however, anybody that do not use my ISP (which mean 99,99% of the planet) cannot...
I'm currently looking for purchasing a MailHop Relay account from DynDNS in order to receive mail on port 2525 (which I'm sure is not blocked) as well as a backup MX server with ZoneEdit.
That sucks, but there's nothing I can do about it except complaining to my ISP...
About the modem, well, I don't know how I can check for this...
Don't buy the mailhop stuff, you can get a good one for free! Look here for more info, there are other people I know using this service and are quite happy ! They also provide backup MX...
It's a shame to find this out too late, meaning having an ISP already. Maybe there is another who can provide you wit ha better service and perhaps even for less. Here (the netherlands) new and better offers are made almost each month. Every ISP is trying to be the cheapest or provide the best service and they are trying hard to win new customers from competitors.
dgrenier 23 Sep 2006
richard5 Escribió:
Don't buy the mailhop stuff, you can get a good one for free! Look here for more info, there are other people I know using this service and are quite happy ! They also provide backup MX...
Well, thank you! I remember reading your post about this, but did not pay attention 'cause I thought my port 25 was opened. But now, things are different.. I successfully setup their SMTP Redirection service and things are now working perfectly (well, until they don't... ).
Since I'm having a dynamic IP, I'm using Zoneedit for my DNS zone files. And since my ISP is only blocking port 25 for incoming connections outside their network, I've setup my primary MX Record to my server on port 25, and in case it fails (which will be the case for most incoming mail) it will fail over to the Rollernet mail server... and all this for free with the added bonus of backup MX! Thanks a lot for pointing out!
I'm learning a lot from this process, and I managed not to loose too much mail too...
It's a shame to find this out too late, meaning having an ISP already. Maybe there is another who can provide you wit ha better service and perhaps even for less. Here (the netherlands) new and better offers are made almost each month. Every ISP is trying to be the cheapest or provide the best service and they are trying hard to win new customers from competitors.
Actually, there's not really an alternative... In my area there's only two major ISP who offer broadband connection, one is cable and the other is DSL... that's about it. If you want static IP as well as port 25 and 80 open, you need to take the business plans, which are, you guessed it, much more expensive.
To me, it is kind of like a car seller removing the wheels of your new car, and then charging you an extra if you'd like to get them back... now that's a shame!
22 Sep 2006
Is this possible that Postfix is rejecting all incoming mail that's not originating from my ISP's SMTP server ?
For exemple, using Apple Mail in the same home network as my mail server I can send messages to every account I created and it is working fine. However, no one else can send me email. It is easy to test, I've not received any spam mail since I pointed my domain name on my mail server and I usually receive around 200 a day of those... :-) And i tested using an hotmail account, and the messages all bounced (however, the hotmail server is not very explicit as to why it bounced...).
Or maybe it is my router that's the problem? Then why can I send and receive mail using my ISP's SMTP server? I can see in the mail.log the connection from this server, but there's absolutly no trace of any email rejected nor any connection from another server... All there's in my log is traces from when I successfully connect to the Courier server.
22 Sep 2006
Serveur:~ dgrenier$ telnet serveur.domain.tld 143Trying ###.###.###.###...
Connected to serveur.domain.tld.
Escape character is '^]'.
Connection closed by foreign host.
Where serveur.domain.tld is my mail server domain in my MX Record.
The connection is closed automaticaly without I can do anything. It does not time out, as the above lines all appear at the same time.. don't know if you know what I mean...
I used to be able log into the server using this, but I don't remember having changed something that had to do with this...
EDIT: Well, well, well... I closed Apple Mail and then I could log using the former command... and if I opened it up, it'll stop working again... :? Also, once I'm logged using telnet, the server won't accept any command I issue, like "quit" it answer me:
quit NO Error in IMAP command received by server.22 Sep 2006
I went to my sister's home who use the same ISP as me. I sent an email to myself using her account and I received it, which kind of "fit" into my theory that currently, my postfix server only accept mail from my ISP's server. Or maybe it is my ISP who block incoming mail on port 25 that's not from their server?
Also, I did a
telnet mail.domain.tld 25at her home, and the connection timed out, but if I do the same with port 143 instead, it works (however I can not issue any command, see my post, above). Hmmmmm.... The same command with port 25 works at my home. The port is opened in my router and my G4's firewall as well.
Other noteworthy infos:
If I go on canyouseeme.org to test my ports I can see that my port 143 is opened. However, I can't see port 25 nor port 80. However, I'm sure port 80 isn't blocked since I've got a some websites on my server and they all work on port 80 just as they should. I've tested this outside my home, but only at place which use the same ISP as me... maybe that's why...
Anyway, I'll try to find more infos, and I'll keep you posted.
UPDATE: I had someone who's ISP is not the same as me check my website, and they doesn't work. Which make me think it's my ISP who's opening port 25 and 80, but just among their clients... is that possible? Stupid, if you ask me... I'll call them...
23 Sep 2006
23 Sep 2006
richard5 Escribió:
Well ports 25 and 80 on both my router and my G4 are opened. However, I'm pretty sure now that's because my ISP is blocking those ports for connections outside their network, which is stupid. That mean, someone that use the same ISP as me can connect to my websites using port 80 and can send me email on port 25, however, anybody that do not use my ISP (which mean 99,99% of the planet) cannot...
I'm currently looking for purchasing a MailHop Relay account from DynDNS in order to receive mail on port 2525 (which I'm sure is not blocked) as well as a backup MX server with ZoneEdit.
That sucks, but there's nothing I can do about it except complaining to my ISP...
About the modem, well, I don't know how I can check for this...
23 Sep 2006
It's a shame to find this out too late, meaning having an ISP already. Maybe there is another who can provide you wit ha better service and perhaps even for less. Here (the netherlands) new and better offers are made almost each month. Every ISP is trying to be the cheapest or provide the best service and they are trying hard to win new customers from competitors.
23 Sep 2006
richard5 Escribió:
Well, thank you! I remember reading your post about this, but did not pay attention 'cause I thought my port 25 was opened. But now, things are different.. I successfully setup their SMTP Redirection service and things are now working perfectly (well, until they don't... ).
Since I'm having a dynamic IP, I'm using Zoneedit for my DNS zone files. And since my ISP is only blocking port 25 for incoming connections outside their network, I've setup my primary MX Record to my server on port 25, and in case it fails (which will be the case for most incoming mail) it will fail over to the Rollernet mail server... and all this for free with the added bonus of backup MX! Thanks a lot for pointing out!
I'm learning a lot from this process, and I managed not to loose too much mail too...
Actually, there's not really an alternative... In my area there's only two major ISP who offer broadband connection, one is cable and the other is DSL... that's about it. If you want static IP as well as port 25 and 80 open, you need to take the business plans, which are, you guessed it, much more expensive.
To me, it is kind of like a car seller removing the wheels of your new car, and then charging you an extra if you'd like to get them back... now that's a shame!