22 posts / 0 new
Last post
#1 Tue, 10/07/2008 - 17:12
tfunk

email issue

I am using a dyndns for that server and it works fine. When i go to send a email out from my server it response that its spam from the receaving server and doesnt send the email to the receaving server. the strange things that it work from the main account to gmail but when i send via another account it rejects the email. i can receive email just fine,but sending it not find. I would like to know how i can resolve this issue?

Thank you Shane<br><br>Post edited by: asparatu, at: 2008/10/07 17:12

Mon, 12/31/2007 - 03:53
tfunk

Here's the DNS file for the server I'm having trouble with. I'd be happy to provide more information if necessary.

Thanks.

----------------------------------------
$ttl 38400
@ IN SOA &lt;nameserver&gt;. root.&lt;nameserver&gt;. (
1199077321
10800
3600
604800
38400 )
&lt;domain&gt;. IN NS ns1.&lt;nameserver&gt;.
&lt;domain&gt;. IN A &lt;ip&gt;
www.&lt;domain&gt;. IN A &lt;ip&gt;
ftp.&lt;domain&gt;. IN A &lt;ip&gt;
m.&lt;domain&gt;. IN A &lt;ip&gt;
mail.&lt;domain&gt;. IN A &lt;ip&gt;
&lt;domain&gt;. IN MX 5 mail.&lt;domain&gt;.

Wed, 01/02/2008 - 12:51 (Reply to #2)
Joe
Joe's picture

Ok, I have worked out a work-around for this - in future, Virtualmin will link the /var/mail/user@domain and user-domain files together, which will resolve this problem.

--

Check out the forum guidelines!

Mon, 12/31/2007 - 03:59
tfunk

I found this site:
http://www.mxtoolbox.com/diagnostic.aspx

mail.&lt;domain&gt; returns this:
No connection could be made because the target machine actively refused it

Mon, 12/31/2007 - 10:42 (Reply to #4)
SteveHeinsch

firewall?

Mon, 12/31/2007 - 12:16
tfunk

Under Networking &gt; Linux Firewall in webmin, it says &quot;Allow all traffic&quot;

I have the feeling that I setup dns wrong.

Mon, 12/31/2007 - 13:59
tfunk

I'm not getting the following at mxtoolbox.com/diagnostic.aspx using mail.&lt;domain&gt;.

It seems to be working, but email is still not being delivered.

------------------------------------------
RESULT: mail.&lt;domain&gt;
Banner: &lt;domain&gt; ESMTP Sendmail 8.13.8/8.13.8; Mon, 31 Dec 2007 16:55:10 -0700 [16 ms]
Connect Time: 0 seconds - Good
Transaction Time: 0.078 seconds - Good
Relay Check: OK - This server is not an open relay.
Rev DNS Check: OK - &lt;ip&gt; resolves to &lt;rev-domain&gt;
GeoCode Info: Geocoding server is unavailable
Session Transcript:
HELO mxtoolbox.com - DIAGNOSTIC TEST - See http://www.mxtoolbox.com/Policy.aspx
501 5.0.0 Invalid domain name [16 ms]
HELO mxtoolbox.com
250 &lt;domain&gt; Hello [64.20.227.131], pleased to meet you [16 ms]
MAIL FROM: &lt;test@mxtoolbox.com&gt;
250 2.1.0 &lt;test@mxtoolbox.com&gt;... Sender ok [16 ms]
RCPT TO: &lt;test@mxtoolbox.com&gt;
550 5.7.1 &lt;test@mxtoolbox.com&gt;... Relaying denied. IP name lookup failed [64.20.227.131] [0 ms]
QUIT
221 2.0.0 &lt;domain&gt; closing connection [16 ms]

Mon, 12/31/2007 - 14:02
tfunk

My mail queue has also been filling with all the emails I've sent previously.

When I try to flush the mail queue, I get a transient error for all entries:
--------------------------
Running /var/spool/mqueue/lBVNlPkU025653 (sequence 1 of 34)
yahoo.com: Name server timeout
&lt;tyleranderson5@yahoo.com&gt;... Transient parse error -- message queued for future delivery
yahoo.com: Name server timeout
yahoo.com: Name server timeout
tyleranderson5@yahoo.com... Transient parse error -- message queued for future delivery
--------------------------

Mon, 12/31/2007 - 14:31
tfunk

I think I've narrowed it down to an ip lookup error. Here's what I get when I force the flushing of a message using:
sendmail -v -d8.20 -qI&lt;id&gt;

--------------------------------------
Running /var/spool/mqueue/lBVEgVOo009158 (sequence 1 of 1)
dns_getcanonname(paypal.com, trymx=1)
dns_getcanonname: trying paypal.com. (AAAA)
NO: errno=110, h_errno=2
dns_getcanonname: trying paypal.com. (A)
NO: errno=110, h_errno=2
dns_getcanonname: trying paypal.com. (MX)
NO: errno=110, h_errno=2
dns_getcanonname: trying paypal.com.net (AAAA)
NO: errno=0, h_errno=4
dns_getcanonname: trying paypal.com.net (A)
NO: errno=0, h_errno=4
dns_getcanonname: trying paypal.com.net (MX)
NO: errno=0, h_errno=4
paypal.com: Name server timeout
&lt;payment@paypal.com&gt;... Transient parse error -- message queued for future delivery
paypal.com: Name server timeout
dns_getcanonname(yahoo.com, trymx=1)
dns_getcanonname: trying yahoo.com. (AAAA)
NO: errno=110, h_errno=2
dns_getcanonname: trying yahoo.com. (A)
NO: errno=110, h_errno=2
dns_getcanonname: trying yahoo.com. (MX)
NO: errno=110, h_errno=2
dns_getcanonname: trying yahoo.com.net (AAAA)
NO: errno=0, h_errno=4
dns_getcanonname: trying yahoo.com.net (A)
NO: errno=0, h_errno=4
dns_getcanonname: trying yahoo.com.net (MX)
NO: errno=0, h_errno=4
yahoo.com: Name server timeout
tyleranderson5@yahoo.com... Transient parse error -- message queued for future delivery
--------------------------------------

Mon, 12/31/2007 - 14:33
tfunk

I'm also having other IP lookup related issues.

I can't install packages with yum due to &quot;Temporary failure in name resolution&quot;:
-------------------------------------
Loading &quot;installonlyn&quot; plugin
Setting up Install Process
Setting up repositories
http://software.virtualmin.com/rhel/5/i386/repodata/repomd.xml: [Errno 4] IOError: &lt;urlopen error (-3, 'Temporary failure in name resolution')&gt;
Trying other mirror.
Error: Cannot open/read repomd.xml file for repository: virtualmin
-------------------------------------

Man, this wasn't here when I first installed, I must have screwed something up.... Any help on this would be greatly appreciated.

Mon, 12/31/2007 - 14:37
tfunk

Yes, this is definitely the issue:

wget virtualmin.com yields:
----------------------------------------
--17:36:07-- http://virtualmin.com/
Resolving virtualmin.com... failed: Temporary failure in name resolution.
----------------------------------------

wget 70.86.4.238 yields:
----------------------------------------
--17:35:53-- http://70.86.4.238/
Connecting to 70.86.4.238:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: unspecified [text/html]
Saving to: `index.html'

[ &lt;=&gt; ] 9,392 --.-K/s in 0.008s

17:35:53 (1.16 MB/s) - `index.html' saved [9392]
----------------------------------------

I'm researching it as we speak. Any tips would be just great.
Tyler

Mon, 12/31/2007 - 14:48
tfunk

Interesting, adding:
nameserver 4.2.2.2
nameserver 4.2.2.1

to my /etc/resolv.conf file emptied the mail queue, and mail is now working perfectly, as is yum and wget.

My nameserver must be jacked....

Mon, 12/31/2007 - 14:59
tfunk

ok, feeling dumb right now.

Noobs: Lets not put recursion no; in our dns configuration file.

Incoming mail is slow to be received, probably from propogation of things. Outgoing mail is instant.

My guess is there was never a problem to begin with, and I just had to wait for the mail to finally make it's way to my server. This should probably be mentioned somewhere for noob's sake, but at least they have this somewhat thorough thread to help them along. ;)

This virtualmin is a sweet product. I'm surprised it doesn't cost more, and that my order number wasn't much higher than 420.

Mon, 12/31/2007 - 21:18
tfunk

ok, incoming email is also instant.

All who wonder, in Webmin &gt; Servers &gt; Sendmail Mail Server &gt; Sendmail Options (O), you MUST set the ports your server needs to listen on.

I originally just had the default 127.0.0.1 there. And so I had to add a duplicate line with Addr instead set to the IP for my shared server area. I also had to add another line with the IP set to a private IP for my SSL enabled website. The first time I did this is when about 30+ emails hit my mail queue.

I bet there's a way around this, possibly through DNS, but it's working now, and that's just great.

Crazy, now if things go wrong I can't get pissed at anyone but myself :). virtualmin rules!

Wed, 01/02/2008 - 12:35 (Reply to #14)
Joe
Joe's picture

Awesome troubleshooting thread, tfunk. Thanks for sharing the process! I know it's not as nice as having someone answer immediately with an easy solution, but this thread will certainly be helpful to others who happen to run into similar problems in the future. Sometimes, a process of elimination is the best way to solve problems. ;-)

--

Check out the forum guidelines!

Wed, 01/02/2008 - 11:34
Joe
Joe's picture

This won't happen if you use Maildir format, which we recommend. Maildir lives in the users home directory--which is the same for user-domain.tld and user@domain.tld, so there is no synchronization issue.

That said, the import probably ought to handle this better, even if you're using mbox format.

I'll ask Jamie to chime in on this thread.

--

Check out the forum guidelines!

Wed, 01/02/2008 - 12:06 (Reply to #16)
Joe
Joe's picture

I can see what is going on here - In order to support usernames with @ in them on Postfix systems, Virtualmin has to create two Unix users for each mailbox, one named user@domain.com and one named user-domain.com . For Maildir this works fine, as they share the same home directory .. but for mbox delivery to /var/mail it doesn't, as the mail files will not be the same!

--

Check out the forum guidelines!

Tue, 10/07/2008 - 17:22
Joe
Joe's picture

DNS is to blame. DNS is always to blame.

Be sure you have working reverse resolution for your IP address. Your host probably provides it...but make sure. The name it returns doesn't matter, as long as it returns something that also forward resolves.

e.g.:

[root@www ~]# host 70.86.4.238
238.4.86.70.in-addr.arpa domain name pointer ee.4.5646.static.theplanet.com.
[root@www ~]# host ee.4.5646.static.theplanet.com.
ee.4.5646.static.theplanet.com has address 70.86.4.238

If so, check to be sure the name that Postfix is sending in it's HELO/EHLO connection buildup is sane...something that resolves. Usually the headers in the bounced message will tell you this information.

SPF. Are you using it? Is it pointing to the right address?

Is your server in any DNS blacklists? Use any of the many RBL lookup tools out there to see if your IP has been blacklisted--either for being an open relay (in the past, or present), for being in a dynamic home use block, or for past spam behavior from your IP (you never know who might have had your IP before you).

--

Check out the forum guidelines!

Tue, 10/07/2008 - 17:25 (Reply to #18)
Joe
Joe's picture

Oh, wait. You just said you're using DynDNS. That'll be the problem. Dynamic IP ranges are pretty much universally considered a spammy trait. You can't run a reliable mail server from a dynamic IP. You'll need to forward through your ISPs mail server, or some other mail server that is on a dedicated IP.

--

Check out the forum guidelines!

Sat, 10/18/2008 - 21:21 (Reply to #19)
asparatu

ok.. thank you for your help.. so in order for me to send email i would have to register a domain. Another question i have.. can not just make my own domain on the server? but how would i the root servers to see it?

shane

Sat, 10/18/2008 - 21:49 (Reply to #20)
Joe
Joe's picture

<div class='quote'>so in order for me to send email i would have to register a domain. </div>

Where did you get that idea? I said, &quot;Dynamic IP ranges are pretty much universally considered a spammy trait. You can't run a reliable mail server from a dynamic IP.&quot; I didn't say anything about a domain. I'm saying you cannot send mail reliably from a dynamic IP--you need to send it through your ISPs SMTP server (if they offer on), or through a server on a static IP.

The &quot;what domain does the mail come from&quot; and &quot;how do I register and setup a domain&quot; questions are completely unrelated to sending mail from a server on a dynamic IP. ;-)

What I'm saying is: Find out how to send mail through your ISP, and setup the &quot;relayhost&quot; directive in Postfix on your server. Do not try to send mail directly from your server to the world at large. It will either fail to work entirely (if your ISP filters port 25) or it will work very unreliably (because a dynamic IP is extremely spammy).

--

Check out the forum guidelines!

Sun, 10/19/2008 - 16:53 (Reply to #21)
asparatu

I am sorry that I didn't explain myself better. I understand what you were saying.

What i wanted to know is, If was to have static IP Address and made a URL on my DNS server would it be seen from the outside world? or would I have to go to like Network Solutions to register it?

shane