[LUAU] help on port 25
hay guys. I have a funny problem and I just can't figure out. I just installed open suse 10.2 here is my problem on the suse box to test to see if port 25 is working i did the following telnet localhost 25 and it worked BUT. when I did the following telnet domain.com 25 I got connection refused. I check the services, dns and everything I can think of can someone point me in the right direction? thanks goku __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau
Re: [LUAU] help on port 25
On Fri, Nov 09, 2007 at 12:27:12AM -0800, goku ball z wrote: hay guys. I have a funny problem and I just can't figure out. I just installed open suse 10.2 here is my problem on the suse box to test to see if port 25 is working i did the following telnet localhost 25 and it worked BUT. when I did the following telnet domain.com 25 I got connection refused. I check the services, dns and everything I can think of can someone point me in the right direction? This is a simple one: domain.com has to resolve to a public address. Your MTA, whatever it is, is set up for safety reasons to bind only to the localhost IP address, and not to bind to the public IP addresses. Go look at the configuration files for the MTA and figure out what it needs to bind to the public IP address. -- Clifton -- Clifton Royston -- [EMAIL PROTECTED] / [EMAIL PROTECTED] President - I and I Computing * http://www.iandicomputing.com/ Custom programming, network design, systems and network consulting services ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau
Re: [LUAU] help on port 25
Clifton Royston wrote: On Fri, Nov 09, 2007 at 12:27:12AM -0800, goku ball z wrote: hay guys. I have a funny problem and I just can't figure out. I just installed open suse 10.2 here is my problem on the suse box to test to see if port 25 is working i did the following telnet localhost 25 and it worked BUT. when I did the following telnet domain.com 25 I got connection refused. I check the services, dns and everything I can think of can someone point me in the right direction? A few more notes. Try `iptables -L` and see if there are any iptables rules that might specify port 25. I still recommend a program called fwbuilder if you're not familiar with iptables. Or if you want to be defenseless, on FC you can do `service iptables stop`. I'm sure there's something similar on suse. Depending on how your routing works, it is possible that you are going out to your ISP before you go back to your own IP address. Many intelligent home ISP's block and filter port 25 on their network to help oppress the massive spam bots. Unless you have a commercial server-type agreement, it is unlikely that you will be able to have port 25 open, deliver mail, and not have your outgoing mail marked as spam. Often to use another ISP's smtp server, you need to configure your mail client to use port 465 or 587. Many domains block all mail from dynamic or home user IP addresses. You might try configuring your MTA to bind only to port 587 and only accept authenticated smtp if you want to use it as a local SMTP server. If you actually want to collect mail on that box, but your ISP doesn't want you to, you're pretty much screwed. But Clifton is probably right that if you didn't do enough configuring on your MTA, you probably just missed the part where you open it up to the public. If you're using sendmail, don't. The only reason to use sendmail is to put it on your resume for those companies that are stuck with it. The configuration belongs back in the early 70's. Even then, they probably could have written a better configuration file, but didn't. Postfix is excellent and easy to setup. I haven't looked into qmail, but anything is better than sendmail. -Eric Hattemer ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau
Re: [LUAU] help on port 25
hum... interesting... by the way I am using postfix... thanks I will look into it... Clifton Royston [EMAIL PROTECTED] wrote: On Fri, Nov 09, 2007 at 12:27:12AM -0800, goku ball z wrote: hay guys. I have a funny problem and I just can't figure out. I just installed open suse 10.2 here is my problem on the suse box to test to see if port 25 is working i did the following telnet localhost 25 and it worked BUT. when I did the following telnet domain.com 25 I got connection refused. I check the services, dns and everything I can think of can someone point me in the right direction? This is a simple one: domain.com has to resolve to a public address. Your MTA, whatever it is, is set up for safety reasons to bind only to the localhost IP address, and not to bind to the public IP addresses. Go look at the configuration files for the MTA and figure out what it needs to bind to the public IP address. -- Clifton -- Clifton Royston -- [EMAIL PROTECTED] / [EMAIL PROTECTED] President - I and I Computing * http://www.iandicomputing.com/ Custom programming, network design, systems and network consulting services ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau
Re: [LUAU] help on port 25
Quoting goku ball z [EMAIL PROTECTED]: telnet: connect to address 70.259.59.10: Connection refused Did you just make up that address for this email or are you really trying to connect to 70.259.59.10? Jon ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau
Re: [LUAU] help on port 25
sorry Jon, for security reason, I changed the ip address and the domain [EMAIL PROTECTED] wrote: Quoting goku ball z : telnet: connect to address 70.259.59.10: Connection refused Did you just make up that address for this email or are you really trying to connect to 70.259.59.10? Jon ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau
Re: [LUAU] help on port 25
On Fri, Nov 09, 2007 at 03:26:14PM -0800, goku ball z wrote: Hi dave, I am able to send mail out... thats no problem... =) but when sending mail back that is when I run into problems. the suse firewall has port 25 open and in the /etc/services the port 25 is open.. Also when I do a netstat -ant port 25 is in LISTEN mode. So I know that the port is ok... =) check this out.So when I use the domain name it does not work I just can't understand that hope you can help thanks test /home/goku telnet localhost 25 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. 220 test.example.com ESMTP Postfix test /home/goku telnet example.com 25 Trying 70.259.59.10... That is not a possible IP address; that's not what you've tried to configure on this machine, is it? -- Clifton -- Clifton Royston -- [EMAIL PROTECTED] / [EMAIL PROTECTED] President - I and I Computing * http://www.iandicomputing.com/ Custom programming, network design, systems and network consulting services ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau
Re: [LUAU] help on port 25
Quoting goku ball z [EMAIL PROTECTED]: sorry Jon, for security reason, I changed the ip address and the domain No problem, just wondering. Also, you do try to telnet using 'telnet host.domain.com 25' and not 'telnet domain.com 25',right? Jon ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau
Re: [LUAU] help on port 25
the ip I made up for security reason Clifton Royston [EMAIL PROTECTED] wrote: On Fri, Nov 09, 2007 at 03:26:14PM -0800, goku ball z wrote: Hi dave, I am able to send mail out... thats no problem... =) but when sending mail back that is when I run into problems. the suse firewall has port 25 open and in the /etc/services the port 25 is open.. Also when I do a netstat -ant port 25 is in LISTEN mode. So I know that the port is ok... =) check this out.So when I use the domain name it does not work I just can't understand that hope you can help thanks test /home/goku telnet localhost 25 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. 220 test.example.com ESMTP Postfix test /home/goku telnet example.com 25 Trying 70.259.59.10... That is not a possible IP address; that's not what you've tried to configure on this machine, is it? -- Clifton -- Clifton Royston -- [EMAIL PROTECTED] / [EMAIL PROTECTED] President - I and I Computing * http://www.iandicomputing.com/ Custom programming, network design, systems and network consulting services ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau
Re: [LUAU] help on port 25
yes I tried everthing telnet domain.com 25 telnet host.domain.com 25 telnet mail.domain.com 25 the only thing that works is telnet localhost 25 =( [EMAIL PROTECTED] wrote: Quoting goku ball z : sorry Jon, for security reason, I changed the ip address and the domain No problem, just wondering. Also, you do try to telnet using 'telnet host.domain.com 25' and not 'telnet domain.com 25',right? Jon ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau
Re: [LUAU] help on port 25
On 11/9/07, goku ball z [EMAIL PROTECTED] wrote: yes I tried everthing telnet domain.com 25 telnet host.domain.com 25 telnet mail.domain.com 25 the only thing that works is telnet localhost 25 =( My best guess is the default install has postfix only listening on localhost. Check the inet_interfaces option in main.cf. A `netstat -an | grep :25` or `lsof -ni TCP:25` will tell you if postfix is actually binding to more than localhost on tcp/25. Quoting goku ball z : sorry Jon, for security reason, I changed the ip address and the domain The problem with you masking your IP and domain name for security reasons creates problems for those trying to help you. If your DNS is wrong we cannot explicitly tell you what is wrong. Here is a very good Postfix book: http://www.amazon.com/Book-Postfix-State-Art-Transport/dp/1593270011/ and a good DNS book: http://www.amazon.com/DNS-BIND-5th-Cricket-Liu/dp/0596100574 and a good Linux book: http://www.amazon.com/Linux-Administration-Handbook-2nd-Nemeth/dp/0131480049 -Vince ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau
Re: [LUAU] help on port 25
hi vince, this is what I get when I do a netstat -an | grep 25 tcp0 0 127.0.0.1:250.0.0.0:* LISTEN tcp0 0 ::1:25 :::*LISTEN very strange. port 25 is fine.. when I do this nothing happens... lsof -ni TCP:25 Vince Hoang [EMAIL PROTECTED] wrote: On 11/9/07, goku ball z wrote: yes I tried everthing telnet domain.com 25 telnet host.domain.com 25 telnet mail.domain.com 25 the only thing that works is telnet localhost 25 =( My best guess is the default install has postfix only listening on localhost. Check the inet_interfaces option in main.cf. A `netstat -an | grep :25` or `lsof -ni TCP:25` will tell you if postfix is actually binding to more than localhost on tcp/25. Quoting goku ball z : sorry Jon, for security reason, I changed the ip address and the domain The problem with you masking your IP and domain name for security reasons creates problems for those trying to help you. If your DNS is wrong we cannot explicitly tell you what is wrong. Here is a very good Postfix book: http://www.amazon.com/Book-Postfix-State-Art-Transport/dp/1593270011/ and a good DNS book: http://www.amazon.com/DNS-BIND-5th-Cricket-Liu/dp/0596100574 and a good Linux book: http://www.amazon.com/Linux-Administration-Handbook-2nd-Nemeth/dp/0131480049 -Vince ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau
Re: [LUAU] help on port 25
On Fri, Nov 09, 2007 at 09:13:57PM -0800, goku ball z wrote: hi vince, this is what I get when I do a netstat -an | grep 25 tcp0 0 127.0.0.1:250.0.0.0:* LISTEN tcp0 0 ::1:25 :::*LISTEN very strange. port 25 is fine.. Right, this shows exactly what I pointed out in my first suggestion, and what Vince told you in the email you are replying to. See that 127.0.0.1:25? This means the MTA is explicitly configured to listen *only* on localhost. The ::1:25 is the IPv6 equivalent. If it were listening on all addresses, you'd see *:25 instead. Now that I know it's Postfix, you need to go find and edit your Postfix master.cf; configure it to listen on your public IP address. Then do a postfix stop and postfix start. Then go grep your mail server logs, most likely /var/log/maillog, because if you haven't got past this point there will most likely be other errors in the Postfix configuration you need to fix before you can actually accept mail. HTH. Oh, and do go buy the Postfix book Vince suggested. Patrick Koetter and Ralf know their stuff. -- Clifton -- Clifton Royston -- [EMAIL PROTECTED] / [EMAIL PROTECTED] President - I and I Computing * http://www.iandicomputing.com/ Custom programming, network design, systems and network consulting services ___ LUAU@lists.hosef.org mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau
