Postfix and Dovecot mailserver

[Nac88]

Hi. I did just notice a problem with my mailserver. I'm using Dovecot and Postfix and I can receive mails from hotmail and so on but I can't send to hotmail and so on.. when I type "tail /var/log/maillog" it looks like my server can't connect to hotmail when I trying to send a mail there. so.. I can't mail to any mailservers outside the local area or something like that. but I can mail to other people that is registred on my server..

anyone knows what the problems can be? Would be very greatful to get it to work to 100%


Regards

[Edit]:
I followed a guide that I found on google.
"http://www.howtoforge.com/installing_a_lamp_system_with_fedora_core_6"

[surferelf]

Could be a number of things. Are any non-hotmail accounts (that aren't local) able to receive mail from you? Do you have a dynamic IP address? Many mail systems reject mail from SMTP servers with dynamic IPs. You could get a static IP, or you can relay outgoing mail to your ISP's SMTP server. If you pick the latter, you get to learn about all kinds of fun stuff like SASL and TLS!

[Nac88]

No one can that has an non-hotmail can get a mail.. just local users or something like that O.o.. Yes I have dynamic IP adress but my domainholder can handle dynamic IP's and both postfix and dovecot is configed with my domain and not ip. does that matter? SASL and TLS is already in use for my mailserver since it stood in the guide that I had to use things like that.

[edit]: I can get mails from everyone use spray, hotmail, gmail or anything else but I can't just send to anyone outside my local network O.o

[surferelf]

If you can't send to anyone, it's probably not the dynamic IP thing. Are you getting bounces? If so, the headers on the bounces might help. Also, if you post your main.cf file, we may be able to see if you have any configuration issues.

[Nac88]

# SOFT BOUNCE

#soft_bounce = no

#in_flow_delay = 1s

#alias_maps = dbm:/etc/aliases
alias_maps = hash:/etc/aliases
#alias_maps = hash:/etc/aliases, nis:mail.aliases
#alias_maps = netinfo:/aliases

#alias_database = dbm:/etc/aliases
#alias_database = dbm:/etc/mail/aliases
#alias_database = hash:/etc/aliases, hash:/opt/majordomo/aliases

#recipient_delimiter = +

#home_mailbox = Mailbox
#home_mailbox = Maildir/

#mail_spool_directory = /var/mail
#mail_spool_directory = /var/spool/mail

#mailbox_command = /some/where/procmail
#mailbox_command = /some/where/procmail -a "$EXTENSION"

#mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp

# local_destination_recipient_limit = 300
# local_destination_concurrency_limit = 5

#mailbox_transport = cyrus

#fallback_transport = lmtp:unix:/var/lib/imap/socket/lmtp
#fallback_transport =

#luser_relay = $user@other.host
#luser_relay = $local@other.host
#luser_relay = admin+$local

#header_checks = regexp:/etc/postfix/header_checks

#fast_flush_domains = $relay_domains

#smtpd_banner = $myhostname ESMTP $mail_name
#smtpd_banner = $myhostname ESMTP $mail_name ($mail_version)

#local_destination_concurrency_limit = 2
#default_destination_concurrency_limit = 20

debug_peer_level = 2

#debug_peer_list = 127.0.0.1
#debug_peer_list = some.domain

debugger_command =
PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
xxgdb $daemon_directory/$process_name $process_id & sleep 5

sendmail_path = /usr/sbin/sendmail.postfix

newaliases_path = /usr/bin/newaliases.postfix

mailq_path = /usr/bin/mailq.postfix

setgid_group = postdrop

html_directory = no

manpage_directory = /usr/share/man

sample_directory = /usr/share/doc/postfix-2.3.3/samples

# readme_directory: The location of the Postfix README files.
#
readme_directory = /usr/share/doc/postfix-2.3.3/README_FILES
smtpd_sasl_local_domain =
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes
smtpd_recipient_restrictions = permit_sasl_authenticated,permit_mynetworks,reject _unauth_destination
inet_interfaces = all
smtpd_tls_auth_only = no
smtpd_use_tls = yes
smtp_use_tls = yes
smtp_tls_note_starttls_offer = yes
smtpd_tls_key_file = /etc/postfix/ssl/smtpd.key
smtpd_tls_cert_CAfile = /etc/postfix/ssl/smtpd.crt
smtpd_tls_loglevel = 1
smtpd_tls_recived_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
home_mailbox = Maildir/
mailbox_command =

Hope this wasn't too long :P don't really know how to copy it so this is it ... really hope you can help me.. I can send mail locally but not to et.c hotmail ._. just getting "Connection Timeout to blablabla"
Also did remove all the boring text, otherwise is would be too long reply x] hope this was right :)

[edit]: Sorry for the slow respond but was on vacation :)

[surferelf]

Ok. I have a couple of questions about your main.cf file, but if you could post the results of "postconf" it might answer them.

You say:

Quote:

just getting "Connection Timeout to blablabla"

Where are you getting this? What program is timing out? What do your logs say?

[danwaineo]

Hey, I'm not really an expert here, and I've only used sendmail. Maybe hotmail is reject mail from you. Maybe you need to forward your mail to your internet provider or to your domain server. In sendmail this is called a smart host. In postfix, it looks like you would add this to main.cf:

relayhost = (name or ip address of host)

[surferelf]

I agree with your recommendation that he should relay through his ISP's server (or get his own static IP), however, I don't think the SMTP request to Hotmail would timeout. It "should" be rejected with a 550 error explaining that they don't accept mail from dynamic IPs.

In fact, the only time I've seen a timeout was when I had a DNS problem. Hence, my inquiry as to whether he can ping Google.

[danwaineo]

Quote:

Originally Posted by surferelf

I agree with your recommendation that he should relay through his ISP's server (or get his own static IP), however, I don't think the SMTP request to Hotmail would timeout. It "should" be rejected with a 550 error explaining that they don't accept mail from dynamic IPs.

In fact, the only time I've seen a timeout was when I had a DNS problem. Hence, my inquiry as to whether he can ping Google.

Cool, it sounds like you know a lot more about this than I do. I've only set this type of system up once and that was a number of years ago. Maybe it's still worth a shot though. It's only adding one line to test if his ISP doesn't require any identification (other than his ip address).

[surferelf]

Quote:

Originally Posted by danwaineo

Cool, it sounds like you know a lot more about this than I do.

Just enough to be dangerous.

Quote:

Originally Posted by danwaineo

I've only set this type of system up once and that was a number of years ago. Maybe it's still worth a shot though. It's only adding one line to test if his ISP doesn't require any identification (other than his ip address).

You know, there's another reason why he should do this. I'll bet his ISP is blocking port 25.

[Nac88]

Quote:

Originally Posted by surferelf

Just enough to be dangerous.



You know, there's another reason why he should do this. I'll bet his ISP is blocking port 25.

nope, their not blocking port 25.. called them today and asked if I could run an own mail server on port 25 and they said I could do that and also they ain't blocking port 25. =/

but just one little question.. in the guide I followed they said I should be turning off the firewall and I did so, also restarted my server and the firewall was on again and I had to open port 25, 110 and 993 again for INPUT traffic.. should I do the same on OUTPUT? can it be that why my server can't send out?