IMAP sever not working

[RA4444]

Hi, this is my first post so excuse me if I do something stupid.

I recently tried to setup a Mail Server at my Fedora install. I've installed and configured Dovecot, Roundcube and Postfix to work with SSL. But when I try to login via Roundcube I get a "Connection Error to IMAP server", I checked my log and this is what I've got

Code:

Sep 17 20:35:34 accesoriosazteca dovecot: imap-login: Fatal: Couldn't parse private ssl_key
Sep 17 20:35:34 accesoriosazteca dovecot: master: Error: service(imap-login): command startup failed, throttling
Sep 17 20:36:35 accesoriosazteca dovecot: imap-login: Fatal: Couldn't parse private ssl_key
Sep 17 20:36:35 accesoriosazteca dovecot: master: Error: service(imap-login): command startup failed, throttling

Any help will be highly appreciated

[6e617a696d]

Have you tried test IMAP yet?

telnet <your_imap_server>:143/993

143 - non ssl connection
993 - ssl connection

[RA4444]

Quote:

Originally Posted by 6e617a696d

Have you tried test IMAP yet?

telnet <your_imap_server>:143/993

143 - non ssl connection
993 - ssl connection

When I try to telnet port 993 (I've secured IMAP with SSL) I just get a "Conncetionwas closed by foreign host" error, I've added the rule to open port 993 in Iptables already

[6e617a696d]

1) Can you make sure that dovecot is listening port 993?
2) Which version of dovecot you're using?
3) Can you do iptables -L and make sure tcp port 993 is listed

[RA4444]

Quote:

Originally Posted by 6e617a696d

1) Can you make sure that dovecot is listening port 993?
2) Which version of dovecot you're using?
3) Can you do iptables -L and make sure tcp port 993 is listed

I am using Dovecot 2.01, and it is listening to port 993, I checked using lsof. But when I try iptables -L it doesn't show port 993 as open, but I've tried to many times, using the Terminal UI, the command and even manually editing my Iptables. What is wrong?

[6e617a696d]

have you tried to restart iptables? if so can you put string that opens port 993?

or just run:

iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 993 -j ACCEPT

this will definetelly will open port 993. Don't forget to run iptables-save if you planning to keep this rule permanently.

[RA4444]

Quote:

Originally Posted by 6e617a696d

have you tried to restart iptables? if so can you put string that opens port 993?

or just run:

iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 993 -j ACCEPT

this will definetelly will open port 993. Don't forget to run iptables-save if you planning to keep this rule permanently.

Thank you for the quick response, I think the problem is in Iptables, after executing the command and running iptables-save I see that port 993 is open in the output, but after running "service iptables restart" I get the following error:

Code:

iptables: Flushing firewall rules:                         [  OK  ]
iptables: Setting chains to policy ACCEPT: nat mangle filte[  OK  ]
iptables: Unloading modules:                               [  OK  ]
iptables: Applying firewall rules:                         [  OK  ]
iptables: Loading additional modules: nf_conntrack_ftp nf_c[FAILED]_netbios_ns

[6e617a696d]

cat /etc/sysconfig/iptables

[stevea]

You need to create a self-signed cert for dovecot (unless you are paying for a cert).

Code:

# --- dovecot certs ---
cd /etc/pki/dovecot
openssl genrsa -out ./private/dovecot.pem 1024
# this is for 1000 days
openssl req -new -x509 -key ./private/dovecot.pem -out ./certs/dovecot.pem -days 1000
<answer questions>
  Country Name (2 letter code) [XX]:
  State or Province Name (full name) []:
  Locality Name (eg, city) [Default City]:
  Organization Name (eg, company) [Default Company Ltd]:
  Organizational Unit Name (eg, section) []:
  Common Name (eg, your name or your servers hostname) []:
  Email Address []:

Then reboot or restart the dovecot service