Topic: External web and email

[mnorman007]

Ive searched the forums for a few hours so I apologise if someone else has had the similar issue.
I havent done any recent updates lately but I am having problems receiving emails from outside of the internal network or access any of my websites being hosted.

I thought it may initially have been a DNS issue but it resolves fine to the correct ip address but I can't browse even to the ip.

I updated using yum and havent checke all the configs I could think of.
Does anybody have any ideas of some other things I could check or try?

[Stefano]

mnorman007

you forgot to tell us if your SMe is in server & gateway mode or server only mode and how is that server connected to the wan. is there any firewall? did you forward the right ports to your SME?

[Jáder]

I havent done any recent updates lately but I am having problems receiving emails from outside of the internal network or access any of my websites being hosted.

What kind of problem you´re experimenting?
The e-mail bounce back ?
They never arrive ?
Anything on logs ?
Do you have any spam tool enable on your server  (eg black lists)  ?
Any changes on your firewall ?
Can we try to access your server from outside (and your webmail) so we can see the error message ? Please provide URL.

PLEASE send us information... just "do not work" do not helpn anyone... we do not have crystal ball to see what you´re seeing on your server. To help you, first you must send us information.

Thanks

[mnorman007]

Thanks for the quick replies guys.

The server is in server & gateway mode and connects through lan to router with all ports forwarded to sme server.

No changes have been made to the firewall or server in the last 6 months til we realised the recent problem.
Ive checked the logs but can't seem to find any obvious errors.
The emails just dont seem to arrive, i havent had any bounce back with the tests Ive sent. The only ones to go through are from within the domain.

The url is warwickyfs.org.au

Appreciate the help and any ideas of things to check/try

Cheers,
Michael

[mnorman007]

I checked a few more log files like pop3 and there are common log lines like this:
listening on 0.0.0.0:pop3, starting.
listening on 0.0.0.0:25
There are also logs of local (192.168.*.*) connections but nothing recent that is external.
Does that seem right?
Cheers

[Stefano]

Code: [Select]

stefano@stefano-laptop:~$ telnet warwickyfs.org.au 25
Trying 203.217.15.132...
telnet: Unable to connect to remote host: No route to host
stefano@stefano-laptop:~$ telnet warwickyfs.org.au 80
Trying 203.217.15.132...
telnet: Unable to connect to remote host: No route to host
stefano@stefano-laptop:~$ telnet warwickyfs.org.au 443
Trying 203.217.15.132...
telnet: Unable to connect to remote host: No route to host


[cactus]

The server is in server & gateway mode and connects through lan to router with all ports forwarded to sme server.

That seems OK then.

No changes have been made to the firewall or server in the last 6 months til we realised the recent problem.

Did your provider perhaps change anything? Is you outside IP number still the same as in your DNS? I expect there might be an error there as I get the following when I try to telnet you external mail or http port:

Code: [Select]

[root@homer ~]# telnet warwickyfs.org.au 25
Trying 203.217.15.132...
telnet: connect to address 203.217.15.132: No route to host
[root@homer ~]#
It seems I am unable to connect to your SMTP port, which might be the root cause of your problem as mail servers will try to do the same when delivering email, although I can see your server is there as other ports can be reached.

Ive checked the logs but can't seem to find any obvious errors.

Since there is no connection initiated it will be hard to find anything in the logs, since nothing is written there.

The emails just dont seem to arrive, i havent had any bounce back with the tests Ive sent. The only ones to go through are from within the domain.

You are sending from an outside address when testing I presume? It can take a while as most mail servers are configured to keep retrying for some time, which might be up to a few days.

NB I just send you a test message on the admin account and it seems to go out OK:

Code: [Select]

2009-12-08 14:49:09.107530500 new msg 786461
2009-12-08 14:49:09.107546500 info msg 786461: bytes 920 from <jonathan@snetram.nl> qp 32167 uid 453
2009-12-08 14:49:09.778525500 starting delivery 811: msg 786461 to remote admin@warwickyfs.org.au
2009-12-08 14:49:09.778540500 status: local 0/10 remote 1/20
2009-12-08 14:49:28.732148500 delivery 811: success: 127.0.0.1_accepted_message./Remote_host_said:_250_2.0.0_Ok:_queued_as_6CC8198200/
2009-12-08 14:49:28.733323500 status: local 0/10 remote 0/20
2009-12-08 14:49:28.733333500 end msg 786461


[cactus]

I updated using yum and havent checke all the configs I could think of.
Does anybody have any ideas of some other things I could check or try?

And you followed up the advise to do this after the update?

Code: [Select]

signal-event post-upgrade
signal-event rebootYou are sure your server did reboot?

[mnorman007]

Wow, thanks guys!

Yes I did do the post-upgrade and reboot, no probs.

I did send from an outside address, same thing again.

Im unaware of any changes by my ISP.

Its weird that some of the ports connect through that domain (ie. ssh is working fine) but others arent. Any suggestions for where to look next?

Cheers

[Stefano]

Im unaware of any changes by my ISP.
Its weird that some of the ports connect through that domain (ie. ssh is working fine) but others arent. Any suggestions for where to look next?

I would ask your ISP if everything is ok and/or if sometihng is changed..

[cactus]

I would ask your ISP if everything is ok and/or if sometihng is changed..

My guess is they did. Most likely they block all access on port 25 to hosts on their network other than their own mail servers.

My provider does that as well, and they allow me to relay through their mailserver. Most of the times this can be solved by adding MX records to your DNS:

Code: [Select]

MX 10 your.mail.server
MX 20 mail.server.from.your.provider
This way outside mail servers will first try your server, fail as it is not allowed (so it seems) to access your mail server, they then will try the next priority MX record, you providers mail server which will most likely accept it.
Your providers mail server is most likely configured to access your mail server without problems as it is within their network and it will hand on the mail to your own mail server (as it should be able to do so).

[Stefano]

I've done a "little" scan to OP ip..

I would say that ISP block for sure port 25 and 80, but ssmtp, imaps, pop3s and other ports are still open

mnorman007, is your ADSL a residential one?

[Jáder]

Its weird that some of the ports connect through that domain (ie. ssh is working fine) but others arent. Any suggestions for where to look next?

Try to look at your ISP and your firewall logs.
As seen from here your domain have problems. I just can reach it by using Google DNS. All other DNS do not know about it!

This is nslookup from a server in Brazil:

Code: [Select]

Default server: 200.176.2.10
Address: 200.176.2.10#53
> warwickyfs.org.au
Server:         200.176.2.10
Address:        200.176.2.10#53

** server can't find warwickyfs.org.au: REFUSED

Default server: 8.8.8.8
Address: 8.8.8.8#53
> warwickyfs.org.au
Server:         8.8.8.8
Address:        8.8.8.8#53

Non-authoritative answer:
warwickyfs.org.au
        origin = ns1.everydns.net
        mail addr = hostmaster.warwickyfs.org.au
        serial = 1260280007
        refresh = 3600
        retry = 900
        expire = 1209600
        minimum = 3600
warwickyfs.org.au       nameserver = ns1.everydns.net.
warwickyfs.org.au       nameserver = ns2.everydns.net.
warwickyfs.org.au       nameserver = ns3.everydns.net.
warwickyfs.org.au       nameserver = ns4.everydns.net.
Name:   warwickyfs.org.au
Address: 203.217.15.132

Authoritative answers can be found from:



I think it´s time to ask help your ISP and double check your everyDNS config. When you update DNS it may take 72hours to propagate... so if you changed something there in this period... this can be your problem.

[mnorman007]

Thanks for the help.
It is a business account and they supply us with the ip so we can host our own mail.

I will get onto the ISP and see if they can resolve it from their end. It does make me feel a little better knowing that it wasnt a fault by me (that im aware of)

Thanks again.
Michael

[cactus]

NB I just send you a test message on the admin account and it seems to go out OK:

Code: [Select]

2009-12-08 14:49:09.107530500 new msg 786461
2009-12-08 14:49:09.107546500 info msg 786461: bytes 920 from <jonathan@snetram.nl> qp 32167 uid 453
2009-12-08 14:49:09.778525500 starting delivery 811: msg 786461 to remote admin@warwickyfs.org.au
2009-12-08 14:49:09.778540500 status: local 0/10 remote 1/20
2009-12-08 14:49:28.732148500 delivery 811: success: 127.0.0.1_accepted_message./Remote_host_said:_250_2.0.0_Ok:_queued_as_6CC8198200/
2009-12-08 14:49:28.733323500 status: local 0/10 remote 0/20
2009-12-08 14:49:28.733333500 end msg 786461


After first receiving this:

Code: [Select]

This is the mail system at host smtp07.online.nl.

####################################################################
# THIS IS A WARNING ONLY.  YOU DO NOT NEED TO RESEND YOUR MESSAGE. #
####################################################################

Your message could not be delivered for more than 4 hour(s).
It will be retried until it is 3 day(s) old.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

                   The mail system

<admin@warwickyfs.org.au>: connect to warwickyfs.org.au[203.217.15.132]:25:
    Connection timed out



I finally received this:

Code: [Select]

Hi. This is the qmail-send program at warwickcoc.org.au.
I'm afraid I wasn't able to deliver your message to the following addresses.
This is a permanent error; I've given up. Sorry it didn't work out.

<maillog@sparticus.warwickcoc.org.au>:
Recipient unknown
Did you forward mail to maillog in the past and deleted that user somehow?