Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Cannot receive mail on postfix server

Posted on 2010-08-16
8
Medium Priority
?
1,049 Views
Last Modified: 2013-11-10
I have a postfix server that cannot receive mail. I can send mail out using the webadmin interface but when I reply the email does not get delivered.
I had errors in the email log about "smtpd_recipient_restrictions": specify at least one working instance.." I changed the main.cf file to fix these (See attached) but now I am getting emails in the root mailbox like the code attached (Snippet ID=926721).

Hope this is clear, please let me know if I can provide any further information.
Thanks for any help.
Out: 220 my.server.com ESMTP Postfix (Debian/GNU)
 In:  EHLO external.server
 Out: 250-my.server.com
 Out: 250-PIPELINING
 Out: 250-SIZE 10240000
 Out: 250-VRFY
 Out: 250-ETRN
 Out: 250-ENHANCEDSTATUSCODES
 Out: 250-8BITMIME
 Out: 250 DSN
 In:  MAIL FROM:<personal@email.com> SIZE=2207
 Out: 250 2.1.0 Ok
 In:  RCPT TO:<me@my.server.com>
 Out: 451 4.3.5 Server configuration error
 In:  DATA
 Out: 554 5.5.1 Error: no valid recipients
 In:  QUIT
 Out: 221 2.0.0 Bye

Open in new window

// main.cf
command_directory = /usr/sbin
daemon_directory = /usr/lib/postfix
program_directory = /usr/lib/postfix
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
setgid_group = postdrop
biff = no
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = $myhostname
mydestination = $myhostname, localhost
relayhost = 
mynetworks = 127.0.0.0/8
mailbox_command = 
mailbox_size_limit = 0
recipient_delimiter = +
append_dot_mydomain = no
broken_sasl_auth_clients = yes
smtpd_recipient_restrictions = 
	permit_mynetworks
	reject_unauth_destination
	check_relay_domains
smtpd_helo_required = yes
smtpd_helo_restrictions = 
	permit_mynetworks
	permit_sasl_authenticated
	reject_invalid_hostname
	reject_non_fqd_hostname
virtual_alias_maps = hash:/etc/postfix/virtual

Open in new window

0
Comment
Question by:kirkheaton25
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 2
8 Comments
 
LVL 9

Expert Comment

by:Barry Gill
ID: 33445951
what is the setting for your local_recipient_maps?

try this:
Execute:
# grep warning: /the/maillog/file

See http://www.postfix.org/DEBUG_README.html#logging 
0
 
LVL 9

Expert Comment

by:Barry Gill
ID: 33445979
comments should go on their own lines, not at the end of a line.
smtpd_client_restrictions =
    # allow my networks
    permit_mynetworks
    # stuff that is here
    check_client_access hash:/etc/postfix/access
    # stuff that is here
    reject_unknown_client
    permit
0
 
LVL 9

Expert Comment

by:Barry Gill
ID: 33446027
sorry, I should have read that a bit clearer. Rules are processed in order, so you may want to move the deny rule to the bottom.
smtpd_recipient_restrictions =
      permit_mynetworks
      check_relay_domains
        reject_unauth_destination

Also check your DNS response times as failure on the below 2 (with **) will also cause an error
smtpd_helo_restrictions =
      permit_mynetworks
      permit_sasl_authenticated
**      reject_invalid_hostname
**      reject_non_fqd_hostname
0
Learn Veeam advantages over legacy backup

Every day, more and more legacy backup customers switch to Veeam. Technologies designed for the client-server era cannot restore any IT service running in the hybrid cloud within seconds. Learn top Veeam advantages over legacy backup and get Veeam for the price of your renewal

 
LVL 1

Author Comment

by:kirkheaton25
ID: 33446190
Thanks, I am getting the following warnings -unknown smtpd restriction: "reject_non_fqd_hostname".
How would I check the DNS response times?
0
 
LVL 9

Accepted Solution

by:
Barry Gill earned 2000 total points
ID: 33446215
FQD = FQDN
fully qualified domain name
0
 
LVL 9

Expert Comment

by:Barry Gill
ID: 33446218
sorry - even I missed that one :)
0
 
LVL 1

Author Closing Comment

by:kirkheaton25
ID: 33446311
Yep, that's me feeling pretty foolish! Many thanks, it's all working now.
0
 
LVL 9

Expert Comment

by:Barry Gill
ID: 33446448
lol, me too, but an easy mistake to make :)

remember the saying that if all the letters are there your mind will fill in the rest... so it looked complete, thank goodness for log files :)
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Resolve DNS query failed errors for Exchange
The main intent of this article is to make you aware of ‘Exchange fail to mount’ error, its effects, causes, and solution.
Familiarize people with the process of utilizing SQL Server functions from within Microsoft Access. Microsoft Access is a very powerful client/server development tool. One of the SQL Server objects that you can interact with from within Microsoft Ac…
Familiarize people with the process of retrieving data from SQL Server using an Access pass-thru query. Microsoft Access is a very powerful client/server development tool. One of the ways that you can retrieve data from a SQL Server is by using a pa…
Suggested Courses

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question