Solved

Cannot receive mail on postfix server

Posted on 2010-08-16
8
978 Views
Last Modified: 2013-11-10
I have a postfix server that cannot receive mail. I can send mail out using the webadmin interface but when I reply the email does not get delivered.
I had errors in the email log about "smtpd_recipient_restrictions": specify at least one working instance.." I changed the main.cf file to fix these (See attached) but now I am getting emails in the root mailbox like the code attached (Snippet ID=926721).

Hope this is clear, please let me know if I can provide any further information.
Thanks for any help.
Out: 220 my.server.com ESMTP Postfix (Debian/GNU)
 In:  EHLO external.server
 Out: 250-my.server.com
 Out: 250-PIPELINING
 Out: 250-SIZE 10240000
 Out: 250-VRFY
 Out: 250-ETRN
 Out: 250-ENHANCEDSTATUSCODES
 Out: 250-8BITMIME
 Out: 250 DSN
 In:  MAIL FROM:<personal@email.com> SIZE=2207
 Out: 250 2.1.0 Ok
 In:  RCPT TO:<me@my.server.com>
 Out: 451 4.3.5 Server configuration error
 In:  DATA
 Out: 554 5.5.1 Error: no valid recipients
 In:  QUIT
 Out: 221 2.0.0 Bye

Open in new window

// main.cf
command_directory = /usr/sbin
daemon_directory = /usr/lib/postfix
program_directory = /usr/lib/postfix
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
setgid_group = postdrop
biff = no
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = $myhostname
mydestination = $myhostname, localhost
relayhost = 
mynetworks = 127.0.0.0/8
mailbox_command = 
mailbox_size_limit = 0
recipient_delimiter = +
append_dot_mydomain = no
broken_sasl_auth_clients = yes
smtpd_recipient_restrictions = 
	permit_mynetworks
	reject_unauth_destination
	check_relay_domains
smtpd_helo_required = yes
smtpd_helo_restrictions = 
	permit_mynetworks
	permit_sasl_authenticated
	reject_invalid_hostname
	reject_non_fqd_hostname
virtual_alias_maps = hash:/etc/postfix/virtual

Open in new window

0
Comment
Question by:kirkheaton25
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 2
8 Comments
 
LVL 9

Expert Comment

by:Barry Gill
ID: 33445951
what is the setting for your local_recipient_maps?

try this:
Execute:
# grep warning: /the/maillog/file

See http://www.postfix.org/DEBUG_README.html#logging 
0
 
LVL 9

Expert Comment

by:Barry Gill
ID: 33445979
comments should go on their own lines, not at the end of a line.
smtpd_client_restrictions =
    # allow my networks
    permit_mynetworks
    # stuff that is here
    check_client_access hash:/etc/postfix/access
    # stuff that is here
    reject_unknown_client
    permit
0
 
LVL 9

Expert Comment

by:Barry Gill
ID: 33446027
sorry, I should have read that a bit clearer. Rules are processed in order, so you may want to move the deny rule to the bottom.
smtpd_recipient_restrictions =
      permit_mynetworks
      check_relay_domains
        reject_unauth_destination

Also check your DNS response times as failure on the below 2 (with **) will also cause an error
smtpd_helo_restrictions =
      permit_mynetworks
      permit_sasl_authenticated
**      reject_invalid_hostname
**      reject_non_fqd_hostname
0
What Is Transaction Monitoring and who needs it?

Synthetic Transaction Monitoring that you need for the day to day, which ensures your business website keeps running optimally, and that there is no downtime to impact your customer experience.

 
LVL 1

Author Comment

by:kirkheaton25
ID: 33446190
Thanks, I am getting the following warnings -unknown smtpd restriction: "reject_non_fqd_hostname".
How would I check the DNS response times?
0
 
LVL 9

Accepted Solution

by:
Barry Gill earned 500 total points
ID: 33446215
FQD = FQDN
fully qualified domain name
0
 
LVL 9

Expert Comment

by:Barry Gill
ID: 33446218
sorry - even I missed that one :)
0
 
LVL 1

Author Closing Comment

by:kirkheaton25
ID: 33446311
Yep, that's me feeling pretty foolish! Many thanks, it's all working now.
0
 
LVL 9

Expert Comment

by:Barry Gill
ID: 33446448
lol, me too, but an easy mistake to make :)

remember the saying that if all the letters are there your mind will fill in the rest... so it looked complete, thank goodness for log files :)
0

Featured Post

How our DevOps Teams Maximize Uptime

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us. Read the use case whitepaper.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Granting full access permission allows users to access mailboxes present in their database. By giving full access permission one can open and read the content of any mailbox but cannot send emails from that mailbox.
The new Gmail Phishing Scam going around is surprising even the savviest of users with its sophisticated techniques.
Familiarize people with the process of utilizing SQL Server views from within Microsoft Access. Microsoft Access is a very powerful client/server development tool. One of the SQL Server objects that you can interact with from within Microsoft Access…
In this video we show how to create a Distribution Group in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >>…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question