Resolved SMTP problem, what I'm doing wrong?

[Alaa Mansour]

dear users
here is everything that I could gather, my setup is:
Hostname: example.com
IP address: xx.xx.xx.xx
File: /etc/postfix/main.cf

# See /usr/share/postfix/main.cf.dist for a commented, more complete version


# Debian specific:  Specifying a file name will cause the first
# line of that file to be used as the name.  The Debian default
# is /etc/mailname.
#myorigin = /etc/mailname

smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
biff = no

# appending .domain is the MUA's job.
append_dot_mydomain = no

# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h

readme_directory = no

# TLS parameters
smtpd_tls_cert_file = /etc/postfix/postfix.pem
smtpd_tls_key_file = $smtpd_tls_cert_file
smtpd_use_tls = yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache

# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
# information on enabling SSL in the smtp client.

smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destin$
myhostname = mns.ps
alias_maps = hash:/etc/aliases, hash:/var/spool/postfix/plesk/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = localhost.localdomain, localhost.localdomain, localhost
relayhost =
File: /etc/postfix/main.cf                             

# See /usr/share/postfix/main.cf.dist for a commented, more complete version


# Debian specific:  Specifying a file name will cause the first
# line of that file to be used as the name.  The Debian default
# is /etc/mailname.
#myorigin = /etc/mailname

smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
biff = no

# appending .domain is the MUA's job.
append_dot_mydomain = no

# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h

readme_directory = no

# TLS parameters
smtpd_tls_cert_file = /etc/postfix/postfix.pem
smtpd_tls_key_file = $smtpd_tls_cert_file
smtpd_use_tls = yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache

# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
# information on enabling SSL in the smtp client.

smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destin$
myhostname = mns.ps
alias_maps = hash:/etc/aliases, hash:/var/spool/postfix/plesk/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = localhost.localdomain, localhost.localdomain, localhost
relayhost =
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
inet_protocols = all
mydomain = localdomain
virtual_mailbox_domains = $virtual_mailbox_maps, hash:/var/spool/postfix/plesk/virtual_dom$
virtual_alias_maps = $virtual_maps, hash:/var/spool/postfix/plesk/virtual
virtual_mailbox_maps = , hash:/var/spool/postfix/plesk/vmailbox
transport_maps = , hash:/var/spool/postfix/plesk/transport
smtpd_tls_security_level = may
smtp_tls_security_level = may
smtp_use_tls = no
smtpd_timeout = 3600s
smtpd_proxy_timeout = 3600s
disable_vrfy_command = yes
smtpd_sender_restrictions = check_sender_access hash:/var/spool/postfix/plesk/blacklists, $
smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated
smtp_send_xforward_command = yes
smtpd_authorized_xforward_hosts = 127.0.0.0/8 [::1]/128
smtpd_sasl_auth_enable = yes
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth$
virtual_mailbox_base = /var/qmail/mailnames
virtual_uid_maps = static:30
virtual_gid_maps = static:31
smtpd_milters = , inet:127.0.0.1:12768
sender_dependent_default_transport_maps = hash:/var/spool/postfix/plesk/sdd_transport_maps
virtual_transport = plesk_virtual
plesk_virtual_destination_recipient_limit = 1
mailman_destination_recipient_limit = 1
message_size_limit = 10240000
virtual_mailbox_limit = 0
smtpd_tls_ciphers = medium
smtpd_tls_mandatory_ciphers = medium
tls_medium_cipherlist = EECDH+AESGCM+AES128:EECDH+AESGCM+AES256:EDH+AESGCM+AES128:EDH+AESG$
smtpd_tls_mandatory_protocols = TLSv1.1 TLSv1.2
smtpd_tls_protocols = TLSv1.1 TLSv1.2
recipient_canonical_maps = tcp:127.0.0.1:12346
recipient_canonical_classes = envelope_recipient,header_recipient
authorized_flush_users =
authorized_mailq_users =
tls_ssl_options = no_compression
smtpd_tls_dh1024_param_file = /opt/psa/etc/dhparams2048.pem

File: /etc/hostname:

example.com

the problem is that no email that I send from this mailbox (example.com) or another mailbox existed on the same IP (example2.com) ca go successfully
it remains in the Queue list.







message body in the queue

Received: from webmail.example.com (localhost.localdomain [127.0.0.1])
    by mns.ps (Postfix) with ESMTPSA id 6EE9682C3A
    for <[email protected]>; Sun, 24 Mar 2019 15:37:27 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=example.com; s=default;
    t=1553438247; bh=g3zLYH4xKxcPrHOD18z9YfpQcnk/GaJedfustWU5uGs=; l=6;
    h=From:To:Subject;
    b=rI8WQTRI9DAs7MimTnCwcfGPZZKjYajUqnv4dbnFiGx883eMfagJMEzWrlbfuLOSW
     rSRr4MEJgLz+N/kNipW1ejob6mNkBmyoOoOOt/TrdeqdMc2kY8XqRCTzoAvR6i9OYS
     EfVDk7QdDYyPh7dlhUQLpEdzZYSAhzyfUlMDd/s4=
Authentication-Results: example.com;
        spf=pass (sender IP is 127.0.0.1) [email protected] smtp.helo=webmail.example.com
Received-SPF: pass (example.com: connection is authenticated)
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII;
 format=flowed
Content-Transfer-Encoding: 7bit
Date: Sun, 24 Mar 2019 15:37:27 +0100
From: [email protected]
To: [email protected]
Subject: test
Message-ID: <[email protected]>
X-Sender: [email protected]
User-Agent: Roundcube Webmail/1.3.6
X-PPP-Message-ID: <[email protected]>
X-PPP-Vhost: example.com

 

[Alaa Mansour]

systemctl status postfix.service

● postfix.service - LSB: Postfix Mail Transport Agent
   Loaded: loaded (/etc/init.d/postfix; bad; vendor preset: enabled)
  Drop-In: /run/systemd/generator/postfix.service.d
           └─50-postfix-$mail-transport-agent.conf
   Active: active (running) since Sun 2019-03-24 15:48:25 CET; 55min ago
     Docs: man:systemd-sysv-generator(8)
  Process: 14307 ExecStop=/etc/init.d/postfix stop (code=exited, status=0/SUCCESS)
  Process: 14280 ExecReload=/etc/init.d/postfix reload (code=exited, status=0/SUCCESS)
  Process: 14336 ExecStart=/etc/init.d/postfix start (code=exited, status=0/SUCCESS)
    Tasks: 7
   Memory: 5.0M
      CPU: 1.738s
   CGroup: /system.slice/postfix.service
           ├─14452 /usr/lib/postfix/sbin/master
           ├─14465 pickup -l -t fifo -u -c
           ├─14466 qmgr -l -t fifo -u
           ├─14748 tlsmgr -l -t unix -u -c
           ├─18726 anvil -l -t unix -u -c
           ├─18877 trivial-rewrite -n rewrite -t unix -u -c
           └─18878 smtp -n plesk-xx.xx.xx.xx- -t unix -o smtp_bind_address=xx.xx.xx.xx -o smtp_bind_address6= -o smtp_address_preference=i

 

[Bitpalast]

What do you mean by
"no email that I send from this mailbox (mns.ps) or another mailbox existed on the same IP (dovevo.com) ca go successfully it remains in the Queue list." ???

 

[Alaa Mansour]

What do you mean by
"no email that I send from this mailbox (example.com) or another mailbox existed on the same IP (example2.com) ca go successfully it remains in the Queue list." ???

when I try to send an email from ([email protected]) or ([email protected]) emails remain in queue list on the server

 

[Bitpalast]

According to the mail log you provide Hotmail does not want to talk to your server. I suggest to sign up with Microsoft SNDS to check your IP's status with Microsoft:
Sign in to your Microsoft account
It is well possible that the IP or an IP range that you are a part of has been blocked on their network.

 

[Alaa Mansour]

According to the mail log you provide Hotmail does not want to talk to your server. I suggest to sign up with Microsoft SNDS to check your IP's status with Microsoft:
Sign in to your Microsoft account
It is well possible that the IP or an IP range that you are a part of has been blocked on their network.

i have checked all blacklist sites on MX Lookup Tool - Check your DNS MX Records online - MxToolbox
so what I'm trying to say is that all my configurations are correct?
and I can't send to any other email provided because of Microsoft?

 

[Bitpalast]

Microsoft Sender Delivery Network is not accessible through ordinary blacklist checks. They do their own thing. You need to sign up for SDNS to get an insight what MS thinks about your MX.

 

[Alaa Mansour]

Microsoft Sender Delivery Network is not accessible through ordinary blacklist checks. They do their own thing. You need to sign up for SDNS to get an insight what MS thinks about your MX.

the status is normal and there is no data available on all the dates on the calendar.

 

[Alaa Mansour]

my hosting ionos.com has blocked port 25, I've done the request to unblock it, I don't know if it will help or not

 

[Bitpalast]

Yes, of course if port 25 is blocked, mails won't leave your system.

It's late and I cannot check the details now, but I see on MultiRBL.valli.org - Results of the query 82.165.98.97 that there are some issues with the host name. Maybe the data provided there helps you to further analyze the situation.

 

[Alaa Mansour]

Yes, of course if port 25 is blocked, mails won't leave your system.

It's late and I cannot check the details now, but I see on MultiRBL.valli.org - Results of the query 82.165.98.97 that there are some issues with the host name. Maybe the data provided there helps you to further analyze the situation.

Yesterday while i was searching for the error that hostname doesn’t match for SMTP
I have found that i should change server hostname to the DNS host name that the web hosting gave me, and it was in my case: xxxxxx.online-server.cloud
And i have updated also the PTR
I’m waiting until the port open
Then we will see

 

[Alaa Mansour]

Yes, of course if port 25 is blocked, mails won't leave your system.

It's late and I cannot check the details now, but I see on MultiRBL.valli.org - Results of the query 82.165.98.97 that there are some issues with the host name. Maybe the data provided there helps you to further analyze the situation.

Does Jails in IP adress banning affect how the emails flow also?
I have enabled them all.

 

[Alaa Mansour]

so the problem was the port 25 that was blocked,
now the emails go out:

can I fix these issues?
or they consider normal
its from [email protected]

SMTP (Port 25): Connection Established
- Time To Connect: 16 Seconds - Warning (Long connection time - should not affect delivery - but should be looked into.)
MAIL Submission (Port 587): Connection Established
- Time To Connect: 16 Seconds - Warning (Long connection time - should not affect delivery - but should be looked into.)
SMTP SSL (Port 465): Connection Established
- Time To Connect: 16 Seconds - Warning (Long connection time - should not affect delivery - but should be looked into.)