Hello first of all i would like to wish all of you a merry christmas!!!! second, i have a problem with my mailserver. My server is a webserver/mail- and nameserver. ( all in one) Everything is working but, here it comes, i cannot recieve e-mail. I have registrered a domain and filed MX records, made zone files at my own nameserver with MX and a CNAME to my mailserver. when i use nmap all the necesary ports are open. even with Suse firwall 2 not started at boot i can't receive mail. How come? Any ideas are more than welcome. bye Ger
Put your domain name without 'www' in /etc/mail/sendmail.cw ----- Original Message ----- From: "Ger Lautenbach" <g.lautenbach@chello.nl> To: <suse-security@suse.com> Sent: Wednesday, December 26, 2001 12:51 AM Subject: [suse-security] sendmail
Hello
first of all i would like to wish all of you a merry christmas!!!!
second, i have a problem with my mailserver. My server is a webserver/mail- and nameserver. ( all in one) Everything is working but, here it comes, i cannot recieve e-mail. I have registrered a domain and filed MX records, made zone files at my own nameserver with MX and a CNAME to my mailserver.
when i use nmap all the necesary ports are open. even with Suse firwall 2 not started at boot i can't receive mail. How come?
Any ideas are more than welcome.
bye
Ger
Greetings, To mine knowledge, CNAME isn't allow for a mailserver .. http://www.sendmail.org/rfc/1123.html#5.2.2 5.2.2 Canonicalization: RFC-821 Section 3.1 The domain names that a Sender-SMTP sends in MAIL and RCPT commands MUST have been "canonicalized," i.e., they must be fully-qualified principal names or domain literals, not nicknames or domain abbreviations. A canonicalized name either identifies a host directly or is an MX name; it cannot be a CNAME. On Wed, 26 Dec 2001 09:51:38 +0100 Ger Lautenbach <g.lautenbach@chello.nl> wrote: -> Hello -> -> first of all i would like to wish all of you a merry christmas!!!! -> -> second, i have a problem with my mailserver. -> My server is a webserver/mail- and nameserver. ( all in one) -> Everything is working but, here it comes, i cannot recieve e-mail. -> I have registrered a domain and filed MX records, made zone files at my -> own nameserver with MX and a CNAME to my mailserver. -> -> when i use nmap all the necesary ports are open. even with Suse firwall 2 not -> started at boot i can't receive mail. How come? -> -> Any ideas are more than welcome. -> -> bye -> -> Ger Have A Nice Day! ================================== Remco Beekmans te Rotterdam (NL) ==================================
Hi,
To mine knowledge, CNAME isn't allow for a mailserver ..
the short version - the entry in your DNS is MX ... for your mailserver. For more security with your mailserver I suggest you to change to qmail (http://www.qmail.org) and use the tcpservermethod. With qmail you haven't the getroot-problems of sendmail because it uses different mailusers. Regards, Ruprecht ---------------------------------- E-Mail: rhelms@mayn.de Date: 26-Dec-2001 Time: 10:35:49 This message was sent by XFMail ----------------------------------
1) Make sure that your domain MX records are working (use dig MX yourdomain.com or nslookup -type=MX yourdomain.com). The name(s) returned should be the real internet names/addresses of your mailserver, not CNAMES as mentioned 2) If those records are correct, try telnetting to your mailserver to find out what is wrong there: telnet my.mailserver.address 25 you will get a helo prompt: type: helo your.workstation.address the mailserver will greet you nicely (;-)) type: mail from: email@otherdomain.com the server should accept the sender name type: rcpt to: someadress@yourdomain.com The server should accept this address as a valid delivery address (please make sure it's an existing address in your domain). If it doesn't, it'll give an error message that should give you some clue as to what is going wrong. Most likely your domain/server address isn't setup right in your sendmail.cw, or you might have a firewall blocking access (if you nmap from inside your own domain the ports may seem open, but they might not be accessible from the outside 3) Ignore gratuitous comments from others about mailservers that are "bigger, better, faster", etc etc etc. People will never agree on which one is best anyway. HTH Stefan rhelms@mayn.de wrote:
Hi,
To mine knowledge, CNAME isn't allow for a mailserver ..
the short version - the entry in your DNS is MX ... for your mailserver.
For more security with your mailserver I suggest you to change to qmail (http://www.qmail.org) and use the tcpservermethod. With qmail you haven't the getroot-problems of sendmail because it uses different mailusers.
Regards, Ruprecht
---------------------------------- E-Mail: rhelms@mayn.de Date: 26-Dec-2001 Time: 10:35:49
This message was sent by XFMail ----------------------------------
-- ================================================================ Stefan Suurmeijer University of Groningen, Rekencentrum P.O. Box 800, NL-9700 AV Groningen, The Netherlands tel: (+31) 50 363 8258 - fax: (+31) 50 363 3406 E-mail: S.M.Suurmeijer@rc.rug.nl E-mail: stefan@symbolica.nl (private) ================================================================ Quies custodiet ipsos custodes? (Who'll watch the watchmen?) #Define Question ((BB)||(!BB)) - William Shakespeare
To test if your DNS setup is corect. Do the following dig yourdomain.com mx if it comes up with your IP , than your DNS is working and you can move on to fixing Sendmail. Good Luck ----- Original Message ----- From: "Ger Lautenbach" <g.lautenbach@chello.nl> To: <suse-security@suse.com> Sent: Wednesday, December 26, 2001 12:51 AM Subject: [suse-security] sendmail
Hello
first of all i would like to wish all of you a merry christmas!!!!
second, i have a problem with my mailserver. My server is a webserver/mail- and nameserver. ( all in one) Everything is working but, here it comes, i cannot recieve e-mail. I have registrered a domain and filed MX records, made zone files at my own nameserver with MX and a CNAME to my mailserver.
when i use nmap all the necesary ports are open. even with Suse firwall 2 not started at boot i can't receive mail. How come?
Any ideas are more than welcome.
bye
Ger
two things to do, first put your domain name (domain.com) in /etc/mail/sendmail.cw (note, you may have to create that file) then restart sendmail. any other domains you want to accept mail for need to be listed in this file - example #domains i recieve mail for domain.com domain.net server.domain.com server.domain.net someotherdomain.org after making a change to this file, you will need to restart sendmail or kill -HUP it to get it to reread this file next, in /etc/hosts.allow add sendmail: ALL : ALLOW newer versions of sendmail (rpms anyway) are coming compiled with tcp wrapper support. On Wed, 26 Dec 2001, Ger Lautenbach wrote:
Hello
first of all i would like to wish all of you a merry christmas!!!!
second, i have a problem with my mailserver. My server is a webserver/mail- and nameserver. ( all in one) Everything is working but, here it comes, i cannot recieve e-mail. I have registrered a domain and filed MX records, made zone files at my own nameserver with MX and a CNAME to my mailserver.
when i use nmap all the necesary ports are open. even with Suse firwall 2 not started at boot i can't receive mail. How come?
Any ideas are more than welcome.
bye
Ger
-- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
Chad Whitten Network/Systems Administrator neXband Communications cwhitten@nexband.com
participants (6)
-
Alex Levit -
dog@intop.net -
Ger Lautenbach -
Remco Beekmans -
rhelms@mayn.de -
Stefan Suurmeijer