Another Zimbra question

K

kakalpa

New Member
Aug 16, 2021
5
1
3
32
Hi,

Im sorry in advance coz this question has asked few times in the forums but i did not found a profound answer for it. simply i had a zimbra server which worked fine. implemented a proxmox in front of it and pointed my mx to the proxmox. config is as follows

zimbra : 192.168.101.6
proxmox : 192.168.101.2
gateway : 192.168.101.1

mails are coming to my proxmox no issue there but it is not going to the zimbra server from there. stuck in the queue after some time the mails will bounce

relaying.png
options.png

  • No transport
  • No TLS
  • Added 192.168.101.0/24 to Networks
  • added my domain sumXXXi.lk to relay domains to
  • internal port 26
  • external port 27

Zimbra config

zimbra.png

these are the MTA Trusted networks in Zimbra

127.0.0.1 192.168.101.6 192.168.101.2



the log is as follows


[/CODE]
Sep 03 20:00:54
bounce-mc.us12_50628921.606520-d0be2e77bd@mail226.atl271.mcdlv.net
samantha@xx.lk
accepted/deferred
Sep 03 20:01:19
members@slid.lk
thilangas@sumXXX.lk
accepted/deferred
Sep 03 20:01:19
members@slid.lk
jag@sumXXX.lk
accepted/deferred
Sep 3 20:01:13 pmg postfix/smtpd[3429]: connect from mail-eopbgr1310085.outbound.protection.outlook.com[40.107.131.85]
Sep 3 20:01:14 pmg postfix/smtpd[3429]: 1DD281806C2: client=mail-eopbgr1310085.outbound.protection.outlook.com[40.107.131.85]
Sep 3 20:01:14 pmg postfix/cleanup[3433]: 1DD281806C2: message-id=<KL1PR0601MB4081FF65DC2964711F4FF7A0A2CF9@KL1PR0601MB4081.apcprd06.prod.outlook.com>
Sep 3 20:01:16 pmg postfix/qmgr[3299]: 1DD281806C2: from=<members@slid.lk>, size=308814, nrcpt=2 (queue active)
Sep 3 20:01:16 pmg pmg-smtp-filter[3135]: 18073A613231B4094B8: new mail message-id=<KL1PR0601MB4081FF65DC2964711F4FF7A0A2CF9@KL1PR0601MB4081.apcprd06.prod.outlook.com>#012
Sep 3 20:01:16 pmg postfix/smtpd[3429]: disconnect from mail-eopbgr1310085.outbound.protection.outlook.com[40.107.131.85] ehlo=1 mail=1 rcpt=2 bdat=1 quit=1 commands=6
Sep 3 20:01:19 pmg postfix/qmgr[3474]: 1DD281806C2: skipped, still being delivered
Sep 3 20:01:19 pmg pmg-smtp-filter[3135]: 18073A613231B4094B8: SA score=1/5 time=3.650 bayes=undefined autolearn=no autolearn_force=no hits=DKIM_INVALID(0.1),DKIM_SIGNED(0.1),HTML_MESSAGE(0.001),KAM_DMARC_STATUS(0.01),KAM_SHORT(0.001),MISSING_HEADERS(1.207),RCVD_IN_DNSWL_NONE(-0.0001),RCVD_IN_MSPIKE_H2(-0.001),SPF_HELO_PASS(-0.001),SPF_PASS(-0.001),SUBJ_ALL_CAPS(0.5),URIBL_BLOCKED(0.001)
Sep 3 20:01:19 pmg postfix/smtpd[3502]: connect from localhost.localdomain[127.0.0.1]
Sep 3 20:01:19 pmg postfix/smtpd[3502]: B419A180740: client=localhost.localdomain[127.0.0.1], orig_client=mail-eopbgr1310085.outbound.protection.outlook.com[40.107.131.85]
Sep 3 20:01:19 pmg postfix/cleanup[3505]: B419A180740: message-id=<KL1PR0601MB4081FF65DC2964711F4FF7A0A2CF9@KL1PR0601MB4081.apcprd06.prod.outlook.com>
Sep 3 20:01:19 pmg postfix/qmgr[3474]: B419A180740: from=<members@slid.lk>, size=309978, nrcpt=2 (queue active)
Sep 3 20:01:19 pmg pmg-smtp-filter[3135]: 18073A613231B4094B8: accept mail to <jagath@sumXXX.lk> (B419A180740) (rule: default-accept)
Sep 3 20:01:19 pmg pmg-smtp-filter[3135]: 18073A613231B4094B8: accept mail to <thilangas@sumXXX.lk> (B419A180740) (rule: default-accept)
Sep 3 20:01:19 pmg postfix/smtpd[3502]: disconnect from localhost.localdomain[127.0.0.1] ehlo=1 xforward=1 mail=1 rcpt=2 data=1 commands=6
Sep 3 20:01:19 pmg pmg-smtp-filter[3135]: 18073A613231B4094B8: processing time: 3.745 seconds (3.65, 0.006, 0)
Sep 3 20:01:19 pmg postfix/lmtp[3434]: 1DD281806C2: to=<jagath@sumXXX.lk>, relay=127.0.0.1[127.0.0.1]:10024, delay=5.9, delays=2.2/0/0/3.8, dsn=2.5.0, status=sent (250 2.5.0 OK (18073A613231B4094B8))
Sep 3 20:01:19 pmg postfix/lmtp[3434]: 1DD281806C2: to=<thilangas@sumXXX.lk>, relay=127.0.0.1[127.0.0.1]:10024, delay=5.9, delays=2.2/0/0/3.8, dsn=2.5.0, status=sent (250 2.5.0 OK (18073A613231B4094B8))
Sep 3 20:04:19 pmg postfix/qmgr[3614]: 1DD281806C2: from=<members@slid.lk>, size=308814, nrcpt=2 (queue active)
Sep 3 20:04:19 pmg postfix/qmgr[3614]: 1DD281806C2: removed
Sep 3 20:04:19 pmg postfix/qmgr[3614]: B419A180740: skipped, still being delivered
Sep 3 20:06:19 pmg postfix/smtp[3516]: B419A180740: to=<jagath@sumaXXX.lk>, relay=192.168.101.6[192.168.101.6]:25, delay=300, delays=0.05/0.01/300/0, dsn=4.4.2, status=deferred (conversation with 192.168.101.6[192.168.101.6] timed out while receiving the initial server greeting)
Sep 3 20:06:19 pmg postfix/smtp[3516]: B419A180740: to=<thilangas@sumaXXX.lk>, relay=192.168.101.6[192.168.101.6]:25, delay=300, delays=0.05/0.01/300/0, dsn=4.4.2, status=deferred (conversation with 192.168.101.6[192.168.101.6] timed out while receiving the initial server greeting)
Sep 3 20:06:21 pmg postfix/qmgr[3614]: B419A180740: from=<members@slid.lk>, size=309978, nrcpt=2 (queue active)
Sep 3 20:11:21 pmg postfix/smtp[3725]: B419A180740: to=<jagath@sumXXX.lk>, relay=192.168.101.6[192.168.101.6]:25, delay=602, delays=301/0.04/300/0, dsn=4.4.2, status=deferred (conversation with 192.168.101.6[192.168.101.6] timed out while receiving the initial server greeting)
Sep 3 20:11:21 pmg postfix/smtp[3725]: B419A180740: to=<thilangas@xx.lk>, relay=192.168.101.6[192.168.101.6]:25, delay=602, delays=301/0.04/300/0, dsn=4.4.2, status=deferred (conversation with 192.168.101.6[192.168.101.6] timed out while receiving the initial server greeting)
Sep 3 20:24:32 pmg postfix/qmgr[4171]: B419A180740: from=<members@slid.lk>, size=309978, nrcpt=2 (queue active)
Sep 3 20:29:32 pmg postfix/smtp[4428]: B419A180740: to=<jagath@xx.lk>, relay=192.168.101.6[192.168.101.6]:25, delay=1693, delays=1393/0.04/300/0, dsn=4.4.2, status=deferred (conversation with 192.168.101.6[192.168.101.6] timed out while receiving the initial server greeting)
Sep 3 20:29:32 pmg postfix/smtp[4428]: B419A180740: to=<thilangas@xx.lk>, relay=192.168.101.6[192.168.101.6]:25, delay=1693, delays=1393/0.04/300/0, dsn=4.4.2, status=deferred (conversation with 192.168.101.6[192.168.101.6] timed out while receiving the initial server greeting)
Sep 3 20:59:32 pmg postfix/qmgr[4171]: B419A180740: from=<members@slid.lk>, size=309978, nrcpt=2 (queue active)
Sep 3 21:04:32 pmg postfix/error[4927]: B419A180740: to=<jagath@xx.lk>, relay=none, delay=3793, delays=3492/300/0/0.04, dsn=4.4.2, status=deferred (delivery temporarily suspended: conversation with 192.168.101.6[192.168.101.6] timed out while receiving the initial server greeting)
Sep 3 21:04:32 pmg postfix/error[4927]: B419A180740: to=<thilangas@xx.lk>, relay=none, delay=3793, delays=3492/300/0/0.06, dsn=4.4.2, status=deferred (delivery temporarily suspended: conversation with 192.168.101.6[192.168.101.6] timed out while receiving the initial server greeting)
Sep 3 21:25:01 pmg postfix/qmgr[5586]: B419A180740: from=<members@slid.lk>, size=309978, nrcpt=2 (queue active)
Sep 3 21:25:04 pmg postfix/qmgr[5719]: B419A180740: from=<members@slid.lk>, size=309978, nrcpt=2 (queue active)
Sep 3 21:26:43 pmg postfix/qmgr[5778]: B419A180740: skipped, still being delivered
Sep 3 21:30:05 pmg postfix/smtp[5726]: B419A180740: to=<jagath@xx.lk>, relay=192.168.101.6[192.168.101.6]:25, delay=5325, delays=5025/0.02/300/0, dsn=4.4.2, status=deferred (conversation with 192.168.101.6[192.168.101.6] timed out while receiving the initial server greeting)
Sep 3 21:30:05 pmg postfix/smtp[5726]: B419A180740: to=<thilangas@xx.lk>, relay=192.168.101.6[192.168.101.6]:25, delay=5325, delays=5025/0.02/300/0, dsn=4.4.2, status=deferred (conversation with 192.168.101.6[192.168.101.6] timed out while receiving the initial server greeting)
Sep 3 21:31:43 pmg postfix/qmgr[5778]: B419A180740: from=<members@slid.lk>, size=309978, nrcpt=2 (queue active)
Sep 3 21:35:18 pmg postfix/qmgr[755]: B419A180740: from=<members@slid.lk>, size=309978, nrcpt=2 (queue active)
Sep 3 21:40:18 pmg postfix/error[873]: B419A180740: to=<jagath@xx.lk>, relay=none, delay=5939, delays=5639/300/0/0.03, dsn=4.4.2, status=deferred (delivery temporarily suspended: conversation with 192.168.101.6[192.168.101.6] timed out while receiving the initial server greeting)
Sep 3 21:40:18 pmg postfix/error[873]: B419A180740: to=<thilangas@xx.lk>, relay=none, delay=5939, delays=5639/300/0/0.05, dsn=4.4.2, status=deferred (delivery temporarily suspended: conversation with 192.168.101.6[192.168.101.6] timed out while receiving the initial server greeting)
Sep 3 22:50:27 pmg postfix/qmgr[3048]: B419A180740: from=<members@slid.lk>, size=309978, nrcpt=2 (queue active)
Sep 3 22:55:27 pmg postfix/smtp[3616]: B419A180740: to=<jagath@xx.lk>, relay=192.168.101.6[192.168.101.6]:25, delay=10448, delays=10148/0.02/300/0, dsn=4.4.2, status=deferred (conversation with 192.168.101.6[192.168.101.6] timed out while receiving the initial server greeting)
Sep 3 22:55:27 pmg postfix/smtp[3616]: B419A180740: to=<thilangas@xx.lk>, relay=192.168.101.6[192.168.101.6]:25, delay=10448, delays=10148/0.02/300/0, dsn=4.4.2, status=deferred (conversation with 192.168.101.6[192.168.101.6] timed out while receiving the initial server greeting)
Sep 3 23:55:03 pmg postfix/qmgr[7330]: B419A180740: from=<members@slid.lk>, size=309978, nrcpt=2 (queue active)
Sep 4 00:00:04 pmg postfix/error[7573]: B419A180740: to=<jagath@xx.lk>, relay=none, delay=14324, delays=14024/300/0/0.05, dsn=4.4.2, status=deferred (delivery temporarily suspended: conversation with 192.168.101.6[192.168.101.6] timed out while receiving the initial server greeting)
Sep 4 00:00:04 pmg postfix/error[7573]: B419A180740: to=<thilangas@xx.lk>, relay=none, delay=14324, delays=14024/300/0/0.09, dsn=4.4.2, status=deferred (delivery temporarily suspended: conversation with 192.168.101.6[192.168.101.6] timed out while receiving the initial server greeting)
Sep 4 01:07:53 pmg postfix/qmgr[14563]: B419A180740: from=<members@slid.lk>, size=309978, nrcpt=2 (queue active)
Sep 4 01:07:54 pmg postfix/smtp[15183]: Untrusted TLS connection established to 192.168.101.6[192.168.101.6]:25: TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)
Sep 4 01:07:57 pmg postfix/smtp[15183]: B419A180740: to=<jagath@xx.lk>, relay=192.168.101.6[192.168.101.6]:25, delay=18397, delays=18393/1.4/0.07/2.4, dsn=4.3.5, status=deferred (host 192.168.101.6[192.168.101.6] said: 451 4.3.5 <members@slid.lk>: Sender address rejected: Server configuration problem (in reply to RCPT TO command))
Sep 4 01:07:57 pmg postfix/smtp[15183]: B419A180740: to=<thilangas@xx.lk>, relay=192.168.101.6[192.168.101.6]:25, delay=18397, delays=18393/1.4/0.07/2.5, dsn=4.3.5, status=deferred (host 192.168.101.6[192.168.101.6] said: 451 4.3.5 <members@slid.lk>: Sender address rejected: Server configuration problem (in reply to RCPT TO command))[/CODE]


proxmox post-fix main.cf

Code: 
# auto-generated by proxmox

compatibility_level = 2
command_directory = /usr/sbin
daemon_directory = /usr/lib/postfix/sbin
data_directory = /var/lib/postfix

# appending .domain is the MUA's job.
append_dot_mydomain = yes

smtpd_banner = $myhostname Welcome to SumXXX.lk
biff = no


delay_warning_time = 4h


best_mx_transport = local
message_size_limit = 10485760
mailbox_size_limit = 51200000

mydomain = localhost
myhostname = pmg.localhost

parent_domain_matches_subdomains = debug_peer_list,fast_flush_domains,mynetworks,permit_mx_backup_networks,qmqpd_authorized_clients,smtpd_access_maps

alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
mydestination = localhost, $myhostname
mynetworks = 127.0.0.0/8 [::1]/128 192.168.101.0/24 192.168.101.0/24 192.168.101.6/32

relay_domains = hash:/etc/pmg/domains

transport_maps = hash:/etc/pmg/transport




relay_transport = smtp:192.168.101.6:25






content_filter=scan:127.0.0.1:10024

mail_name = Proxmox


smtpd_helo_restrictions =


postscreen_access_list =
        permit_mynetworks,
        cidr:/etc/postfix/postscreen_access


postscreen_dnsbl_sites = b.barracudacentral.org,zen.spamhaus.org
postscreen_dnsbl_threshold = 1


postscreen_dnsbl_action = enforce
postscreen_greet_action = enforce

smtpd_sender_restrictions =
        permit_mynetworks
        reject_non_fqdn_sender
        check_client_access     cidr:/etc/postfix/clientaccess
        check_sender_access     regexp:/etc/postfix/senderaccess
        check_recipient_access  regexp:/etc/postfix/rcptaccess

smtpd_recipient_restrictions =
        permit_mynetworks
        reject_unauth_destination
        reject_non_fqdn_recipient
        check_recipient_access  regexp:/etc/postfix/rcptaccess check_sender_access  regexp:/etc/postfix/senderaccess check_client_access  cidr:/etc/postfix/clientaccess check_policy_service inet:127.0.0.1:10022 reject_unknown_recipient_domain reject_unverified_recipient


unverified_recipient_reject_code = 450


smtpd_client_connection_count_limit = 50
smtpd_client_connection_rate_limit = 0
smtpd_client_message_rate_limit = 0



smtp_tls_session_cache_database = btree:/var/lib/postfix/smtp_tls_session_cache
smtpd_tls_session_cache_database = btree:/var/lib/postfix/smtpd_tls_session_cache
lmtp_tls_session_cache_database = btree:/var/lib/postfix/lmtp_tls_session_cache




default_destination_concurrency_limit = 40
lmtp_destination_concurrency_limit = 20
relay_destination_concurrency_limit = 20
smtp_destination_concurrency_limit = 20
virtual_destination_concurrency_limit = 20

recipient_delimiter = +


I Have read the PMG Guide few times haven't found any thing same with the forums its 2:00 am now i did nothing but this today. any thing to point me at right direction is highly appreciated
 
Last edited:
Configure PMG internal and external port based on your zimbra setting.

internal: the port that Zimbra is listening for incoming mail.
external: the port that PMG is listening for incoming mail.
 
hata_ph said:
Configure PMG internal and external port based on your zimbra setting.

internal: the port that Zimbra is listening for incoming mail.
external: the port that PMG is listening for incoming mail.
Click to expand...
hm so in my case both have to be port 25

since my MX is configured directly to proxmox that is port 25 obviously.
and Zimbra listing to port 25 on SMTP by default my configuration should be both ports at 25?

so then what is the relay host port is for?

thanks in advance
 
If zimbra is using port 25, PMG need to another port like 26. You need to update your local network router/firewall accordingly with the port change.
Both cannot used the same port.

Another option is set PMG to use 25 but change zimbra port to 26.

Relay port is follow your zimbra port.
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back