Unable to receive emails. connections times out

I have 2 droplets at Digital Ocean, one is used to send emails, but I can’t receive emails on accounts.

sending emails is done with sendinblue and works nicely.

Thunderbird gives me a time-out when it wants to connect.
The webmail also won’t open, keeps loading. Maybe it is because I have set up a subdomains for cyber panel ( for each droplet) so I login like this panel1.domain.com and panel2.domain.com

Here is a part of the log:

Nov  9 11:41:23 srv33 postfix/smtpd[297065]: connect from sender4-of-o52.zoho.com[136.143.188.52]
Nov  9 11:41:24 srv33 postfix/smtpd[297065]: 7E8E578000E0: client=sender4-of-o52.zoho.com[136.143.188.52]
Nov  9 11:41:24 srv33 postfix/smtpd[297065]: warning: connect to /var/log/policyServerSocket: Permission denied
Nov  9 11:41:24 srv33 postfix/smtpd[297065]: warning: problem talking to server /var/log/policyServerSocket: Permission denied
Nov  9 11:41:25 srv33 postfix/smtpd[297065]: warning: connect to /var/log/policyServerSocket: Permission denied
Nov  9 11:41:25 srv33 postfix/smtpd[297065]: warning: problem talking to server /var/log/policyServerSocket: Permission denied
Nov  9 11:41:25 srv33 postfix/cleanup[297079]: 7E8E578000E0: message-id=<[email protected]>
Nov  9 11:41:25 srv33 postfix/qmgr[290892]: 7E8E578000E0: from=<[email protected]>, size=6016, nrcpt=1 (queue active)
Nov  9 11:41:26 srv33 postfix/pipe[297084]: 7E8E578000E0: to=<[email protected]>, relay=dovecot, delay=1.6, delays=1.5/0.01/0/0.05, dsn=2.0.0, status=sent (delivered via dovecot service)
Nov  9 11:41:26 srv33 postfix/qmgr[290892]: 7E8E578000E0: removed
Nov  9 11:41:26 srv33 postfix/smtpd[297065]: disconnect from sender4-of-o52.zoho.com[136.143.188.52] ehlo=2 starttls=1 mail=1 rcpt=1 data=1 quit=1 commands=7

Some time later, this pops up in the log

Nov  9 11:56:06 srv33 dovecot: imap-login: Disconnected: Aborted login by logging out (no auth attempts in 35 secs): user=<>, rip=87.236.176.102, lip=174.138.58.74, TLS, session=<APx4Vwjt8YBX7LBm>
Nov  9 11:56:08 srv33 dovecot: imap-login: Disconnected: Connection closed (no auth attempts in 0 secs): user=<>, rip=87.236.176.81, lip=174.138.58.74, TLS handshaking: Connection closed, session=<NWSaVwjt/8FX7LBR>
Nov  9 11:56:09 srv33 dovecot: imap-login: Disconnected: Connection closed (no auth attempts in 1 secs): user=<>, rip=87.236.176.224, lip=174.138.58.74, TLS handshaking: Connection closed, session=<3NyeVwjtm5ZX7LDg>
Nov  9 11:56:09 srv33 dovecot: imap-login: Disconnected: Connection closed (no auth attempts in 0 secs): user=<>, rip=87.236.176.110, lip=174.138.58.74, TLS handshaking: Connection closed, session=<l5KmVwjtucBX7LBu>
Nov  9 11:56:09 srv33 dovecot: imap-login: Disconnected: Connection closed: SSL_accept() failed: error:1408A0C1:SSL routines:ssl3_get_client_hello:no shared cipher (no auth attempts in 0 secs): user=<>, rip=87.236.176.179, lip=174.138.58.74, TLS handshaking: SSL_accept() failed: error:1408A0C1:SSL routines:ssl3_get_client_hello:no shared cipher, session=<npKpVwjt1ahX7LCz>
Nov  9 11:56:10 srv33 dovecot: imap-login: Disconnected: Connection closed (no auth attempts in 0 secs): user=<>, rip=87.236.176.27, lip=174.138.58.74, TLS handshaking: Connection closed, session=<qLivVwjtxadX7LAb>
Nov  9 11:56:10 srv33 dovecot: imap-login: Disconnected: Connection closed: SSL_accept() failed: error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown protocol (no auth attempts in 0 secs): user=<>, rip=87.236.176.252, lip=174.138.58.74, TLS handshaking: SSL_accept() failed: error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown protocol, session=<eJ+yVwjtobFX7LD8>
Nov  9 11:56:10 srv33 dovecot: imap-login: Disconnected: Connection closed (no auth attempts in 0 secs): user=<>, rip=87.236.176.132, lip=174.138.58.74, TLS handshaking: Connection closed, session=<GQi5VwjtY+RX7LCE>
Nov  9 11:56:11 srv33 dovecot: imap-login: Disconnected: Connection closed (no auth attempts in 1 secs): user=<>, rip=87.236.176.63, lip=174.138.58.74, TLS handshaking: Connection closed, session=<iwu9VwjtF4lX7LA/>
Nov  9 11:56:11 srv33 dovecot: imap-login: Disconnected: Connection closed (no auth attempts in 0 secs): user=<>, rip=87.236.176.223, lip=174.138.58.74, TLS handshaking: Connection closed, session=<bAfCVwjt7YtX7LDf>
Nov  9 11:56:11 srv33 dovecot: imap-login: Disconnected: Connection closed (no auth attempts in 0 secs): user=<>, rip=87.236.176.244, lip=174.138.58.74, TLS handshaking: Connection closed, session=<1p3GVwjt9bpX7LD0>

Welcome @mrEckendonk Happy you are here

  1. Disable all firewalls (if you have multiple e.g. CSF + Imunify etc)
  2. Reissue mail server SSL certificate on CyberPanel

Hey thanks, @josephgodwinke for looking into it.

I disabled the firewalls (digitalocean) and csf -x, recreated the SSL’s for
mail.xoommit.com and mail.xoommit.com but the issue won’t resolve

Here is the log again.

Nov  9 12:29:23 srv33 postfix/smtpd[317554]: C4AC478000E0: client=mail-oi1-x22d.google.com[2607:f8b0:4864:20::22d]
Nov  9 12:29:23 srv33 postfix/smtpd[317554]: warning: connect to /var/log/policyServerSocket: Permission denied
Nov  9 12:29:23 srv33 postfix/smtpd[317554]: warning: problem talking to server /var/log/policyServerSocket: Permission denied
Nov  9 12:29:24 srv33 postfix/smtpd[317554]: warning: connect to /var/log/policyServerSocket: Permission denied
Nov  9 12:29:24 srv33 postfix/smtpd[317554]: warning: problem talking to server /var/log/policyServerSocket: Permission denied
Nov  9 12:29:24 srv33 postfix/cleanup[317562]: C4AC478000E0: message-id=<[email protected]>
Nov  9 12:29:24 srv33 postfix/qmgr[317251]: C4AC478000E0: from=<[email protected]>, size=3604, nrcpt=1 (queue active)
Nov  9 12:29:24 srv33 postfix/pipe[317567]: C4AC478000E0: to=<[email protected]>, relay=dovecot, delay=1.2, delays=1.1/0.01/0/0.05, dsn=2.0.0, status=sent (delivered via dovecot service)
Nov  9 12:29:24 srv33 postfix/qmgr[317251]: C4AC478000E0: removed

Also the connections times out
image

You have milter issues can you run this command nano /etc/postfix/main.cf and CTRL+W milter_default_action post the value for that directive here

milter_default_action = accept

There is definitely an issue with mail configruation. Try an upgrade of CyberPanel see if it fixes any issues

I just started to use Cyberpanel, guess that I’m on the latest version.

image

Fix Postfix Service

Centos 7

yum --nogpg install https://mirror.ghettoforge.org/distributions/gf/gf-release-latest.gf.el7.noarch.rpm

Centos 8

dnf --nogpg install https://mirror.ghettoforge.org/distributions/gf/gf-release-latest.gf.el8.noarch.rpm

now install postfix

Centos 7

yum install --enablerepo=gf-plus -y postfix3 postfix3-ldap postfix3-mysql postfix3-pcre

Centos 8

dnf install --enablerepo=gf-plus postfix3 postfix3-mysql -y

Ubuntu 18 or Ubuntu 20

apt-get -y install postfix postfix-mysql

Centos 7

[root@srv33 certs]# yum --nogpg install https://mirror.ghettoforge.org/distributions/gf/gf-release-latest.gf.el7.n                                               oarch.rpm
Loaded plugins: copr, fastestmirror, priorities, product-id, search-disabled-repos, subscription-manager

This system is not registered with an entitlement server. You can use subscription-manager to register.

gf-release-latest.gf.el7.noarch.rpm                                                        | 8.0 kB  00:00:00
Examining /var/tmp/yum-root-XD3f8M/gf-release-latest.gf.el7.noarch.rpm: gf-release-7-12.gf.el7.noarch
/var/tmp/yum-root-XD3f8M/gf-release-latest.gf.el7.noarch.rpm: does not update installed package.
Error: Nothing to do
[root@srv33 certs]# yum install --enablerepo=gf-plus -y postfix3 postfix3-ldap postfix3-mysql postfix3-pcre
Loaded plugins: copr, fastestmirror, priorities, product-id, search-disabled-repos, subscription-manager

This system is not registered with an entitlement server. You can use subscription-manager to register.

Loading mirror speeds from cached hostfile
Could not retrieve mirrorlist http://mirrors.elrepo.org/mirrors-elrepo.el7 error was
12: Timeout on http://mirrors.elrepo.org/mirrors-elrepo.el7: (28, 'Connection timed out after 30001 milliseconds')
 * base: centos.mirror.constant.com
 * elrepo: linux-mirrors.fnal.gov
 * epel: ftp-nyc.osuosl.org
 * extras: mirrors.wcupa.edu
 * updates: mirrors.advancedhosters.com
digitalocean-agent                                                                                                                        | 3.3 kB  00:00:00
droplet-agent                                                                                                                             | 3.3 kB  00:00:00
gf-plus                                                                                                                                   | 2.9 kB  00:00:00
10 packages excluded due to repository priority protections
Package 2:postfix3-3.7.3-1.gf.el7.x86_64 already installed and latest version
Package 2:postfix3-ldap-3.7.3-1.gf.el7.x86_64 already installed and latest version
Package 2:postfix3-mysql-3.7.3-1.gf.el7.x86_64 already installed and latest version
Package 2:postfix3-pcre-3.7.3-1.gf.el7.x86_64 already installed and latest version
Nothing to do
[root@srv33 certs]#

Seems you are all setup so not missing or corrupt library.

Can it be that I used the latest kernel?

[root@srv33 certs]# uname -sr
Linux 6.0.7-1.el7.elrepo.x86_64
[root@srv33 certs]#

Sorry I see you use CentOs and I dont advice any of my users to use CentOs. I only run Ubuntu 20.04 and AlmaLinux 8 ONLY on my clients servers

Which email configratuons are you using to connect thunderbird with your mail server. Post a screenshot of https://SERVER_URL/email/listEmails

Maybe I should follow your advice and use AlmaLinux 8. AlmaLinux 9, is that also an option?
image

Choose AlmaLinux 8 not 9. Personally I prefer Ubuntu 20.04LTS less issues with CyberPanel.

Great, Will follow your preferred distro.

Will Cloudflare give me any issues? I changed port 8090 to 8443 to have my droplets on subdomains for easy access instead of an IP.

I use CloudFlare DNS + all other services they offer, with CyberPanel

About Ubuntu, the new LTS is okay or not? (22.04 LTS)

image

This topic was automatically closed 3 hours after the last reply. New replies are no longer allowed.