[gentoo-user] Postfix receives OK, but won't send to internet

[gentoo-user] Postfix receives OK, but won't send to internet

[Sean Lester]

[-- Attachment #1: Type: text/plain, Size: 494 bytes --]

Greetings,
     I have a partially working Postfix installation.  It delivers
messages on the localhost.  It'll receive messages from the internet.
But, it will not send messages to any hosts on the internet.  I've
checked my iptables and port 25 is open both ways.  Also, each error
I've gotten has been that the target smtp server has "Timed Out."  Can
anyone point me in the right direction?  Postfix?  Firewall?  Host or
Domain Name resolution?  Other?  
 
Thank you for your time.

Sean
 

[-- Attachment #2: Type: text/html, Size: 1282 bytes --]

Re: [gentoo-user] Postfix receives OK, but won't send to internet

[John Jolet]

[-- Attachment #1: Type: text/plain, Size: 782 bytes --]


On Sep 22, 2005, at 3:06 PM, Sean Lester wrote:

> Greetings,
>      I have a partially working Postfix installation.  It delivers  
> messages on the localhost.  It'll receive messages from the  
> internet.  But, it will not send messages to any hosts on the  
> internet.  I've checked my iptables and port 25 is open both ways.   
> Also, each error I've gotten has been that the target smtp server  
> has "Timed Out."  Can anyone point me in the right direction?   
> Postfix?  Firewall?  Host or Domain Name resolution?  Other?
>
> Thank you for your time.
>
> Sean
>

at the command line, get the name of one of the servers that's timed  
out.  type "telnet servername 25" and see what happens.  maybe post a  
snippet from the maillog before and after the timeout message.

[-- Attachment #2: Type: text/html, Size: 1449 bytes --]

RE: [gentoo-user] Postfix receives OK, but won't send to internet

[Dave Nebinger]

[-- Attachment #1: Type: text/plain, Size: 1037 bytes --]

Your ISP may be blocking port 25 outside of their own network.

 

Most likely you need to configure postfix to relay mail through your ISP's
mail server rather than just use your own.

 

A lot of ISP's do this so they don't have to handle complaints about spam
originating from one of their users.

 

 

-----Original Message-----
From: Sean Lester [mailto:SFLester@sbcglobal.net] 
Sent: Thursday, September 22, 2005 4:07 PM
To: gentoo-user@lists.gentoo.org
Subject: [gentoo-user] Postfix receives OK, but won't send to internet

 

Greetings,

     I have a partially working Postfix installation.  It delivers messages
on the localhost.  It'll receive messages from the internet.  But, it will
not send messages to any hosts on the internet.  I've checked my iptables
and port 25 is open both ways.  Also, each error I've gotten has been that
the target smtp server has "Timed Out."  Can anyone point me in the right
direction?  Postfix?  Firewall?  Host or Domain Name resolution?  Other?  

 

Thank you for your time.


Sean

 


[-- Attachment #2: Type: text/html, Size: 4799 bytes --]

Re: [gentoo-user] Postfix receives OK, but won't send to internet

[Willie Wong]

On Thu, Sep 22, 2005 at 04:06:34PM -0400, Sean Lester wrote:
> Greetings,
>      I have a partially working Postfix installation.  It delivers
> messages on the localhost.  It'll receive messages from the internet.
> But, it will not send messages to any hosts on the internet.  I've
> checked my iptables and port 25 is open both ways.  Also, each error
> I've gotten has been that the target smtp server has "Timed Out."  Can
> anyone point me in the right direction?  Postfix?  Firewall?  Host or
> Domain Name resolution?  Other?  
>  

What is your setup like? Is the smtp time out happening between client
and postfix, or between postfix and a relay host? 

If the problem is that your mail client cannot send mail through
postfix, check /etc/postfix/main.cf, a few variables of interest might
be inet_interfaces, my_destination, mynetworks_style, etc. 

If the problem is between postfix and a relay host, perhaps your relay
transport is configured wrong?

What are the outputs in /var/log/mail/current after you try to send a
mail? (That question only applies if you know the problem happens
AFTER the mail gets passed from the client to postfix).

W

-- 
I couldn't repair your brakes, so I made your horn louder.
Sortir en Pantoufles: up 41 days, 23:47
-- 
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] Postfix receives OK, but won't send to internet

[Bryan Whitehead]

Many ISP's route all outgoing port 25 traffic to a black hole (as in they 
drop the packets not going to their smtp servers). You just need to 
configure postfix to push all your mail to your ISP's mail server.

On Thu, 22 Sep 2005, Sean Lester wrote:

> Greetings,
>     I have a partially working Postfix installation.  It delivers
> messages on the localhost.  It'll receive messages from the internet.
> But, it will not send messages to any hosts on the internet.  I've
> checked my iptables and port 25 is open both ways.  Also, each error
> I've gotten has been that the target smtp server has "Timed Out."  Can
> anyone point me in the right direction?  Postfix?  Firewall?  Host or
> Domain Name resolution?  Other?
>
> Thank you for your time.
>
> Sean
>
>

-- 
Bryan Whitehead
Email:driver@megahappy.net
-- 
gentoo-user@gentoo.org mailing list

RE: [gentoo-user] Postfix receives OK, but won't send to internet

[Sean Lester]

That's it.  I didn't think the ISP would block outgoing port 25.  

Thanks to all that responded.
Sean

-----Original Message-----
From: Bryan Whitehead [mailto:driver@megahappy.net] 
Sent: Thursday, September 22, 2005 5:00 PM
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] Postfix receives OK, but won't send to
internet


Many ISP's route all outgoing port 25 traffic to a black hole (as in
they 
drop the packets not going to their smtp servers). You just need to 
configure postfix to push all your mail to your ISP's mail server.

On Thu, 22 Sep 2005, Sean Lester wrote:

> Greetings,
>     I have a partially working Postfix installation.  It delivers 
> messages on the localhost.  It'll receive messages from the internet. 
> But, it will not send messages to any hosts on the internet.  I've 
> checked my iptables and port 25 is open both ways.  Also, each error 
> I've gotten has been that the target smtp server has "Timed Out."  Can

> anyone point me in the right direction?  Postfix?  Firewall?  Host or 
> Domain Name resolution?  Other?
>
> Thank you for your time.
>
> Sean
>
>

-- 
Bryan Whitehead
Email:driver@megahappy.net
-- 
gentoo-user@gentoo.org mailing list



-- 
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] Postfix receives OK, but won't send to internet

[Neil Bothwick]

[-- Attachment #1: Type: text/plain, Size: 671 bytes --]

On Thu, 22 Sep 2005 22:38:07 -0400, Sean Lester wrote:

> That's it.  I didn't think the ISP would block outgoing port 25.  

Unfortunately, quite a lot seem to do it. it's a lazy and lame "solution"
to spam trojans. Other ISPs forward all port 25 connections to their own
SMTP server, so your mail may not be delivered directly, but it is
delivered.

Even if port 25 isn't blocked or redirected, it is often worth using your
ISP's relay even if you have a broadband connection. Some ISP's block
incoming mail from IP ranges allocated to broadband users as an anti-spam
measure.


-- 
Neil Bothwick

Knock firmly but softly. I like soft firm knockers.

[-- Attachment #2: Type: application/pgp-signature, Size: 189 bytes --]

Re: [gentoo-user] Postfix receives OK, but won't send to internet

[John Jolet]

On Sep 23, 2005, at 3:31 AM, Neil Bothwick wrote:

> On Thu, 22 Sep 2005 22:38:07 -0400, Sean Lester wrote:
>
>
>> That's it.  I didn't think the ISP would block outgoing port 25.
>>
>
> Unfortunately, quite a lot seem to do it. it's a lazy and lame  
> "solution"
> to spam trojans. Other ISPs forward all port 25 connections to  
> their own
> SMTP server, so your mail may not be delivered directly, but it is
> delivered.
>
> Even if port 25 isn't blocked or redirected, it is often worth  
> using your
> ISP's relay even if you have a broadband connection. Some ISP's block
> incoming mail from IP ranges allocated to broadband users as an  
> anti-spam
> measure.
>
one unfortunately corollary to this is my isp doesn't block outgoing  
port 25, but DOES limit the number of emails you send via their  
relay.  I send a newsletter for my kids' school's pta and I could not  
do that if I couldn't send at least a chunk of them directly.
-- 
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] Postfix receives OK, but won't send to internet

[Mark Shields]

[-- Attachment #1: Type: text/plain, Size: 1231 bytes --]

A tad off-topic, but John, why don't you setup a mailing list and have the
PTA members join?

On 9/23/05, John Jolet <john@jolet.net> wrote:
>
>
> On Sep 23, 2005, at 3:31 AM, Neil Bothwick wrote:
>
> > On Thu, 22 Sep 2005 22:38:07 -0400, Sean Lester wrote:
> >
> >
> >> That's it. I didn't think the ISP would block outgoing port 25.
> >>
> >
> > Unfortunately, quite a lot seem to do it. it's a lazy and lame
> > "solution"
> > to spam trojans. Other ISPs forward all port 25 connections to
> > their own
> > SMTP server, so your mail may not be delivered directly, but it is
> > delivered.
> >
> > Even if port 25 isn't blocked or redirected, it is often worth
> > using your
> > ISP's relay even if you have a broadband connection. Some ISP's block
> > incoming mail from IP ranges allocated to broadband users as an
> > anti-spam
> > measure.
> >
> one unfortunately corollary to this is my isp doesn't block outgoing
> port 25, but DOES limit the number of emails you send via their
> relay. I send a newsletter for my kids' school's pta and I could not
> do that if I couldn't send at least a chunk of them directly.
> --
> gentoo-user@gentoo.org mailing list
>
>


--
- Mark Shields

[-- Attachment #2: Type: text/html, Size: 1666 bytes --]

RE: [gentoo-user] Postfix receives OK, but won't send to internet

[Dave Nebinger]

[-- Attachment #1: Type: text/plain, Size: 613 bytes --]

That would be the same problem; mailing lists still have to send mail from
the originating host.

 

John I'd suggest yahoo - they have a groups section where you can set up a
mailing list - they host the list, you just handle the posting.

 

 

 

A tad off-topic, but John, why don't you setup a mailing list and have the
PTA members join?

one unfortunately corollary to this is my isp doesn't block outgoing
port 25, but DOES limit the number of emails you send via their
relay.  I send a newsletter for my kids' school's pta and I could not 
do that if I couldn't send at least a chunk of them directly.
 


[-- Attachment #2: Type: text/html, Size: 3027 bytes --]

Re: [gentoo-user] Postfix receives OK, but won't send to internet

[John Jolet]

On Friday 23 September 2005 10:52, Dave Nebinger wrote:
> John I'd suggest yahoo - they have a groups section where you can set up a
> mailing list - they host the list, you just handle the posting.
yeah, but they put ads at the bottom and you have no control over what is in 
the ad...I'm a bit of a control-freak that way.  Eventually, I'll rewrite all 
this so it runs from our hosted web/ftp/mail space.
-- 
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] [OT] Postfix receives OK, but won't send to internet

[Willie Wong]

On Fri, Sep 23, 2005 at 09:31:34AM +0100, Neil Bothwick wrote:
> On Thu, 22 Sep 2005 22:38:07 -0400, Sean Lester wrote:
> 
> > That's it.  I didn't think the ISP would block outgoing port 25.  
> 
> Unfortunately, quite a lot seem to do it. it's a lazy and lame "solution"
> to spam trojans. Other ISPs forward all port 25 connections to their own
> SMTP server, so your mail may not be delivered directly, but it is
> delivered.
> 
> Even if port 25 isn't blocked or redirected, it is often worth using your
> ISP's relay even if you have a broadband connection. Some ISP's block
> incoming mail from IP ranges allocated to broadband users as an anti-spam
> measure.
> 

Ha. In my case, my ISP (Optimum Online) gets blacklisted from AOL and
a third of Taiwan (among other places). So sending mail through their
mail-server is like suicide. 

What I do is to set up an SSH tunnel to my University mail-server
and bounce my mail through port forwarding...

W
-- 
"Yan Can Cook" and George Lucas have a new
joint-venture web site, titled "eWok".
Sortir en Pantoufles: up 42 days, 16:37
-- 
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] Postfix receives OK, but won't send to internet

[kashani]

Neil Bothwick wrote:
> Unfortunately, quite a lot seem to do it. it's a lazy and lame "solution"
> to spam trojans. Other ISPs forward all port 25 connections to their own
> SMTP server, so your mail may not be delivered directly, but it is
> delivered.
> 
> Even if port 25 isn't blocked or redirected, it is often worth using your
> ISP's relay even if you have a broadband connection. Some ISP's block
> incoming mail from IP ranges allocated to broadband users as an anti-spam
> measure.

	I worked at probably the first nation wide US ISP to block port 25 to 
any address other than our mail servers. While it was sad to see the 
days of free and clear access to smtp dying there really wasn't much 
choice. Blocking outbound port 25 access did a fine job of stopping 
virus email that uses it's own stmp and spam hosts. While annoying to 
some users I don't think it's something you can really get around these 
days. Especially if you'd like to keep your IP space off trigger happy 
blacklists.

	However the above when implemented with port 25 inbound blocking sucks. 
We never did that. And I've seen ISP's require their domain in the From: 
line which breaks anyone's attempt at sending using their personal 
domain. We didn't do retarded things like that either.

kashani
-- 
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] Postfix receives OK, but won't send to internet

[Neil Bothwick]

[-- Attachment #1: Type: text/plain, Size: 760 bytes --]

On Fri, 23 Sep 2005 10:20:50 -0500, kashani wrote:

> 	I worked at probably the first nation wide US ISP to block port
> 25 to any address other than our mail servers. While it was sad to see
> the days of free and clear access to smtp dying there really wasn't
> much choice. 

There is, redirecting port 25 traffic. I discovered an ISP was doing this
by accident, when I switched to my backup ISP and forgot to change my
mail settings. It was only later that I realised mail was still going
out, despite my software being set to use a different ISP's server. So I
sent myself a mail and checked the headers, they were redirecting all
outgoing port 25 traffic to their own server.


-- 
Neil Bothwick

A day without sunshine is like night.

[-- Attachment #2: Type: application/pgp-signature, Size: 189 bytes --]

Re: [gentoo-user] Postfix receives OK, but won't send to internet

[kashani]

Neil Bothwick wrote:
> There is, redirecting port 25 traffic. I discovered an ISP was doing this
> by accident, when I switched to my backup ISP and forgot to change my
> mail settings. It was only later that I realised mail was still going
> out, despite my software being set to use a different ISP's server. So I
> sent myself a mail and checked the headers, they were redirecting all
> outgoing port 25 traffic to their own server.

	Hmmm that's not a bad plan, but I could some cases whee that might 
cause some issues. However overall it's probably better solution than 
just blocking port 25 access to anything, but your own servers.

	However back in '99 talking your dialup proviiders into tossing CPU 
eating ACL's onto their gear was hard enough let alone doing something 
complicated like hijacking smtp. I think even today it's hard to 
implement something like that unless you own most of the gear involved 
which isn't always the case.

kashani
-- 
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] Postfix receives OK, but won't send to internet

[Jonathan Wright]

Neil Bothwick wrote:
> Unfortunately, quite a lot seem to do it. it's a lazy and lame "solution"
> to spam trojans. Other ISPs forward all port 25 connections to their own
> SMTP server, so your mail may not be delivered directly, but it is
> delivered.

Having run a mail server from home, that's not the only problem to worry 
about any more - many ISPs/Mail Hosts now maintain (black)lists of IPs 
belonging to ADSL/Dial up Services (i.e. dynamically assigned IPs) which 
they'll refuse to accept e-mail from.

So, if your ISP doesn't block traffic, you'll end up being caught out by 
that aswell! :(

-- 
  Jonathan Wright                           ~ mail at djnauk.co.uk
                                            ~ www.djnauk.co.uk
--
  2.6.12-gentoo-r6-djnauk-b2 AMD Athlon(tm) XP 2100+
  up 12:04,  4 users,  load average: 4.46, 4.09, 3.68
--
  "This is what's wrong with the  media,"  I  said.  "You  show  a
  fringe position. You show one point of view. You're closing  the
  minds of the people by not showing them what the reality is."  I
  got up and walked out, and I've never been asked back again."

  "About a year ago I was a guest on a network news  show  in  New
  York. They were showing film clips from a gay pride parade  down
  Fifth Avenue, but they only decided to show the part with men in
  dresses and heels. I had seen the parade, and there were men  in
  business suits as well. After showing the film,  the  newsperson
  made  some  comments,  and  I  found  the   comments   extremely
  offensive."

                                                  ~ Kathleen Nolan
-- 
gentoo-user@gentoo.org mailing list