6

Postfix server - does not receive external email

view full story
linux-howto

http://forums.fedoraforum.org – Hello all - I have been running an email server on a Red Hat 9 system for 5 years, and wanting to upgrade it to the latest Fedora OS. A few days ago it crashed, helping me decide on when to do it :) The server is running Fedora 11 (up-to-date). Clients are Fedora 11 and Windows XP machines using Thunderbird for accessing email. The server is running Postfix and Dovecot. Within my local network I can send and receive emails. I can also send email to addresses outside of my local network. The only problem is that I cannot receive --ANY-- email from outside the local network. I cannot think of anything aside from my firewall (iptables) or postfix config that could be causing the problem. Below are my iptables file, and the postfix main.cf changes that I have made. Any help greatly appreciated!!! iptables (the same file I was using on Red Hat version 9 with one minor deprecated syntax changed): *nat :PREROUTING ACCEPT [22:1894] :POSTROUTING ACCEPT [14:840] :OUTPUT ACCEPT [17:1356] -A POSTROUTING -o eth0 -j MASQUERADE COMMIT *filter :INPUT ACCEPT [28143:13743218] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [775083:69212122] :RH-Lokkit-0-50-INPUT - [0:0] -A INPUT -j RH-Lokkit-0-50-INPUT -A FORWARD -j RH-Lokkit-0-50-INPUT -A FORWARD -s 192.168.111.0/255.255.255.0 -j ACCEPT -A FORWARD -d 192.168.111.0/255.255.255.0 -j ACCEPT -A FORWARD ! -s 192.168.111.0/255.255.255.0 -j DROP -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 80 --tcp-flags SYN,RST,ACK SYN -j ACCEPT -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 25 --tcp-flags SYN,RST,ACK SYN -j ACCEPT -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 2049 --tcp-flags SYN,RST,ACK SYN -j ACCEPT -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 111 --tcp-flags SYN,RST,ACK SYN -j ACCEPT -A RH-Lokkit-0-50-INPUT -p udp -m udp --sport 2049 --dport 2049 -j ACCEPT -A RH-Lokkit-0-50-INPUT -p udp -m udp --sport 111 --dport 111 -j ACCEPT -A RH-Lokkit-0-50-INPUT -i eth0 -p udp -m udp --sport 67:68 --dport 67:68 -j ACCEPT -A RH-Lokkit-0-50-INPUT -i eth1 -p udp -m udp --sport 67:68 --dport 67:68 -j ACCEPT -A RH-Lokkit-0-50-INPUT -i lo -j ACCEPT -A RH-Lokkit-0-50-INPUT -i eth1 -j ACCEPT -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 0:1023 --tcp-flags SYN,RST,ACK SYN -j REJECT -A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 0:1023 -j REJECT --reject-with icmp-port-unreachable -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 6000:6009 --tcp-flags SYN,RST,ACK SYN -j REJECT -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 7100 --tcp-flags SYN,RST,ACK SYN -j REJECT COMMIT Changes to Postfix main.cf: myhostname = mail.jkalpers.com mydomain = jkalpers.com myorigin = $mydomain inet_interfaces = all mydestination = $myhostname, localhost.$mydomain, $mydomain, mail.$mydomain mynetworks = 192.168.111.0/8 127.0.0.0/8 relay_domains = (HowTos)