[root@fred ~]# rpm -qf /etc/sysctl.d/disableipv6.conf
file /etc/sysctl.d/disableipv6.conf is not owned by any package
[root@fred ~]#
Michel-André
Ok remove it, probably restart the server, it should fix the unbound problem
[root@fred ~]# systemctl status unbound
● unbound.service - Unbound recursive Domain Name Server
Loaded: loaded (/usr/lib/systemd/system/unbound.service; enabled; vendor preset: disabled)
Active: active (running) since Mon 2020-08-10 21:59:11 CEST; 57s ago
Process: 1429 ExecStartPre=/usr/sbin/unbound-anchor -a /var/lib/unbound/root.key -c /etc/unbound/icannbundle.pem (code=exited, status=0/SUCCESS)
Process: 1415 ExecStartPre=/usr/sbin/unbound-checkconf (code=exited, status=0/SUCCESS)
Main PID: 2004 (unbound)
CGroup: /system.slice/unbound.service
└─2004 /usr/sbin/unbound -d
Aug 10 21:59:09 fred.fio01.com systemd[1]: Starting Unbound recursive Domain Name Ser.....
Aug 10 21:59:09 fred.fio01.com unbound-checkconf[1415]: unbound-checkconf: no errors i...f
Aug 10 21:59:11 fred.fio01.com systemd[1]: Started Unbound recursive Domain Name Server.
Aug 10 21:59:13 fred.fio01.com unbound[2004]: [2004:0] notice: init module 0: subnet
Aug 10 21:59:13 fred.fio01.com unbound[2004]: [2004:0] notice: init module 1: validator
Aug 10 21:59:13 fred.fio01.com unbound[2004]: [2004:0] notice: init module 2: iterator
Aug 10 21:59:13 fred.fio01.com unbound[2004]: [2004:0] info: start of service (unboun...).
Hint: Some lines were ellipsized, use -l to show in full.
[root@fred ~]#
[root@fred ~]# systemctl status rspamd
● rspamd.service - rapid spam filtering system
Loaded: loaded (/usr/lib/systemd/system/rspamd.service; enabled; vendor preset: enabled)
Drop-In: /usr/lib/systemd/system/rspamd.service.d
└─nethserver.conf
Active: active (running) since Mon 2020-08-10 21:59:11 CEST; 2min 24s ago
Docs: https://rspamd.com/doc/
Main PID: 2008 (rspamd)
CGroup: /system.slice/rspamd.service
├─2008 rspamd: main process; 0.1 msg/sec, 0.0 msg/sec spam, 0.1 msg/sec ham
├─2925 rspamd: fuzzy process (localhost:11335)
├─2926 rspamd: rspamd_proxy process (/var/run/rspamd/worker-proxy mode=0770 ...
├─2927 rspamd: controller process (127.0.0.1:11334)
└─2928 rspamd: hs_helper process
Aug 10 22:00:15 fred.fio01.com rspamd[2926]: <e1f470>; proxy; spf_plugin_callback: st...he
Aug 10 22:00:15 fred.fio01.com rspamd[2926]: <e1f470>; proxy; rspamd_redis_connected:...ed
Aug 10 22:00:15 fred.fio01.com rspamd[2926]: <e1f470>; proxy; rspamd_redis_connected:...ed
Aug 10 22:00:15 fred.fio01.com rspamd[2926]: <e1f470>; proxy; rspamd_stat_classifiers...ng
Aug 10 22:00:15 fred.fio01.com rspamd[2926]: <e1f470>; lua; neural.lua:473: cannot le...d)
Aug 10 22:00:15 fred.fio01.com rspamd[2926]: <e1f470>; lua; neural.lua:305: created n..._0
Aug 10 22:00:15 fred.fio01.com rspamd[2926]: <e1f470>; proxy; rspamd_task_write_log: ...ve
Aug 10 22:00:15 fred.fio01.com rspamd[2926]: <e1f470>; proxy; rspamd_protocol_http_re...al
Aug 10 22:00:15 fred.fio01.com rspamd[2926]: <663c10>; proxy; proxy_milter_finish_han...on
Aug 10 22:01:06 fred.fio01.com rspamd[2927]: <ozyqxj>; lua; bayes_expiry.lua:437: fin...td
Hint: Some lines were ellipsized, use -l to show in full.
[root@fred ~]#
Now, all looks good, I will check the email and let you know.
Michel-André
1 Like
Thanks Andy, you’re right, I got carried away.
this message was not for you
excuse me
1 Like
From webmail at Frederic, sending to my address:
Final-Recipient: rfc822; [michelandre@my-server-FQDN](mailto:my-emailaddress)
Action: undeliverable
Status: 4.4.1
Diagnostic-Code: X-Postfix; connect to mail.my-server-FQDN[my-IP]:25:
Connection timed out.
Sending from my sever to Frederic:
[<root@fio01.com>](mailto:root@fio01.com): host smtp.fio01.com[82.65.81.211]
said: 550 5.1.1 [<root@fio01.com>](mailto:root@fio01.com): Recipient address rejected: User unknown in virtual
mailbox table (in reply to RCPT TO command)
Still a little problem but it is different from the previous one.
Michel-André
root is a specific user I think, not sure it is reachable like this, use postmaster@fio01.com or admin@fio01.com if it exists
it is another problem that it needs to be found and different of unbound
Back to maillog when you want to send the email
It is getting a little bit better.
I can send an email from my server to fred and he receives it.
From fred, if I reply to the received email, it goes to the queue.
I wil check the logs.
Michel-André
Good evening and thank you, for your help of course.
stephdl, sorry I regret my outburst
Frederic
1 Like
Transfer the received mail to michelandre@my-mail-address
Nothing in messages.
Mail log:
<274f3c7a4c00b25a1534b4c828e14610>, rcpts: <michelandre@my-server-FQDN>, mime_rcpts: <michelandre@my-server-FQDN>, forced: no action "Matched map: TO_DOMAINS_WHITELIST"; score=nan (set by multimap), settings_id: authenticated
Aug 10 22:30:56 fred rspamd[2926]: <941a1f>; proxy; rspamd_protocol_http_reply: regexp statistics: 0 pcre regexps scanned, 0 regexps matched, 184 regexps total, 0 regexps cached, 0B scanned using pcre, 0B scanned total
Aug 10 22:30:56 fred opendkim[2644]: 10623C5D14: DKIM-Signature field added (s=default, d=fio01.com)
Aug 10 22:30:56 fred postfix/qmgr[2656]: 10623C5D14: from=<fred@fio01.com>, size=2498, nrcpt=1 (queue active)
Aug 10 22:30:56 fred rspamd[2926]: <b0c954>; proxy; proxy_milter_finish_handler: finished milter connection
Aug 10 22:30:56 fred postfix/smtpd[5732]: disconnect from localhost[127.0.0.1]
Aug 10 22:31:13 fred rspamd[2927]: <ozyqxj>; lua; bayes_expiry.lua:437: finished expiry step 33: 994 items checked, 238 significant (1 made persistent), 7 insignificant (0 ttls set), 1 common (0 discriminated), 748 infrequent (19 ttls set), 10 mean, 22 std
Aug 10 22:31:26 fred postfix/smtp[5606]: connect to mail.my-server-FQDN[my-IP-address]:25: Connection timed out
In last line: Connection timed out
Michel-André
could you use the port 587, eventually with a smarthost just to test for while
fred can send himself a message, receives it, replies to it by transfer to himself and receives it OK
But I cannot sent to my address:
The mail system
<[michelandre@my.FDN](mailto:michelandre@my.FDN)>:
host mail.fio01.com[192.168.1.1] said: 554 5.4.0
Error: too many hops (in reply to end of DATA command)
Michel-André
P.S. Taking a break for lunch…
Taking a break for sleeping 
Use a real smarthost, not a local account to relay, I suspect maybe a réputation issue.
Please other Time zone could you help
Thanks for your help, maybe it’s easier to reinstall everything.
I don’t understand. Everything was working 2 or 3 days ago, and I changed the IP 15 days ago.
Don’t waste your time with this,
Frederic
Maybe could help?
Salut Stéphane,
Andy made a smarthost.
It works perfectly: send and receive.
Michel-André
Hi all,
Does anyone know the ip: 185.234.217.151 from Ireland ?
It’s all over in the mail log.
Aug 11 01:13:56 fred postfix/smtpd[19512]: connect from unknown[185.234.217.151]
Aug 11 01:13:56 fred rspamd[2926]: <0f161c>; proxy; proxy_accept_socket: accepted milter connection from /var/run/rspamd/worker-proxy port 0
Aug 11 01:13:57 fred postfix/smtpd[19512]: lost connection after AUTH from unknown[185.234.217.151]
Aug 11 01:13:57 fred postfix/smtpd[19512]: disconnect from unknown[185.234.217.151]
Aug 11 01:13:57 fred rspamd[2926]: <0f161c>; milter; rspamd_milter_process_command: got connection from 185.234.217.151:62673
Aug 11 01:13:57 fred rspamd[2926]: <0f161c>; proxy; proxy_milter_finish_handler: finished milter connection
Michel-André
Probably a automated bot. Threat shield once they figure out an easy listing mechanism should be able to help mitigate these kind of attacks.