Scalix Forums

Hi everyone,

I'm not sure if this goes in this forum or "Scalix Messaging Services"
I have a problem with a brand new scalix installation that I was hoping someone would help me with.

Eventually I plan on switching over to Postfix later this week, but I would first like to get this thing up and running with Sendmail the way its officially supported.

I installed last night and managed to get the server SENDING mail (I can send to outside domains and internally). The problems started when I started to try to reply or compose a message to my new scalix address from outside. I never get a failure returned, it just looks like it goes into nothingness. After some troubleshooting this morning, i found a neat little application from centralops.net which tests mail servers.

It turns out that my system is NOT responding on Port 25, at all. I've disabled firewall on both the server and the hardware firewall to the server for this testing. Sendmail appears to only be accepting mail from the loopback address, which after some reading appears to be correct??

Can anyone help?

I believe several people before you asked similar questions. You can do a search for more info. It may not be related to sendmail at all. For now try this:
1) from a computer other than the server on your network and from the outside
telnet scalixserver 25
telnet scalixserver 143
telnet scalixserver 465
telnet scalixserver 993
telnet scalixserver 5729 (connector port)

The above will confirm or not if all the SMTP/IMAP ports are operational and accessible

2) vi /etc/mail/local-hosts
your mail domain should be listed there
scalixserver.yourdomain should be there as well

3) dig -t MX yourdomain
your scalixserver should be listed beside the MX line

jaime.pinto wrote:I believe several people before you asked similar questions. You can do a search for more info. It may not be related to sendmail at all. For now try this:
1) from a computer other than the server on your network and from the outside
telnet scalixserver 25
telnet scalixserver 143
telnet scalixserver 465
telnet scalixserver 993
telnet scalixserver 5729 (connector port)

The above will confirm or not if all the SMTP/IMAP ports are operational and accessible

The only two that got a response were 143 and 5729. All others timed out or failed upon connection. All firewalls are disabled, all services should be running according to the scalix administration console.

2) vi /etc/mail/local-hosts
your mail domain should be listed there
scalixserver.yourdomain should be there as well

This was not setup. I added my domain and the server name. Do I need to reboot? When scalix installs do I have to manually add it to startup on boot or does the installation do that?

3) dig -t MX yourdomain
your scalixserver should be listed beside the MX line

This looked fine. What now?

/etc/mail/local-hosts

These entries missing is definitely something Scalix could work on to fix their installation script.

Ports 465 and 993 not responding only means the secure access part of the setup was not done.

I think you got to the point where you need to post more specific information on the OS you are using, as well as the scalix version you're installation. People with more experience on the OS you're using will be able to help you.

Red Hat Enterprise Linux 5
Scalix Version 11.1.0

Anybody? Any ideas at all? If I don't get something back I'm going to try the Postfix how to, and if that doesn't work I'll have to try a different solution I guess.

Well, here is a typical sendmail.mc on a RHE4 setup. You'll need to type "make" inside /etc/mail and restart sendmail after any changes. You probably should restart scalix too.
You should do a tail on /var/log/maillog, to ensure there are no syntax errors.
Notice setup includes SSL, domainkey and amavisd

########################################################
divert(-1)dnl
include(`/usr/share/sendmail-cf/m4/cf.m4')dnl
VERSIONID(`setup for Red Hat Linux')dnl
OSTYPE(`linux')dnl
define(`confDEF_USER_ID',``8:12'')dnl
define(`confTRUSTED_USER', `smmsp')dnl
define(`confTO_CONNECT', `1m')dnl
define(`confTRY_NULL_MX_LIST',true)dnl
define(`confDONT_PROBE_INTERFACES',true)dnl
define(`PROCMAIL_MAILER_PATH',`/usr/bin/procmail')dnl
define(`ALIAS_FILE', `/etc/aliases')dnl
define(`STATUS_FILE', `/var/log/mail/statistics')dnl
define(`UUCP_MAILER_MAX', `2000000')dnl
define(`confUSERDB_SPEC', `/etc/mail/userdb.db')dnl
define(`confPRIVACY_FLAGS', `authwarnings,novrfy,noexpn,restrictqrun')dnl
define(`confAUTH_OPTIONS', `A')dnl
define(`confMAX_MESSAGE_SIZE',`10240000')dnl
TRUST_AUTH_MECH(`EXTERNAL DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl
define(`confAUTH_MECHANISMS', `EXTERNAL GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl

define(`confCACERT_PATH', `/usr/share/ssl/certs')dnl
define(`confCACERT', `/usr/share/ssl/certs/ca-bundle.crt')dnl
define(`confSERVER_CERT', `/usr/share/ssl/certs/smtpsvr.cert')dnl
define(`confSERVER_KEY', `/usr/share/ssl/certs/smtpsvr.key')dnl
define(`confCLIENT_CERT', `/usr/share/ssl/certs/smtpsvr.cert')dnl
define(`confCLIENT_KEY', `/usr/share/ssl/certs/smtpsvr.key')dnl

define(`confTO_IDENT', `0')dnl
FEATURE(`no_default_msa',`dnl')dnl
FEATURE(`smrsh',`/usr/sbin/smrsh')dnl
FEATURE(`mailertable',`hash -o /etc/mail/mailertable.db')dnl
FEATURE(`virtusertable',`hash -o /etc/mail/virtusertable.db')dnl
FEATURE(redirect)dnl
FEATURE(always_add_domain)dnl
FEATURE(use_cw_file)dnl
FEATURE(use_ct_file)dnl
FEATURE(local_procmail,`',`procmail -t -Y -a $h -d $u')dnl
FEATURE(`access_db',`hash -T<TMPF> -o /etc/mail/access.db')dnl
FEATURE(`blacklist_recipients')dnl
FEATURE(local_procmail,`',`procmail -t -Y -a $h -d $u')dnl
FEATURE(`access_db',`hash -T<TMPF> -o /etc/mail/access.db')dnl
EXPOSED_USER(`root')dnl
DAEMON_OPTIONS(`Port=smtp,Addr=127.0.0.1, Name=MTA')dnl
DAEMON_OPTIONS(`Port=submission, Name=MSA, M=Ea')dnl
LOCAL_DOMAIN(`scalix.domain.com')dnl
MASQUERADE_AS(`domain.com')dnl
FEATURE(masquerade_envelope)dnl
MASQUERADE_DOMAIN(localhost)dnl
MASQUERADE_DOMAIN(localhost.localdomain)dnl
INPUT_MAIL_FILTER(`dk-filter', `S=inet:8891@scalix.domain.com')
MAILER(smtp)dnl
MAILER(procmail)dnl
MAILER(scalix)dnl
define(`MILTER', 1)dnl
INPUT_MAIL_FILTER(`milter-amavis', `S=local:/var/lib/amavis/amavisd-milter.sock, F=T, T=S:10m;R:10m;E:10m')dnl

Ok I'll give that a try. Two questions before I do that:

I was under the impression that scalix sets up sendmail to listen only to the loopback address and sets itself up to listen to SMTP requests coming in on Port 25. If that is the case, why is it that Scalix doesn't respond to a telnet test to scalix.server 25?

I can verify that it isn't listening with the warning daemons i'm getting back from outside servers, confirming that they cannot contact an SMTP server on Port 25 on scalix.server.

Second question, and maybe i'm just really missing this in the documentation, but how in the bloody h*** do I "Restart Scalix" without a reboot?

maeltor wrote:Second question, and maybe i'm just really missing this in the documentation, but how in the bloody h*** do I "Restart Scalix" without a reboot?

Yup, you are


stops the server


starts it.

Or use
which is a wrapper around these commands.

You can also stop & start individual server components - check the man pages for omon & omoff (man scalix-server is a good place to get started though, it's basically a toc for the system documentation & a good terminology reference)

As for your problems, what does



Show?

It should return a result for the loopback address showing sendmail listening & another for the address of your nic showing omsmtpd listening. If so try telnetting to to this latter address on port 25 - if you get a connection then your problem is not Scalix, if not do an



And post that output back.

lsof -n -i:25



omstat -a


I do get what appears to be a connection to mail.scalix.server 25. It doesn't respond to the typical commands via telnet.

The weird part is, i've disabled all my firewalls that I can see, and yet outside people can't seem to be able to make an SMTP connection to my server. Time for some more troubleshooting I guess.[/code]

maeltor wrote:I do get what appears to be a connection to mail.scalix.server 25. It doesn't respond to the typical commands via telnet.

Just to check we're on the same page, when you say 'typical commands', you mean SMTP commands like 'EHLO mail.example.com' & 'MAIL FROM: bar@domain.org'?

It's extremely unlikely that these won't work if the daemon is listening & you're telnetting from the same box.

Ok this makes more sense. I THOUGHT i could telnet from my workstation, but I can't it times out.

I CAN however telnet from the local machine (the scalix server) to port 25 and I can use the usual smtp commands.

So Scalix appears to be at the very least listening to requests coming in from the localhost. Could there be something other than a firewall blocking? Its obviously not working and I've turned off all firewalls (the machine is wide open right now), so i'm at a loss.

If you went with the defaults when you installed the OS you quite likely have an iptables firewall running. What does:



Say?

I did all I could to disable it.

Output:

Well, if you were getting connection refused I would say check your hosts.allow & hosts.deny files, but timeouts do suggest that the packets are just getting dropped on the floor by something.

I would run nmap on the box from your workstation, try a traceroute to the box to make sure the routing is the way you're expecting it & double-check that any intervening firewalls really are set to allow traffic to it.