The router is sending IMAP queries to the address of the server but Im getting a "server refused connection on port 143" error when client tries to connect. Must be something simple I'm missing.
cheers
G5/dual 2.0 Macmini intel G4 powerbook,
Mac OS X (10.6.1),
OSX Server - 10.6
Nothing in the log implies nothing is getting to the server. That there's a mention of a router implies there's NAT and port forwarding here, and that can sometimes be (and from my own experience) misconfigured.
Can you get to the port from within the network?
From outside and via (I'm guessing) the firewall and NAT?
+$ telnet host 143+
+Trying host...+
+Connected to host.example.net.+
+Escape character is '^]'.+
+* OK Dovecot ready.+
^] +telnet> quit+
Can you get to Dovecot using the "universal" telnet client?
A behavior which implies that the SMTP server is not running or has failed, or that Dovecot is not running or has failed, or a firewall or "router" (most routers don't require configuration, which implies this is not "just" a router) or other such is blocking the traffic, or the environment is running vLANs or otherwise running with port-locked switches.
The following will display port activity for the two processes:
If the processes are active, look outward from these processes for a firewall or an outboard or network block.
If they're not active, then look inward for a problem with the local configuration or settings.
Or you can grep for :143 and for :25, which are the specific ports most commonly involved here.
Without rather more depth and without some background on the configuration and details from within the logs, there's not much that I can likely do here without a look at the box.
The software looks to be running, which implies IP routing or firewall or port connection problems.
The one thing that looks a little odd odd (and are not visible on the local test server) are the two sets of processes that are hanging off TCP port 25.
The stuff showing here:
+$ sudo lsof -i -P | grep -i ":25"+
And FWIW, adding the colon reduces the amount of "stuff that will be displayed from that command.
And as a side question, are you trying to implement a dual-NIC configuration?
Post up the contents of the following, and we'll have a look at your mail server setting:
Hi
This info from the system secure log might be useful;
Dec 15 12:59:26 adl sshd[52957]: /etc/sshd_config line 70: Unsupported option KerberosGetAFSToken
Dec 15 12:59:31 adl sshd[52963]: in pam_sm_authenticate(): Failed to determine Kerberos principal name.
Dec 15 12:59:32 adl sshd[52957]: error: PAM: authentication error for root from host234-16-static.49-88-b.business.telecomitalia.it via 192.168.1.3
"And as a side question, are you trying to implement a dual-NIC configuration?"
I dont think so (I dont understand the q) but I am trying both POP and IMAP if that is what you mean.
postconf as follows (its a lot longer than 10.5 version)
What does the output of the following command indicate:
$ sudo changeip -checkhostname
"And as a side question, are you trying to implement a dual-NIC configuration?"
Are there two IP network controllers here? If there are two or more network interface controllers (NICs), then there can be routing issues arising from that configuration, and that would be consistent with the behavior seen here.
Using a public DNS entry, public IP address and a private IP address doesn't work; this configuration is ambiguous given the host name doesn't match its translations, and Mac OS X Server won't be happy.
Consider using either the public DNS and the public IP address here (in a DMZ or otherwise), or consider use of a private DNS name and private static IP and port-mapping.
I tried to telnet to port 143 on adl.arina.biz from the outside and it connects just fine.
So I assume the issues you have are internal and could be related to internal DNS or routing.
Thanks guys I think you both are on the right track and hope you can still offer some help.
I decided to reinstall the server software - drastic measures. I have mail working mostly. The mail sends but partly receives. It has worked when I use a .mac account ( after a long time) and from a bigpond (ISP) account (again after a while) but if I use my work mail it bounces. (arina.biz)
So seems DNS is the problem. Maybe I could explain my arrangement. The domain - arina.biz is pointed to a server interstate (via Zoneedit) and points adl.arina.biz to my server.
So in the DNS settings, I have a primary zone of adl.arina.biz with Nameserver hostname of adl.arina.biz. and a machine (A) with name adl.arina.biz. and IP of the local IP
There is also the reverse zone.
Forward IP Address have the zoneedit NameServer IPs and the IPs of my ISPs Name servers.
Thats it. I can post some terminal output if it helps. thanks
Easiest: move your mail server to a public static IP address (preferably in a DMZ), and allow your ISP to serve its DNS using your ISP's DNS servers.
More involved: running your own DNS server(s).
Yet more involved: running your own public DNS.
Slightly Hairy: mixing your own DNS server(s) and your ISP DNS servers; where two groups of DNS servers are authoritative, and where you're needing (as is the case with SMTP and spam filters) correct rDNS.
The end result is we want the adl server to be a secondary backup to the main server so I thought I would go one step at a time and get the adl mail server working in its own right first then try to set up as secondary.
I am guessing the hairy mixed method is what we want.