1 (edited by nicolasfo 2019-07-03 18:03:17)

Topic: [RESOLVED] Allow mail proxy

==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
- iRedMail version (check /etc/iredmail-release): 0.9.9
- Deployed with iRedMail Easy or the downloadable installer? Installer
- Linux/BSD distribution name and version: Debian
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): MYSQL
- Web server (Apache or Nginx): NGINX
- Manage mail accounts with iRedAdmin-Pro? YES
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
====

Hello,
I have a new mail server. Before this mail server, there's a mail proxy (TrendMicro business solution) wich filters incoming mails from internet.
So externals senders send their mail to the proxy and the proxy sends mail to my server if the mail is OK.

When registering, I received this mail from TrendMicro :

2.  To receive mails with Hosted Email Security, follow this steps :
1)  Configure your firewall to accept incoming mails from Hosted Email Security :
    52.48.127.192/26
    52.58.62.192/26
    52.58.63.0/25

Wich resulted in this line in postfix/main.cf :

mynetworks = 127.0.0.1 52.48.127.192/26 52.58.62.192/26 52.58.63.0/25

BUT
When the server received a mail from external, I get this log :

Jul  3 10:14:26 mail postfix/submission/smtpd[4137]: connect from ioutemea7.hes.trendmicro.eu[52.58.62.223]
Jul  3 10:14:26 mail postfix/submission/smtpd[4137]: Anonymous TLS connection established from ioutemea7.hes.trendmicro.eu[52.58.62.223]: TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)
Jul  3 10:14:26 mail postfix/submission/smtpd[4137]: NOQUEUE: reject: RCPT from ioutemea7.hes.trendmicro.eu[52.58.62.223]: 554 5.7.1 <ioutemea7.hes.trendmicro.eu[52.58.62.223]>: Client host rejected: Access denied; from=<sender@my_domain.fr> to=<recipient@external_domain.fr> proto=ESMTP helo=<ioutemea7.hes.trendmicro.eu>
Jul  3 10:14:26 mail postfix/submission/smtpd[4137]: disconnect from ioutemea7.hes.trendmicro.eu[52.58.62.223] ehlo=2 starttls=1 mail=1 rcpt=0/1 data=0/1 rset=1 quit=1 commands=6/8

And the sender received an Undelivered Mail Returned to Sender mail.

What must I configure to make it work ?

Thanks

Nicolas

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2

Re: [RESOLVED] Allow mail proxy

You should configure the proxy server to forward to iRedMail server port 25, not 587 (submission).

3

Re: [RESOLVED] Allow mail proxy

It works.
Thanks a lot wink
Nicolas