> Message: 3 > Date: Wed, 09 Mar 2005 17:22:44 +0100 > From: Alexander Dalloz <ad+lists@xxxxxxxxx> > Subject: Re: fc3, sendmail, dovecot: cannot receive from outside > To: For users of Fedora Core releases <fedora-list@xxxxxxxxxx> > Message-ID: <1110385364.6070.77.camel@xxxxxxxxxxxxxxxxxxxxx> > Content-Type: text/plain; charset="us-ascii" > > Am Mi, den 09.03.2005 schrieb rado um 11:01: > > > Hi Alexander, > > ...sorry if I confused you; let me see if I can clarify. > > > > rivers-bend.com is my domain w/a public ip of 209.205.179.141 > > > > This box right here is rbmain1 [10.0.0.10] running on fc2 which is fully > > updated. It's running dns, sendmail 8.12.11-4.6, dovecot, and other > > things w/no problems. > > > > the box w/problems is rbmain2 [10.0.0.12] running on fc3 w/no updating > > yet. > > My intentions are to mirror 10.0.0.10 w/10.0.0.12. After it's all set > > up, I'll probably use rsync or something to sync up the 2 machines and > > if/when 10.0.0.10 ever goes down, just run a script on 10.0.0.12 and it > > will take over. > > > > Now, while setting 10.0.0.12 up, presently I shut down 10.0.0.10 because > > I don't have scripts in place yet. While 10.0.0.10 is down, dns in > > 10.0.0.12 takes over and works fine. > > > > Now the problem: using evolution, I can mail to myself i.e. from: > > rado@xxxxxxxxxxxxxxx to:rivers-bend.com and it will pop fine. > > I can send mail out to my hotmail acct: radopowder@xxxxxxxxxxx, and it > > is received...I reply from hotmail to rado@xxxxxxxxxxxxxxx, and it never > > comes. Mind you this is in the fc3 sys, [10.0.0.12]. > > ok, let's shut down 10.0.0.12 now. > > > > bring up 10.0.0.10... that's this box. the email reply that I was trying > > to receive in 10.0.0.12 shows up here in 10.0.0.10. > > > > Somehow mail is being stopped from being received on 10.0.0.12. > > Ok, now I understand. > > > here's a list of my open ports: > > > > [root@rbmain2 ~]# nmap -sT rbmain2 > > > > Starting nmap 3.70 ( http://www.insecure.org/nmap/ ) at 2005-03-09 08:05 > > CST > > Interesting ports on rbmain2.rivers-bend.com (10.0.0.12): > > (The 1654 ports scanned but not shown below are in state: closed) > > PORT STATE SERVICE > > 22/tcp open ssh > > 25/tcp open smtp > > 53/tcp open domain > > 110/tcp open pop3 > > 111/tcp open rpcbind > > 113/tcp open auth > > > > Nmap run completed -- 1 IP address (1 host up) scanned in 0.283 seconds > > Seems to be an nmap run on the host itself. To get really counting > output you should port scan from a different host. Else iptables could > block port 25 though. > > > Don't forget, Alexander, 10.0.0.12 is only up while I'm working on it. > > when I need to check email like this msg list, I have to shut down > > 10.0.0.12 and bring up this machine, 10.0.0.10. I also monitor my > > hotmail acct. regularly radopowder@xxxxxxxxxxx which could be used for > > testing communication. That's always up. > > > John Rose > > I guess your gateway forwarding port 25 to the internal host - 10.0.0.10 > or 10.0.0.12 - is not changed when the first one is off and thus the > traffic routed to the false host IP. Else check the maillog as the > traffic _must_ reach the 10.0.0.12 host. > > Alexander Ok, Alexander, I did little more homework for ya but I wish I would have read your complete reply before I shut this box down. Anyway, I shut this box 10.0.0.10 down, started up 10.0.0.12 (problem child). I then went to another box, 10.0.0.11 which, for it's only dns server points to 10.0.0.12 and I did the following: [root@rado02 10-15-04]# host rbmain2 rbmain2.rivers-bend.com has address 10.0.0.12 [root@rado02 10-15-04]# nmap -sT rbmain2 Starting nmap 3.70 ( http://www.insecure.org/nmap/ ) at 2005-03-09 10:38 CST Interesting ports on rbmain2.rivers-bend.com (10.0.0.12): (The 1653 ports scanned but not shown below are in state: closed) PORT STATE SERVICE 22/tcp open ssh 25/tcp open smtp 53/tcp open domain 110/tcp open pop3 111/tcp open rpcbind 113/tcp open auth 32772/tcp open sometimes-rpc7 MAC Address: 00:03:6D:15:98:62 (Runtop) Nmap run completed -- 1 IP address (1 host up) scanned in 1.507 seconds [root@rado02 10-15-04]# the first part(the host command) told me that the dns server on 10.0.0.12 was fine. the nmap part is, as you suggested, was little different but did prove that port 25 was open. It was at least open from this private lan, now then, I have a dial up connection on a windows box where I could actually run some tests but I don't know what windows commands I could run off my head...I wish I could check the ports thru that windows box. hummm. ok, I will jump back into 10.0.0.12 and try to msg some and send msgs to it....get you some log entries to look at from maillog and messages. thx Alexander John Rose -- The only thing Micro$oft has done for society is make people believe that computers are inherently unreliable.
