<html><head><meta http-equiv="Content-Type" content="text/html charset=utf-8"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">Hi @All!<div class=""><br class=""></div><div class="">A few hours ago I’ve setup a fresh Ubuntu 14.04 Server and installed the Kolab Community Version on it.</div><div class="">I also setup the Multi-Domain support as described over <a href="http://docs.kolab.org/howtos/multi-domain.html" class="">here</a>.</div><div class=""><br class=""></div><div class="">Nearly everything works. Only postfix refuses to accept emails from the internet - and I do not have any clue why!! :(</div><div class="">Any help would be greatly appreciated!!!</div><div class=""><br class=""></div><div class=""><br class=""></div><div class=""><br class=""></div><div class="" style="font-size: 15px;"><b class="">Ausgabe in /var/log/mail.log</b></div><div class=""><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: >>> START Recipient address RESTRICTIONS <<<</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: generic_checks: name=permit_mynetworks</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: permit_mynetworks: <a href="http://mail-lb0-f179.google.com" class="">mail-lb0-f179.google.com</a> 209.85.217.179</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: match_hostname: <a href="http://mail-lb0-f179.google.com" class="">mail-lb0-f179.google.com</a> ~? 127.0.0.0/8</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: match_hostaddr: 209.85.217.179 ~? 127.0.0.0/8</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: match_hostname: <a href="http://mail-lb0-f179.google.com" class="">mail-lb0-f179.google.com</a> ~? [::ffff:127.0.0.0]/104</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: match_hostaddr: 209.85.217.179 ~? [::ffff:127.0.0.0]/104</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: match_hostname: <a href="http://mail-lb0-f179.google.com" class="">mail-lb0-f179.google.com</a> ~? [::1]/128</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: match_hostaddr: 209.85.217.179 ~? [::1]/128</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: match_list_match: <a href="http://mail-lb0-f179.google.com" class="">mail-lb0-f179.google.com</a>: no match</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: match_list_match: 209.85.217.179: no match</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: generic_checks: name=permit_mynetworks status=0</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: generic_checks: name=permit_sasl_authenticated</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: generic_checks: name=permit_sasl_authenticated status=0</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: generic_checks: name=defer_unauth_destination</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: reject_unauth_destination: <a href="mailto:marco@mandelkind.ch" class="">marco@mandelkind.ch</a></div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: permit_auth_destination: <a href="mailto:marco@mandelkind.ch" class="">marco@mandelkind.ch</a></div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: ctable_locate: leave existing entry key <a href="mailto:marco@mandelkind.ch" class="">marco@mandelkind.ch</a></div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: NOQUEUE: reject: RCPT from <a href="http://mail-lb0-f179.google.com" class="">mail-lb0-f179.google.com</a>[209.85.217.179]: 454 4.7.1 <<a href="mailto:marco@mandelkind.ch" class="">marco@mandelkind.ch</a>>: Relay access denied; from=<<a href="mailto:marbetschar@gmail.com" class="">marbetschar@gmail.com</a>> to=<<a href="mailto:marco@mandelkind.ch" class="">marco@mandelkind.ch</a>> proto=ESMTP helo=<<a href="http://mail-lb0-f179.google.com" class="">mail-lb0-f179.google.com</a>></div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: generic_checks: name=defer_unauth_destination status=2</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: >>> END Recipient address RESTRICTIONS <<<</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: > <a href="http://mail-lb0-f179.google.com" class="">mail-lb0-f179.google.com</a>[209.85.217.179]: 454 4.7.1 <<a href="mailto:marco@mandelkind.ch" class="">marco@mandelkind.ch</a>>: Relay access denied</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: < <a href="http://mail-lb0-f179.google.com" class="">mail-lb0-f179.google.com</a>[209.85.217.179]: DATA</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: > <a href="http://mail-lb0-f179.google.com" class="">mail-lb0-f179.google.com</a>[209.85.217.179]: 554 5.5.1 Error: no valid recipients</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: < <a href="http://mail-lb0-f179.google.com" class="">mail-lb0-f179.google.com</a>[209.85.217.179]: QUIT</div><div class="">Apr  4 21:00:50 alex postfix/smtpd[4795]: > <a href="http://mail-lb0-f179.google.com" class="">mail-lb0-f179.google.com</a>[209.85.217.179]: 221 2.0.0 Bye</div></div><div class=""><br class=""></div><div class=""><br class=""></div><div class="" style="font-size: 14px;"><b class="">main.cf</b></div><div class=""><div class="">smtpd_banner = $myhostname ESMTP $mail_name</div><div class="">biff = no</div><div class="">append_dot_mydomain = no</div><div class="">readme_directory = no</div><div class="">smtpd_tls_cert_file=/etc/ssl/ch.mandelkind/wildcard.crt</div><div class="">smtpd_tls_key_file=/etc/ssl/ch.mandelkind/wildcard.key</div><div class="">smtpd_use_tls=yes</div><div class="">smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache</div><div class="">smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache</div><div class="">myhostname = <a href="http://mail.mandelkind.ch" class="">mail.mandelkind.ch</a></div><div class="">myorigin = /etc/mailname</div><div class="">relayhost =</div><div class="">relay_domains =</div><div class="">alias_maps = hash:/etc/aliases</div><div class="">alias_database = hash:/etc/aliases</div><div class="">mydestination = ldap:/etc/postfix/ldap/mydestination.cf</div><div class="">mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128</div><div class="">mailbox_size_limit = 0</div><div class="">recipient_delimiter = +</div><div class="">inet_interfaces = all</div><div class="">inet_protocols = all</div><div class="">smtpd_tls_auth_only = yes</div><div class="">transport_maps = hash:/etc/postfix/transport,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;">      </span>ldap:/etc/postfix/ldap/hosted_triplet_transport_maps.cf,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;">        </span>ldap:/etc/postfix/ldap/hosted_duplet_transport_maps.cf</div><div class="">content_filter = smtp-amavis:[127.0.0.1]:10024</div><div class="">smtpd_sender_login_maps = $local_recipient_maps</div><div class="">local_recipient_maps = ldap:/etc/postfix/ldap/hosted_triplet_local_recipient_maps.cf,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;">  </span>ldap:/etc/postfix/ldap/hosted_duplet_local_recipient_maps.cf</div><div class="">virtual_alias_maps = $alias_maps,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;"> </span>ldap:/etc/postfix/ldap/hosted_triplet_virtual_alias_maps.cf,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;">    </span>ldap:/etc/postfix/ldap/hosted_duplet_virtual_alias_maps.cf,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;">     </span>ldap:/etc/postfix/ldap/hosted_triplet_virtual_alias_maps_mailforwarding.cf,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;">     </span>ldap:/etc/postfix/ldap/hosted_duplet_virtual_alias_maps_mailforwarding.cf,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;">      </span>ldap:/etc/postfix/ldap/hosted_triplet_virtual_alias_maps_sharedfolders.cf,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;">      </span>ldap:/etc/postfix/ldap/hosted_duplet_virtual_alias_maps_sharedfolders.cf,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;">       </span>ldap:/etc/postfix/ldap/hosted_triplet_mailenabled_distgroups.cf,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;">        </span>ldap:/etc/postfix/ldap/hosted_duplet_mailenabled_distgroups.cf,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;"> </span>ldap:/etc/postfix/ldap/hosted_triplet_mailenabled_dynamic_distgroups.cf,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;">        </span>ldap:/etc/postfix/ldap/hosted_duplet_mailenabled_dynamic_distgroups.cf,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;"> </span>ldap:/etc/postfix/ldap/hosted_triplet_virtual_alias_maps_catchall.cf,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;">   </span>ldap:/etc/postfix/ldap/hosted_duplet_virtual_alias_maps_catchall.cf</div><div class="">submission_sender_restrictions = reject_non_fqdn_sender, check_policy_service unix:private/submission_policy, permit_sasl_authenticated, reject</div><div class="">submission_recipient_restrictions = check_policy_service unix:private/submission_policy, permit_sasl_authenticated, reject</div><div class="">smtpd_recipient_restrictions = reject_unauth_pipelining,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;">      </span>reject_rbl_client <a href="http://zen.spamhaus.org" class="">zen.spamhaus.org</a>,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;"> </span>reject_non_fqdn_recipient,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;">      </span>reject_invalid_helo_hostname,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;">   </span>reject_unknown_recipient_domain,</div><div class=""><span class="Apple-tab-span" style="white-space: pre;">        </span>check_policy_service unix:private/recipient_policy_incoming</div><div class="">smtp_tls_security_level = may</div><div class="">submission_data_restrictions = check_policy_service unix:private/submission_policy</div><div class="">smtpd_tls_security_level = may</div><div class="">smtpd_sasl_auth_enable = yes</div><div class="">smtpd_sender_restrictions = permit_mynetworks, check_policy_service unix:private/sender_policy_incoming</div></div><div class=""><br class=""></div><div class=""><br class=""></div><div class="" style="font-size: 15px;"><b class="">master.cf</b></div><div class=""><div class="">smtp                inet        n       -       n       -       -       smtpd -v</div><div class="">submission          inet        n       -       n       -       -       smtpd</div><div class="">    -o cleanup_service_name=cleanup_submission</div><div class="">    -o syslog_name=postfix/submission</div><div class="">    -o smtpd_tls_security_level=encrypt</div><div class="">    -o smtpd_sasl_auth_enable=yes</div><div class="">    -o smtpd_sasl_authenticated_header=yes</div><div class="">    -o smtpd_client_restrictions=permit_sasl_authenticated,reject</div><div class="">    -o smtpd_data_restrictions=$submission_data_restrictions</div><div class="">    -o smtpd_recipient_restrictions=$submission_recipient_restrictions</div><div class="">    -o smtpd_sender_restrictions=$submission_sender_restrictions</div><div class="">pickup              fifo        n       -       n       60      1       pickup</div><div class="">cleanup             unix        n       -       n       -       0       cleanup</div><div class="">    -o header_checks=regexp:/etc/postfix/header_checks.inbound</div><div class="">    -o mime_header_checks=regexp:/etc/postfix/header_checks.inbound</div><div class="">cleanup_internal    unix        n       -       n       -       0       cleanup</div><div class="">    -o header_checks=regexp:/etc/postfix/header_checks.internal</div><div class="">    -o mime_header_checks=regexp:/etc/postfix/header_checks.internal</div><div class="">cleanup_submission  unix        n       -       n       -       0       cleanup</div><div class="">    -o header_checks=regexp:/etc/postfix/header_checks.submission</div><div class="">    -o mime_header_checks=regexp:/etc/postfix/header_checks.submission</div><div class="">qmgr                fifo        n       -       n       300     1       qmgr</div><div class="">tlsmgr              unix        -       -       n       1000?   1       tlsmgr</div><div class="">rewrite             unix        -       -       n       -       -       trivial-rewrite</div><div class="">bounce              unix        -       -       n       -       0       bounce</div><div class="">defer               unix        -       -       n       -       0       bounce</div><div class="">trace               unix        -       -       n       -       0       bounce</div><div class="">verify              unix        -       -       n       -       1       verify</div><div class="">flush               unix        n       -       n       1000?   0       flush</div><div class="">proxymap            unix        -       -       n       -       -       proxymap</div><div class="">proxywrite          unix        -       -       n       -       1       proxymap</div><div class="">smtp                unix        -       -       n       -       -       smtp</div><div class="">relay               unix        -       -       n       -       -       smtp</div><div class="">showq               unix        n       -       n       -       -       showq</div><div class="">error               unix        -       -       n       -       -       error</div><div class="">retry               unix        -       -       n       -       -       error</div><div class="">discard             unix        -       -       n       -       -       discard</div><div class="">local               unix        -       n       n       -       -       local</div><div class="">virtual             unix        -       n       n       -       -       virtual</div><div class="">lmtp                unix        -       -       n       -       -       lmtp</div><div class="">anvil               unix        -       -       n       -       1       anvil</div><div class="">scache              unix        -       -       n       -       1       scache</div><div class="">smtp-amavis         unix        -       -       n       -       3       smtp</div><div class="">    -o smtp_data_done_timeout=1800</div><div class="">    -o disable_dns_lookups=yes</div><div class="">    -o smtp_send_xforward_command=yes</div><div class="">    -o max_use=20</div><div class="">    -o smtp_bind_address=127.0.0.1</div><div class="">127.0.0.1:10025     inet        n       -       n       -       100     smtpd</div><div class="">    -o cleanup_service_name=cleanup_internal</div><div class="">    -o content_filter=smtp-wallace:[127.0.0.1]:10026</div><div class="">    -o local_recipient_maps=</div><div class="">    -o relay_recipient_maps=</div><div class="">    -o smtpd_restriction_classes=</div><div class="">    -o smtpd_client_restrictions=</div><div class="">    -o smtpd_helo_restrictions=</div><div class="">    -o smtpd_sender_restrictions=</div><div class="">    -o smtpd_recipient_restrictions=permit_mynetworks,reject</div><div class="">    -o mynetworks=127.0.0.0/8</div><div class="">    -o smtpd_authorized_xforward_hosts=127.0.0.0/8</div><div class="">smtp-wallace        unix        -       -       n       -       3       smtp</div><div class="">    -o smtp_data_done_timeout=1800</div><div class="">    -o disable_dns_lookups=yes</div><div class="">    -o smtp_send_xforward_command=yes</div><div class="">    -o max_use=20</div><div class="">127.0.0.1:10027     inet        n       -       n       -       100     smtpd</div><div class="">    -o cleanup_service_name=cleanup_internal</div><div class="">    -o content_filter=</div><div class="">    -o local_recipient_maps=</div><div class="">    -o relay_recipient_maps=</div><div class="">    -o smtpd_restriction_classes=</div><div class="">    -o smtpd_client_restrictions=</div><div class="">    -o smtpd_helo_restrictions=</div><div class="">    -o smtpd_sender_restrictions=</div><div class="">    -o smtpd_recipient_restrictions=permit_mynetworks,reject</div><div class="">    -o mynetworks=127.0.0.0/8</div><div class="">    -o smtpd_authorized_xforward_hosts=127.0.0.0/8</div><div class="">recipient_policy    unix        -       n       n       -       -       spawn</div><div class="">    user=kolab-n argv=/usr/lib/postfix/kolab_smtp_access_policy --verify-recipient</div><div class="">recipient_policy_incoming unix  -       n       n       -       -       spawn</div><div class="">    user=kolab-n argv=/usr/lib/postfix/kolab_smtp_access_policy --verify-recipient --allow-unauthenticated</div><div class="">sender_policy       unix        -       n       n       -       -       spawn</div><div class="">    user=kolab-n argv=/usr/lib/postfix/kolab_smtp_access_policy --verify-sender</div><div class="">sender_policy_incoming unix     -       n       n       -       -       spawn</div><div class="">    user=kolab-n argv=/usr/lib/postfix/kolab_smtp_access_policy --verify-sender --allow-unauthenticated</div><div class="">submission_policy   unix        -       n       n       -       -       spawn</div><div class="">    user=kolab-n argv=/usr/lib/postfix/kolab_smtp_access_policy --verify-sender --verify-recipient</div></div></body></html>