Help setting up Mail Server 1

[elitenoob]

Im trying to get my head around all this, if anyone is able to help me, please keep it simple as im new. Even is somone can just point me in the right direction I would be thankful.

It seems I have all the software running and I followed some step by step instructions (on other sites) for setting up Postfix 2.1.4. and Bind 9.
Configured in Webmin.


Registered at GoDaddy and have tried the following:
MX record: ns1.BRENDAVAQUERO.COM
A Record: ns1 - 64.141.95.113

I get this error from DNSstuff.com:
"ns1.brendavaquero.com. - 64.141.95.113 [Could not connect: Could not connect to mail server (timed out).]"

Thanks!!

 

[ChrisAC]

This is because this server does not accept SMTP connections.

Also, you do not need two MX records when they are both pointing to the SAME box.

BRENDAVAQUERO.COM. 3600 IN MX 10 ns1.BRENDAVAQUERO.COM.
BRENDAVAQUERO.COM. 3600 IN MX 20 ns2.BRENDAVAQUERO.COM.

ns1.BRENDAVAQUERO.COM. 3516 IN A 64.141.95.113
ns2.BRENDAVAQUERO.COM. 3600 IN A 64.141.95.113

Chris.



**********************
Chris A.C, CCNA, CCSA
**********************

 

[elitenoob]

Wow, thanks for the quick reply and getting me on track.

Im going to assume that once I get SMTP working my error message from DNSstuff will change.

From what I have been just reading, Postfix has a SMTP server built in and must be running. I have virtual servers and am entertaining the fact that its just ignoring the Brendavaquero.com domain.

Maybe someone could help me with NS1. I dont understand how this comes into play. I have the MX record pointing to ns1.brendavaquero.com (from the godaddy name server), and I have bind running with the following setting:

Is this accurate?

Im going to hit up a libary but if anyone can see what im doing wrong, it would take some stress off.

Thanks again Chris.

 

[elitenoob]

When I run nmap it tells me:
25/tcp filtered smtp

Is filtered okay or should it be open?

(library didnt have a book to help me.. damn small town )

 

[ChrisAC]

Maybe someone could help me with NS1. I dont understand how this comes into play.

Not quite sure what you mean. That domain is delegated to different servers.

[chris@uranium chris]$ dig brendavaquero.com ns

; <<>> DiG 9.2.1 <<>> brendavaquero.com ns
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 29822
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 2

;; QUESTION SECTION:
;brendavaquero.com. IN NS

;; ANSWER SECTION:
brendavaquero.com. 172800 IN NS park11.secureserver.net.
brendavaquero.com. 172800 IN NS park12.secureserver.net.

;; ADDITIONAL SECTION:
park11.secureserver.net. 163945 IN A 64.202.165.115
park12.secureserver.net. 163945 IN A 64.202.167.154

And I see that your MX records have changed some what;

brendavaquero.com. 3600 IN MX 10 ns1.brendavaquero.com.
brendavaquero.com. 3600 IN MX 20 smtp.brendavaquero.com

ns1.brendavaquero.com still doesn't respond. And as for the other one, I'm not quite sure what you are trying to do here?

smtp.brendavaquero.com. 3600 IN CNAME smtp.brendavaquero.com

Hmm .. So smtp.brendavaquero.com is another name for smtp.brendavaquero.com?

And this host doesn't exist!

Chris.

**********************
Chris A.C, CCNA, CCSA
**********************

 

[ChrisAC]

You might also want to block external access to SSH and webmin to your server as well.

Chris.


**********************
Chris A.C, CCNA, CCSA
**********************

 

[elitenoob]

Lets see if I have this MX record thing straight.
As long as I get it pointed to the mail server's IP, im golden.

I guess the big question really is:
Why isn't "ns1.brendavaquero.com" responding?

As for having smtp.brendavaquero.com in my MX record, I just saw another domain with somthing like that and was stabbing in the dark.. Just trying to get some other responce than "timed out"

Thanks for the security pointers. The server is actually remote but Ill get her locked down.

I think I need to get back to square one and get a better understanding about whats goin on.

Chris, Thanks for taking the time to help and puttin up with me.

 

[ChrisAC]

No problem.

You have SMTP filtered and not open which is why it is not reponding.

Usually you would create an A record for your mail server such as 'mail' or 'mail-in' but what you use doesn't really matter.

For example;

tek-tips.com. 3600 IN MX 0 mail.tecumsehgroup.com.

mail.tecumsehgroup.com. 3600 IN A 216.45.19.20

Chris.

**********************
Chris A.C, CCNA, CCSA
**********************

 

[elitenoob]

One problem solved.. 2 new ones.

I opened port 25 and have a new error from DNSstuff.com:

[Could not connect: Could not connect to mail server (connection refused by remote mailserver).

My mail/warning log:
May 30 10:25:06 cochraneonline postfix/master[2884]: warning: process /usr/lib/postfix/smtpd pid 9372 exit status 1
May 30 10:25:06 cochraneonline postfix/master[2884]: warning: /usr/lib/postfix/smtpd: bad command startup -- throttling

mail/errors log:
May 30 10:27:07 cochraneonline postfix/smtpd[9394]: fatal: open dictionary: need "type:name" form instead of: "virtual_mailbox_domains"

Is it my main.cf that is incorrect?