This tips related to Qmail-toaster (mail server) on Kloxo-MR.
Warning: - update Kloxo to Kloxo-MR need running:
sh /script/convert-to-qmailtoaster
Prepare server:
1. Choose 1 of domains or subdomains as primary 'domain' (this domain must be access from public; example: 'mydomain.com')
2. Set server hostname as subdomain of primary 'domain' (example: 'subdom.mydomain.com') and add 'subdom' as 'A record' on dns setting
3. Add 'xxx.xxx.xxx.xxx subdom.mydomain.com subdom' on '/etc/host' (change xxx.xxx.xxx.xxx with primary ip)
4. Add/Change to 'HOSTNAME="subdom.mydomain.com"' in '/etc/sysconfig/network'
5. Reboot and then run 'hostname -f' and must be appear 'subdom.mydomain.com'
Setup/Update qmail:
1. For update from Kloxo, need running 'sh /script/convert-to-qmailtoaster'
2. For to make sure, go to 'Mysql password reset' to change mysql root password
2. Running 'sh /script/fix-chownchmod; sh /script/fixmail-all'
Testing:
1. Run '/home/vpopmail/bin/vdominfo' and will be match with '/var/qmail/users/assign' content
2. If login to webmail failed, check the content of:
- '/var/qmail/supervise/imap4/run',
- '/var/qmail/supervise/imap4-ssl/run',
- '/var/qmail/supervise/pop3/run',
- '/var/qmail/supervise/pop3-ssl/run',
- '/var/qmail/supervise/smtp/run',
- '/var/qmail/supervise/submission/run'
and find out something like 'exec /usr/bin/softlimit -m 9000000 '.
Increase the value until 3-4 times but no more than 64000000. Original softlimit have a problem especially on Centos 64bit (version 5 and 6).
3. Run 'telnet localhost 25' for to make sure this port not blocked/inactive. Testing also on port 110, 143, 993, 995, 587 and 465
4. Find error on 'log manager' and 'mail queue'
--------------------
Additional info:
1. Sometimes, after Kloxo-MR update, qmail not work.
You can see in 'Log Manager' for IMAP error or SMTP error like '@400000005187cdc72b428044 tcpserver: fatal: unable to bind: address already used'.
For this situation, need reboot. Or running 'qmailctl stop; qmailctl start' (remember: 'qmailctl restart' not work).
It's ok if appear something like '@40000000518752e21fc74ac4 tcpserver: status: 0/40'
2. Repair qmail:
qmailctl stop
yum reinstall *-toaster
sh /script/fixmail-all
qmailctl stop
qmailctl start
3. If still not work, run :
chmod 4755 /home/vpopmail/bin/vchkpw
qmailctl stop
qmailctl start
==============
NOTE:
- This information not accurate for latest Kloxo-MR (6.5.0.f-2013031825)
- Only command needed:
# fix mail issue
sh /script/fixmail-all
# better stop and start instead restart
qmailctl stop
qmailctl start
==============
NOTE:
- Reinstall Qmail-toaster
# uninstall toaster
yum remove *-toaster
# remove bin and config
rm -rf /var/qmail/
# install again (including clamav and spamd) and also other applications as dependencies
yum install *-toaster webalizer cronie cronie-anacron crontabs
# run fix mail config (qmail-toaster config and webmail)
sh /script/fixmail-all
# restart (using stop and start better for this situation rather than restart)
# to make stopped and may appear error message
qmailctl stop
# start
qmailctl start
if still something wrong:
sh /script/cleanup
sh /script/fix-all
sh /script/restart-all
and check with 'qmailctl stat' and will be appear:
[root@viv ~]# qmailctl stat
authlib: up (pid 802838) 27 seconds
clamd: up (pid 802811) 27 seconds
imap4: up (pid 803967) 0 seconds
imap4-ssl: up (pid 803954) 0 seconds
pop3: up (pid 803931) 1 seconds
pop3-ssl: up (pid 803919) 1 seconds
send: up (pid 803949) 1 seconds
smtp: up (pid 803959) 0 seconds
smtp-ssl: up (pid 803932) 1 seconds
spamd: up (pid 802843) 27 seconds
submission: up (pid 803922) 1 seconds
authlib/log: up (pid 802839) 27 seconds
clamd/log: up (pid 802813) 27 seconds
imap4-ssl/log: up (pid 802833) 27 seconds
imap4/log: up (pid 802828) 27 seconds
pop3-ssl/log: up (pid 802840) 27 seconds
pop3/log: up (pid 802827) 27 seconds
send/log: up (pid 802832) 27 seconds
smtp-ssl/log: up (pid 802834) 27 seconds
smtp/log: up (pid 802837) 27 seconds
spamd/log: up (pid 802822) 27 seconds
submission/log: up (pid 802847) 27 seconds
[root@viv ~]#
==============
NOTE: - for to make sure, receipent (gmail, yahoomail and others) not thinking your email as 'spam'
- Activate 'Enable Domainkey' in 'Server Mail Settings'
- In every domain, active 'Enable SPF' in 'Mail Auth'
- As to provider to setup 'reverse-dns' for your server IP(s)
Saya sdh men-setting sesuai dengan di atas, saya sdh bisa mengirim email dgn baik (masuk inbox), kendalanya tidak bisa menerima email.
Saya menggunakan:
[root@server2 /]# sh /script/sysinfo
A. Kloxo-MR: 6.5.0.f-2015010801
B. OS: CentOS release 6.6 (Final) x86_64
C. Apps:
1. MySQL: mysql55-5.5.42-1.ius.el6.x86_64
2. PHP: php53u-5.3.29-1.ius.el6.x86_64
3. Httpd: httpd-2.2.29-1.mr.el6.x86_64
4. Lighttpd: --uninstalled--
5. Nginx: --uninstalled--
6. Qmail: qmail-toaster-1.03-1.3.48.mr.el6.x86_64
- with: courier-imap-toaster-4.1.2-1.3.18.mr.el6.x86_64
7. Dns: bind-9.9.5-1.el6.x86_64
D. Php-type (for Httpd/proxy):
E. Memory:
total used free shared buffers cached
Mem: 1024 400 623 3 0 169
-/+ buffers/cache: 230 793
Swap: 128 0 128
Setelah saya cek, di mail log terdapat error:
Mar 31 10:00:00 server2 spamdyke[9013]: DENIED_RDNS_MISSING from: budibudi61@gmail.com to: marketing@smartindo-access.com origin_ip: 209.85.212.176 origin_rdns: (unknown) auth: (unknown) encryption: TLS reason: (empty)
Saya sdh cek disini
https://www.2large.co.za/spamdyke , DENIED_RDNS_MISSING artinya ditolak karena reverse DNS blm diisikan. Padahal reverse DNS sdh saya setting sesuai dengan hostname.
Saya cek sdh mengarah ke subdomain hostname (tgl setting: 28 Maret 2015, propagansi biasanya 24-48 jam):
[root@server2 /]# host 167.114.153.36
36.153.114.167.in-addr.arpa domain name pointer server2.smartindo-access.com.
Saya jg sdh cek di
http://www.smtpport.com/about/#check , port 25 tidak diblok oleh ISP
Saya sudah menanyakan kepada provider dan jawabannya ternyata settingan untuk reverse DNS saya sudah benar.
Saya coba untuk mem-nonaktifkan spamdykenya, langsung bisa masuk semua email yg saya kirim sebelumnya.
Bagaimana cara men-setup spamdyke agar bisa digunakan dan tidak memblok email masuk? Atau saya hrus menggunakan app anti-spam yg lain?
Mohon bantuannya, terima kasih.