Problem receiving email from google

[PolitisP]

I had plesk 10.2 and debian 6 but I couldn't receive any email (due to it not being able to resolve localhost.localdomain, although I had it in /etc/hosts), so I decided to update it to version 10.4.4.

I noticed that I can receive emails from hotmail,e.t.c. but not if it was sent from gmail. I checked /usr/local/psa/var/log/maillog and this is was I see:

Mar 29 08:41:10 euve5117 postfix/anvil[28615]: statistics: max connection rate 1/60s for (smtp:209.85.214.43) at Mar 29 08:37:50
Mar 29 08:41:10 euve5117 postfix/anvil[28615]: statistics: max connection count 1 for (smtp:209.85.214.43) at Mar 29 08:37:50
Mar 29 08:41:10 euve5117 postfix/anvil[28615]: statistics: max cache size 1 at Mar 29 08:37:50
Mar 29 08:49:56 euve5117 postfix/smtpd[29729]: cannot load Certificate Authority data: disabling TLS support
Mar 29 08:49:56 euve5117 postfix/smtpd[29729]: warning: TLS library problem: 29729:error:02001002:system library:fopen:No such file or directory:bss_file.c:126:fopen('/etc/postfix/ssl/cacert.pem','r'):
Mar 29 08:49:56 euve5117 postfix/smtpd[29729]: warning: TLS library problem: 29729:error:2006D080:BIO routines:BIO_new_file:no such file:bss_file.c:129:
Mar 29 08:49:56 euve5117 postfix/smtpd[29729]: warning: TLS library problem: 29729:error:0B084002:x509 certificate routines:X509_load_cert_crl_file:system lib:by_file.c:274:
Mar 29 08:49:56 euve5117 postfix/smtpd[29729]: connect from mail-bk0-f43.google.com[209.85.214.43]
Mar 29 08:49:56 euve5117 postfix/cleanup[29732]: EE0231AF80B5: message-id=<20120329064956.EE0231AF80B5@+++++++++++++++++++++>
Mar 29 08:49:56 euve5117 postfix/smtpd[29729]: disconnect from mail-bk0-f43.google.com[209.85.214.43]
Mar 29 08:49:56 euve5117 postfix/qmgr[18076]: EE0231AF80B5: from=<double-bounce@+++++++++++++++++++++>, size=1026, nrcpt=1 (queue active)
Mar 29 08:49:57 euve5117 postfix/cleanup[29732]: F34891AF80B6: message-id=<20120329064956.EE0231AF80B5@+++++++++++++++++++++>
Mar 29 08:49:57 euve5117 postfix/local[29734]: EE0231AF80B5: to=<[email protected]>, orig_to=<postmaster>, relay=local, delay=0.04, delays=0.02/0.01/0/0.01, dsn=2.0.0, status=sent (forwarded as F34891AF80B6)
Mar 29 08:49:57 euve5117 postfix/qmgr[18076]: F34891AF80B6: from=<double-bounce@+++++++++++++++++++++>, size=1180, nrcpt=1 (queue active)
Mar 29 08:49:57 euve5117 postfix/qmgr[18076]: EE0231AF80B5: removed
Mar 29 08:49:57 euve5117 postfix/cleanup[29732]: 01B951AF80B5: message-id=<20120329064956.EE0231AF80B5@+++++++++++++++++++++>
Mar 29 08:49:57 euve5117 postfix/local[29734]: F34891AF80B6: to=<[email protected]>, orig_to=<postmaster>, relay=local, delay=0.01, delays=0.01/0/0/0, dsn=2.0.0, status=sent (forwarded as 01B951AF80B5)
Mar 29 08:49:57 euve5117 postfix/qmgr[18076]: F34891AF80B6: removed
Mar 29 08:49:57 euve5117 postfix/qmgr[18076]: 01B951AF80B5: from=<double-bounce@+++++++++++++++++++++>, size=1328, nrcpt=1 (queue active)
Mar 29 08:49:57 euve5117 postfix/local[29734]: 01B951AF80B5: to=<[email protected]>, orig_to=<postmaster>, relay=local, delay=0.01, delays=0/0/0/0.01, dsn=5.4.6, status=bounced (mail forwarding loop for [email protected]omain)
Mar 29 08:49:57 euve5117 postfix/bounce[29735]: warning: 01B951AF80B5: undeliverable postmaster notification discarded
Mar 29 08:49:57 euve5117 postfix/qmgr[18076]: 01B951AF80B5: removed


This is some other record:



1219 Mar 29 11:49:29 euve5117 postfix/smtpd[1864]: cannot load Certificate Authority data: disabling TLS support
1220 Mar 29 11:49:29 euve5117 postfix/smtpd[1864]: warning: TLS library problem: 1864:error:02001002:system library:fopen:No such file or directory:bss_file.c:126:fopen('/etc/postfix/ssl/cacert.pem','r'):
1221 Mar 29 11:49:29 euve5117 postfix/smtpd[1864]: warning: TLS library problem: 1864:error:2006D080:BIO routines:BIO_new_file:no such file:bss_file.c:129:
1222 Mar 29 11:49:29 euve5117 postfix/smtpd[1864]: warning: TLS library problem: 1864:error:0B084002:x509 certificate routines:X509_load_cert_crl_file:system lib:by_file.c:274:
1223 Mar 29 11:49:29 euve5117 postfix/smtpd[1864]: connect from mail-yx0-f171.google.com[209.85.213.171]
1224 Mar 29 11:49:29 euve5117 postfix/cleanup[1867]: C65D07C1B9EB: message-id=<20120329094929.C65D07C1B9EB@+++++++++++++++++++++>
1225 Mar 29 11:49:29 euve5117 postfix/qmgr[18076]: C65D07C1B9EB: from=<double-bounce@+++++++++++++++++++++>, size=1029, nrcpt=1 (queue active)
1226 Mar 29 11:49:29 euve5117 postfix/smtpd[1864]: disconnect from mail-yx0-f171.google.com[209.85.213.171]
1227 Mar 29 11:49:29 euve5117 postfix/cleanup[1867]: CB34A7C1BA67: message-id=<20120329094929.C65D07C1B9EB@+++++++++++++++++++++>
1228 Mar 29 11:49:29 euve5117 postfix/local[1869]: C65D07C1B9EB: to=<[email protected]>, orig_to=<postmaster>, relay=local, delay=0.03, delays=0.02/0.01/0/0, dsn=2.0.0, status=sent (forwarded as CB34A7C1BA67)
1229 Mar 29 11:49:29 euve5117 postfix/qmgr[18076]: CB34A7C1BA67: from=<double-bounce@+++++++++++++++++++++>, size=1183, nrcpt=1 (queue active)
1230 Mar 29 11:49:29 euve5117 postfix/qmgr[18076]: C65D07C1B9EB: removed
1231 Mar 29 11:49:29 euve5117 postfix/cleanup[1867]: CBFD07C1B9EB: message-id=<20120329094929.C65D07C1B9EB@+++++++++++++++++++++>
1232 Mar 29 11:49:29 euve5117 postfix/local[1869]: CB34A7C1BA67: to=<[email protected]>, orig_to=<postmaster>, relay=local, delay=0, delays=0/0/0/0, dsn=2.0.0, status=sent (forwarded as CBFD07C1B9EB)
1233 Mar 29 11:49:29 euve5117 postfix/qmgr[18076]: CBFD07C1B9EB: from=<double-bounce@+++++++++++++++++++++>, size=1331, nrcpt=1 (queue active)
1234 Mar 29 11:49:29 euve5117 postfix/qmgr[18076]: CB34A7C1BA67: removed
1235 Mar 29 11:49:29 euve5117 postfix/local[1869]: CBFD07C1B9EB: to=<[email protected]>, orig_to=<postmaster>, relay=local, delay=0.01, delays=0/0/0/0.01, dsn=5.4.6, status=bounced (mail forwarding loop for [email protected]omain)
1236 Mar 29 11:49:29 euve5117 postfix/bounce[1870]: warning: CBFD07C1B9EB: undeliverable postmaster notification discarded
1237 Mar 29 11:49:29 euve5117 postfix/qmgr[18076]: CBFD07C1B9EB: removed



I had replaced my domain with +++++++++++++++++++++ in the above logs. Any idea?

 

[kaesar]

I think, that you need the certificate file to tls transport. In your case try open the file /etc/postfix/ssl/cacert.pem. Exits this file?

Perhaps, you must revised the configuration of the file /etc/postfix/main.cf. Find the parameter, smtpd_tls_cert_file

By default in plesk;

smtpd_tls_cert_file = /etc/postfix/postfix_default.pem

 

[PolitisP]

There isn't any ssl folder in /etc/postfix. I see a sasl folder with a smtpd.conf inside, so I doubt this is the one you mean.
In /etc/postfix/main.cf I can see the line:
smtpd_tls_cert_file = /etc/postfix/postfix_default.pem
and the file /etc/postfix/postfix_default.pem exists.

 

[kaesar]

Try disable tls, in main.cf:

smtpd_use_tls = no

and restart postfix. Only for detect the problem.

 

[PolitisP]

I think I found the line in main.cf. It's:

smtpd_tls_CAfile = /etc/postfix/ssl/cacert.pem

What is the default value for this?

 

[kaesar]

In my case, I don't use this parameters. I include CA in the same file /etc/postfix/postfix_default.pem

Comment this parameters an try.

 

[PolitisP]

I commented it and it seems to work now. I received a couple of email that I sent to me yesterday in order to test if mail works. I also saw this in logs:


Mar 29 14:34:52 euve5117 postfix/smtp[3660]: certificate verification failed for gmail-smtp-in.l.google.com[173.194.70.26]:25: untrusted issuer /C=US/O=Equifax/OU=Equifax Secure Certificate Authority
Mar 29 14:34:52 euve5117 postfix/smtp[3658]: certificate verification failed for gmail-smtp-in.l.google.com[173.194.70.27]:25: untrusted issuer /C=US/O=Equifax/OU=Equifax Secure Certificate Authority

But since it works, I guess i'll have to ignore it. Thanks kaesar.