Having successfully configured configured Axigen to use SendGrid to send, and tested a couple of domains with WebMail/ IMAP/ SMTP. I am now trying to get the final part of my planning configuration to work.
I have on the same LAN 2 separate servers; an Axigen Service (mail) and a Postfix Server (web-wordpress).
I have created the rules in Axigen (192.168.1.34) to allow relay from my Postfix using Postfix IP (192.168.1.34). I have created DNS entries (using Cloudflare) for both these servers. The Postfix server sends email to Axigen, which then Greylists the mail.
I notice 2 things:
The DNS is not resolving in Axigen, but does elsewhere including on Axegin server cli,
The SPF message.
Any help/ pointers appreciated.
Log snippet as follows:
2020-10-14 08:50:57 +1300 08 diaus-mail-001 SMTP-IN:0000095A: [192.168.1.34:25] connection accepted from [192.168.1.36:40328]
2020-10-14 08:50:57 +1300 08 diaus-mail-001 SMTP-IN:0000095A: Set remote delivery to auth
2020-10-14 08:50:57 +1300 08 diaus-mail-001 SMTP-IN:0000095A: Set remote delivery to all
2020-10-14 08:50:57 +1300 08 diaus-mail-001 SMTP-IN:0000095A: Greylist enabled
2020-10-14 08:50:57 +1300 08 diaus-mail-001 SMTP-IN:0000095A: Set max data size to 10240 KB
2020-10-14 08:50:57 +1300 08 diaus-mail-001 SMTP-IN:0000095A: Set max received headers to 30
2020-10-14 08:50:57 +1300 08 diaus-mail-001 SMTP-IN:0000095A: Maximum recipient count set to 1000
2020-10-14 08:50:57 +1300 08 diaus-mail-001 SMTP-IN:0000095A: Wait for processing response at least 10 seconds
2020-10-14 08:50:57 +1300 08 diaus-mail-001 SMTP-IN:0000095A: STARTTLS extension allowed
2020-10-14 08:50:57 +1300 08 diaus-mail-001 SMTP-IN:0000095A: 8BIT MIME accepted
2020-10-14 08:50:57 +1300 08 diaus-mail-001 SMTP-IN:0000095A: BINARY DATA extension allowed
2020-10-14 08:50:57 +1300 08 diaus-mail-001 SMTP-IN:0000095A: PIPELINING extension allowed
2020-10-14 08:50:57 +1300 08 diaus-mail-001 SMTP-IN:0000095A: Set local delivery to all
2020-10-14 08:50:57 +1300 08 diaus-mail-001 SMTP-IN:0000095A: Created new queue item with id 0028A548
2020-10-14 08:50:57 +1300 08 diaus-mail-001 DNR:0000095A: Search TXT for ‘diaus-web-wordpress-001.diaus.nz’
2020-10-14 08:50:57 +1300 08 diaus-mail-001 DNR:0000095A: Sending query (1/1) to 127.0.0.53:53
2020-10-14 08:50:57 +1300 08 diaus-mail-001 DNR:0000095A: Search NS for ‘diaus-web-wordpress-001.diaus.nz’
2020-10-14 08:50:57 +1300 08 diaus-mail-001 DNR:0000095A: Sending query (1/1) to 127.0.0.53:53
2020-10-14 08:50:57 +1300 02 diaus-mail-001 DNR:0000095A: DNS query failed - recursive queries disabled
2020-10-14 08:50:57 +1300 08 diaus-mail-001 DNR:0000095A: ‘diaus-web-wordpress-001.diaus.nz’ not found in DNS
2020-10-14 08:50:57 +1300 08 diaus-mail-001 DNR:0000095A: ‘diaus-web-wordpress-001.diaus.nz’ not found in DNS
2020-10-14 08:50:57 +1300 08 diaus-mail-001 SMTP-IN:0000095A: SPF result for MAIL FROM <root@diaus-web-wordpress-001.diaus.nz@diaus-web-wordpress-001.diaus.nz> issued from EHLO domain <mail.diaus.nz> connected from <192.168.1.36>: None (spfHeader = ‘none (diaus-web-wordpress-001.diaus.nz: root@diaus-web-wordpress-001.diaus.nz does not designate permitted sender hosts) client-ip=192.168.1.36; envelope-from=root@diaus-web-wordpress-001.diaus.nz; mechanism=default; identity=mailfrom; receiver=diaus-mail-001.diaus.nz;’; spfExplanation = ‘null’)
2020-10-14 08:50:57 +1300 08 diaus-mail-001 SMTP-IN:0000095A: Greylisting mail 0028A548
2020-10-14 08:50:58 +1300 08 diaus-mail-001 SMTP-IN:0000095A: Set mail state to REMOVED
2020-10-14 08:50:58 +1300 08 diaus-mail-001 SMTP-IN:0000095A: closing session from [192.168.1.36:40328]
For test first please disabled greylist and set a correct DNS server in Services DNR.
Second to send email from postfix you need to authentication with an available account in axigen that set in your software. And set smtp receiving log level and processing log level on protocol communication
Finally test again and send logs
Yes, for obvious reasons you could not relay external messages in case you are using a non-authenticated SMTP session (which is the session you have shared).
SMTP-IN:0000BD3C: Set remote delivery to auth
On the other side you mentioned that you have created a rule that is allowing external relaying based on the IP address of your Postfix server (192.168.1.34).
But, from the shared logs we see that the connection came from 192.168.1.36 to Axigen IP address 192.168.1.34
SMTP-IN:0000095A: [192.168.1.34:25] connection accepted from [192.168.1.36:42994]
In case 192.168.1.36 is your own Postfix server and you trust it then please add a relay exception for it like:
WebAdmin > Security & Filtering > Acceptance & Rounting > Routing Basic Settings > Allow / Disallow Relaying > Add IP /Range > Add Exception for: Single IP address | IP: 192.168.1.36 | Allow Delivery: yes > Save