Setting up a Mail Server

[Onion Avenger]

Hello,

Sorry if this is a dupe, but I've searched and searched and it looks like everyone who talks about setting up mail servers talks about fetching mail from a POP3 server or something then ferrying it or storing it for machines on the LAN.

However, I don't want to fetch mail from another server - I want to BE that server.
When the people on my company's LAN use outlook or whatever to use mail.companyname.com as their "incoming" and "outgoing" server, I need to be that server.

This will be replacing the mail hosting service some other company does for us, so what information do I need from them?

Could anyone please point me in the right direction??

Thanks in advance,
--Richie, the Onion Avenger

[devon]

I would check out the Virtual Mailhosting System Guide. You may not need everything in that Guide, but it will give you some direction.

[Onion Avenger]

Thanks, I was scanning through it before, but I got really confused. Why do they call it "Virtual" mailhosting? It talks about using multiple domains and I think that's what it meant, but I only need to use one domain.

It looks like in postfix's config that I can specify

[kashani]

If you just have one domain or are fine with one to one mapping of your domains (ie user@acme.com and user@acme.net go the same place) you can ignore the greater part of the Virtual Mail Guide. A general Postfix and Courier-IMAP install should get you most of what you want. In a corporate enviroment you might think about adding the following.

1. Cyrus SASL so people can send mail from anywhere if they can authenticate.
2. Some http based method to change passwords for the users to use.
3. Web mail
4. Some spam filtering.

The Virtual Guide convers 1 and 3. You're on your own for 3 and I'd recommend http://advosys.ca/papers/postfix-filtering.html for 4.

kashani
_________________
Will personally fix your server in exchange for motorcycle related shop tools in good shape.

[Onion Avenger]

Ah, well I had a LOT of my confusion cleared up by a visit to http://computer.howstuffworks.com

After reading the articles on Web Servers, Email, and most especially the DNS servers, I feel much more enlightened and think that I now have the basic knowledge to follow the Virtual Mailhosting System Guide. Definitely a good read for anyone.

I'll update this post on my progress and problems, thank you very much for the help!

--Richie, the Onion Avenger

[uzik]

There are a bunch of mail servers. I had a lot of security problems
with sendmail. I switched to postfix and had very good results.
much easier configuration and no security problems ( so far! ).

An outlook compatible (not pop3/smtp) is a different animal.
I understand a new program was recently released to replace
microsoft's email server software. I don't recall the name of
the software though, sorry.

[Onion Avenger]

[Onion Avenger]

Okay, I think all I want to install for now is postfix and courier-imap.

I can send messages to anywhere just peachy with postfix and mutt, but I cannot receive mail.

I tried root@my.ip.address.here but it was undeliverable.

Any suggestions? Which logs should I check?

Thanks,
--Richie, the Onion Avenger

[Liathus]

I woudl look at sendmail if you really want a configurable mail server. Contrary to popular belief sendmail is a very secure solution if you keep up on patches (just like any other server application).

We use sendmail as a mail server for our ISP, we have about 30-40 domain names that the 1 server hosts, about 1200 users.

It's true that sendmail can be a bear to get used to, but that can be greatly eased using something like webmin. In fact sendmail is very easy to use via webmin.

I have looked at postfix in the past but i feel it doesnt have the flexability that we require.

[Onion Avenger]

Ok, I can telnet the router's WAN IP on ports 25 and 110 and it is indeed forwarded to the server. Perhaps I should double-check off-site (after all, the machine is sitting right next to me) but if I'm going out through our external IP, coming back in, connecting to a specific port, it should be okay.

Therefore it seems like emailing root@the.ip.i.use SHOULD work. Hardware-wise, it looks good. Therefore it's some configuration in the machine. What should I look at?

Thanks again,
--Richie, the Onion Avenger

[Onion Avenger]

Thanks Liathus for the post. (Looks like I was one minute too slow making my reply )

However, it seems that the problem is not in the sending, but in the receiving. Unless sendmail can do that too.

Any other suggestions?

Thanks,
--Richie, the Onion Avenger

[Onion Avenger]

Okay, I checked the /var/log/mail/current file, and it looks like the hotmail server I was sending the test message from was rejected. Here:

[fimblo]

just to clarify the dns and smtp part:

The outgoing mail server (smtp) gets a message from a client with a To: field saying that the email is to be sent to, say abc@domain.com.

The mail server asks its resolver (the dns server), for the MX post for domain.com. (if it doesnt find it it continues to lookup the A and CNAME)

The resolver does a recursive lookup (unless its cached), gets an ip number (1.2.3.4), which it returns to the smtp server as a reply.

Now the smtp server knows where to send the mail. It connects to 1.2.3.4 port 25, passes the message on, and disconnects.

hmm hope that helped... oh read rfc 2821 and 2822 if you want some more juicy details
_________________
http://blahonga.yanson.org - little geekblog
http://blahona.yanson.org/howtos/livecd - yet another livecd howto

[fimblo]

[Onion Avenger]

Hmmmm, okay.

But I was temporarily doing root@123.456.789.012 because I wanted to make sure it was working before I tell the DNS guy to re-route mail.company.com to our router's external ip.

But it seems like it can connect....it just gets rejected or something. At least the server knows that hotmail is trying to connect to it.

Thanks for the replies,
--Richie, the Onion Avenger

[fimblo]

hi!

just got home, i realised what your problem could be. I think its two separate problems you have here.

1) you're testing using abc@1.2.3.4 (or something). I tested it (using postfix) and I didnt get a error message immediately either. (I tested by telnetting to localhost, port 25, and interfacing the postfix api directly)

but, afterwards I got an error sent to my From: address, saying that the domain name 1.2.3.4 could not be resolved. So i suggest you test sending email using either a local alias (localhost) or a FQDN.

2) the other problem is receiving email. try turning off courier-imap and just using postfix. telnet in to localhost and do the following:

[fimblo]

oh sorry another thing- you dont need to reroute dns to send mail. only to receive mail.

I, like many others, have an MTA on my laptop so that I can always send mail, no matter where I am. I dont receive email on my MTA, I connect to my courier-imap service on my stationary computer.

heh hope this isnt confusing... Im going to bed now, good luck!!!
_________________
http://blahonga.yanson.org - little geekblog
http://blahona.yanson.org/howtos/livecd - yet another livecd howto

[uzik]

Before you turn it on make sure you have relaying disabled.
This is default on most servers now. This will prevent spammers
from using your machine to send email.

[Onion Avenger]

Wow! Thanks for the last three replies, guys!

I'll test this tomorrow and give you the status. So if postfix sends AND receives, what exactly does courier-imap do??

I've only read the posts once, maybe if I read them again they'll make more sense, but I have to leave soon - it seems that I didn't make myself completely clear: I have no problems whatsoever sending mail from my new mail server. It's peachy. It's just receiving mail. If I send a mail from my hotmail account to root@123.123.123.123, it never gets delievered.

But when I return tomorrow, I'll read your posts more carefully - it's my bad either way (not reading them better or not explaining better).

Thanks again for the help - it looks promising!

--Richie, the Onion Avenger

[taskara]

why don't you set up a temporary domain using dyndns.org

and then u can have a domain to test everything is working, then either stick with dyndns.org or get your dns guy you mentioned to make the changes.

dyndns.org works great just create an account (dynamic dns) and tell your router to update, (or log in to their webpage and tell them your new ip)

instantly resolving.
_________________
Kororaa install method - have Gentoo up and running quickly and easily, fully automated with an installer!

[Liathus]

Just as a followup... Sendmail also sends and receives. It is a very common smtp server on the internet.

[splooge]

Have your DNS admin make a new dns entry, test.yourdomain.com, have him point it to the external IP of the router, and then send a message to you@test.yourdomain.com
_________________
http://get.a.clue.de

[fimblo]

Both sendmail and postfix (Mail transfer agents) send and receive mail, like liathus said. Your Q was What does courier-imap do?.

in example you send mail to abc@domain.com.

When you use your mua (pine, mutt) to send mail, what happens is that your mua connects to your mta, port 25 (or if they are on the same box you also can just use the command sendmail...anyway).

Your MTA rece9ives the email and relays it to the other MTA (which belongs to domain.com), after doing all the dns stuff I wrote about (above). This second MTA has an ip number which is described in the MX post in the dns tree.

Now we've got a fork:
1) user abc could ssh to the server, and check mail on the MTA server using pine or mutt or some other MUA.
2) you could install a program which allows users to fetch mail from the MTA to their workstations. there are two popular protocols used to do this: imap (Internet Message Access Protocol) and pop3 (Post Office Protocol v3) , and their secure cousins imaps and pop3s.

courier-imap is an implementation of imap.

hmm did that explain what courier-imap does?
_________________
http://blahonga.yanson.org - little geekblog
http://blahona.yanson.org/howtos/livecd - yet another livecd howto

[Onion Avenger]

Wow! So many posts over the night! Thanks again for all the help!

Let's see:
taskara - Wow! I didn't know that service was available! I'm setting up a temporary domain now so I can email without relying on an IP.

Liathus - Thanks for the followup. I wouldn't have guessed Sendmail receives from the name

<EDIT=I read your post too quickly >
splooge - Hmmm, that's a possibility. Thanks for the suggestion.
</EDIT>

fimblo - so courier-imap will provide the protocol for a client (mutt, outlook, etc) to get the mail from the MTA?

I'm going to keep on trying today when I have the times to do so.

Thanks again for all the help!

--Richie, the Onion Avenger

[Onion Avenger]

Hmmm, when I email root@efs.mine.nu from my hotmail account, I still don't receive (courier-imap is disabled, postfix is enabled).

Here's some of my /var/log/mail/current: