Hi
I have been using evolution/cyrus/exim for 10 years - until yesterday!
I upgraded to C6.7 and now there is no way I can find of connecting from evo to the cyrus imap(s) server
[root@maui:~]$ ps -ef|grep imap cyrus 27768 1 0 15:21 ? 00:00:00 /usr/lib/cyrus-imapd/cyrus-master -d cyrus 27775 27768 0 15:21 ? 00:00:00 imapd -s cyrus 27779 27768 0 15:21 ? 00:00:00 imapd cyrus 27781 27768 0 15:21 ? 00:00:00 imapd cyrus 27782 27768 0 15:21 ? 00:00:00 imapd cyrus 27783 27768 0 15:21 ? 00:00:00 imapd cyrus 27933 27768 0 15:36 ? 00:00:00 imapd cyrus 28048 27768 0 15:46 ? 00:00:00 imapd
evo is running on a fully updated F22 machine, cyrus/exim on C6.7 k-9 mail on a tablet and a mobile no longer connect even tried thunderbird which also would not connect
When trying to connect with evo I get Failed to open folder The reported error was "Could not connect to 148.197.29.5: Connection refused"
If I try to change things by editing the "Recieving Email" menu ie by changing the "Encryption method" from "SSL on a dedicated port" 993 to "No encryption" it still fails In fact just hitting Authentication "Check for supported types" gives Failed to query server for a list of supported authentication mechanisms. Could not connect to 148.197.29.5: Connection refused
wireshark shows just two lines using tcp.port==993 filter Unfortunately this does not mean much to me!
124 3.276582000 148.197.29.159 148.197.29.5 TCP 74 54564→993 [SYN] Seq=0 Win=29200 Len=0 MSS=1460 SACK_PERM=1 TSval=71392019 TSecr=0 WS=128
125 3.276770000 148.197.29.5 148.197.29.159 TCP 60 993→54564 [RST, ACK] Seq=1 Ack=1 Win=0 Len=0
I have tried the following to no avail tcpdump -s 0 -w dump_file ssldump -a -A -H -d -r dump_file and selinux in permissive mode firewall off
Help!
John
Am 11.08.2015 um 17:56 schrieb Dr J Austin:
Hi
I have been using evolution/cyrus/exim for 10 years - until yesterday!
I upgraded to C6.7 and now there is no way I can find of connecting from evo to the cyrus imap(s) server
[root@maui:~]$ ps -ef|grep imap cyrus 27768 1 0 15:21 ? 00:00:00 /usr/lib/cyrus-imapd/cyrus-master -d cyrus 27775 27768 0 15:21 ? 00:00:00 imapd -s cyrus 27779 27768 0 15:21 ? 00:00:00 imapd cyrus 27781 27768 0 15:21 ? 00:00:00 imapd cyrus 27782 27768 0 15:21 ? 00:00:00 imapd cyrus 27783 27768 0 15:21 ? 00:00:00 imapd cyrus 27933 27768 0 15:36 ? 00:00:00 imapd cyrus 28048 27768 0 15:46 ? 00:00:00 imapd
evo is running on a fully updated F22 machine, cyrus/exim on C6.7 k-9 mail on a tablet and a mobile no longer connect even tried thunderbird which also would not connect
When trying to connect with evo I get Failed to open folder The reported error was "Could not connect to 148.197.29.5: Connection refused"
If I try to change things by editing the "Recieving Email" menu ie by changing the "Encryption method" from "SSL on a dedicated port" 993 to "No encryption" it still fails In fact just hitting Authentication "Check for supported types" gives Failed to query server for a list of supported authentication mechanisms. Could not connect to 148.197.29.5: Connection refused
wireshark shows just two lines using tcp.port==993 filter Unfortunately this does not mean much to me!
124 3.276582000 148.197.29.159 148.197.29.5 TCP 74 54564→993 [SYN] Seq=0 Win=29200 Len=0 MSS=1460 SACK_PERM=1 TSval=71392019 TSecr=0 WS=128
125 3.276770000 148.197.29.5 148.197.29.159 TCP 60 993→54564 [RST, ACK] Seq=1 Ack=1 Win=0 Len=0
I have tried the following to no avail tcpdump -s 0 -w dump_file ssldump -a -A -H -d -r dump_file and selinux in permissive mode firewall off
Help!
John
What does cyrus-imapd log?
Alexander
------------ Original Message ------------
Date: Tuesday, August 11, 2015 20:24:36 +0200 From: Alexander Dalloz ad+lists@uni-x.org
Am 11.08.2015 um 17:56 schrieb Dr J Austin:
Hi
I have been using evolution/cyrus/exim for 10 years - until yesterday!
I upgraded to C6.7 and now there is no way I can find of connecting from evo to the cyrus imap(s) server
[root@maui:~]$ ps -ef|grep imap cyrus 27768 1 0 15:21 ? 00:00:00 /usr/lib/cyrus-imapd/cyrus-master -d cyrus 27775 27768 0 15:21 ? 00:00:00 imapd -s cyrus 27779 27768 0 15:21 ? 00:00:00 imapd cyrus 27781 27768 0 15:21 ? 00:00:00 imapd cyrus 27782 27768 0 15:21 ? 00:00:00 imapd cyrus 27783 27768 0 15:21 ? 00:00:00 imapd cyrus 27933 27768 0 15:36 ? 00:00:00 imapd cyrus 28048 27768 0 15:46 ? 00:00:00 imapd
evo is running on a fully updated F22 machine, cyrus/exim on C6.7 k-9 mail on a tablet and a mobile no longer connect even tried thunderbird which also would not connect
When trying to connect with evo I get Failed to open folder The reported error was "Could not connect to 148.197.29.5: Connection refused"
If I try to change things by editing the "Recieving Email" menu ie by changing the "Encryption method" from "SSL on a dedicated port" 993 to "No encryption" it still fails In fact just hitting Authentication "Check for supported types" gives Failed to query server for a list of supported authentication mechanisms. Could not connect to 148.197.29.5: Connection refused
wireshark shows just two lines using tcp.port==993 filter Unfortunately this does not mean much to me!
124 3.276582000 148.197.29.159 148.197.29.5 TCP 74 54564→993 [SYN] Seq=0 Win=29200 Len=0 MSS=1460 SACK_PERM=1 TSval=71392019 TSecr=0 WS=128
125 3.276770000 148.197.29.5 148.197.29.159 TCP 60 993→54564 [RST, ACK] Seq=1 Ack=1 Win=0 Len=0
I have tried the following to no avail tcpdump -s 0 -w dump_file ssldump -a -A -H -d -r dump_file and selinux in permissive mode firewall off
Help!
John
What does cyrus-imapd log?
Alexander
A "connection refused" response generally means that the daemon isn't allowing the connection (isn't listening or is configured to reject), rather than something with the handshake protocol. So, mucking with your clients' encryption/authentication settings probably won't do anything.
You might also want to use netstat to confirm what's listening as your imapd and to confirm that it's listening on the external interface (not just localhost). Something like:
netstat -pln | egrep ':993|:143'
as root, should get the interesting bits.
Also, you might want to check to see if the cyrus config files were touched with the update (look also for rpmnew and rpmold cyrus config files).
On Tue, 11 Aug 2015, Richard wrote:
------------ Original Message ------------
Date: Tuesday, August 11, 2015 20:24:36 +0200 From: Alexander Dalloz ad+lists@uni-x.org
Am 11.08.2015 um 17:56 schrieb Dr J Austin:
Hi
I have been using evolution/cyrus/exim for 10 years - until yesterday!
I upgraded to C6.7 and now there is no way I can find of connecting from evo to the cyrus imap(s) server
[root@maui:~]$ ps -ef|grep imap cyrus 27768 1 0 15:21 ? 00:00:00 /usr/lib/cyrus-imapd/cyrus-master -d cyrus 27775 27768 0 15:21 ? 00:00:00 imapd -s cyrus 27779 27768 0 15:21 ? 00:00:00 imapd cyrus 27781 27768 0 15:21 ? 00:00:00 imapd cyrus 27782 27768 0 15:21 ? 00:00:00 imapd cyrus 27783 27768 0 15:21 ? 00:00:00 imapd cyrus 27933 27768 0 15:36 ? 00:00:00 imapd cyrus 28048 27768 0 15:46 ? 00:00:00 imapd
evo is running on a fully updated F22 machine, cyrus/exim on C6.7 k-9 mail on a tablet and a mobile no longer connect even tried thunderbird which also would not connect
When trying to connect with evo I get Failed to open folder The reported error was "Could not connect to 148.197.29.5: Connection refused"
If I try to change things by editing the "Recieving Email" menu ie by changing the "Encryption method" from "SSL on a dedicated port" 993 to "No encryption" it still fails In fact just hitting Authentication "Check for supported types" gives Failed to query server for a list of supported authentication mechanisms. Could not connect to 148.197.29.5: Connection refused
wireshark shows just two lines using tcp.port==993 filter Unfortunately this does not mean much to me!
124 3.276582000 148.197.29.159 148.197.29.5 TCP 74 54564→993 [SYN] Seq=0 Win=29200 Len=0 MSS=1460 SACK_PERM=1 TSval=71392019 TSecr=0 WS=128
125 3.276770000 148.197.29.5 148.197.29.159 TCP 60 993→54564 [RST, ACK] Seq=1 Ack=1 Win=0 Len=0
I have tried the following to no avail tcpdump -s 0 -w dump_file ssldump -a -A -H -d -r dump_file and selinux in permissive mode firewall off
Help!
John
What does cyrus-imapd log?
Alexander
A "connection refused" response generally means that the daemon isn't allowing the connection (isn't listening or is configured to reject), rather than something with the handshake protocol. So, mucking with your clients' encryption/authentication settings probably won't do anything.
You might also want to use netstat to confirm what's listening as your imapd and to confirm that it's listening on the external interface (not just localhost). Something like:
netstat -pln | egrep ':993|:143'
as root, should get the interesting bits.
Also, you might want to check to see if the cyrus config files were touched with the update (look also for rpmnew and rpmold cyrus config files).
Hi Richard
Hopefully this will be threaded but I am forced to use Alpine at the moment!
netstat output shows
[root@maui:~]$ netstat -pln | egrep ':993|:143' tcp 0 0 :::993 :::* LISTEN 2515/cyrus-master tcp 0 0 :::143 :::* LISTEN 2515/cyrus-master udp 0 0 0.0.0.0:143 0.0.0.0:* 1465/portreserve udp 0 0 0.0.0.0:993 0.0.0.0:* 1465/portreserve --------------------------------------------------------------------------- I did check whether cyrus type things were changed from 6.6 to 6.7 but it seems that nothing has been changed
Current (6.7 rpms) [root@maui:~]$ rpm -qa|grep -i cyrus cyrus-sasl-lib-2.1.23-15.el6_6.2.x86_64 cyrus-sasl-gssapi-2.1.23-15.el6_6.2.x86_64 cyrus-sasl-2.1.23-15.el6_6.2.x86_64 cyrus-sasl-devel-2.1.23-15.el6_6.2.x86_64 cyrus-imapd-utils-2.3.16-13.el6_6.x86_64 cyrus-imapd-2.3.16-13.el6_6.x86_64 cyrus-sasl-plain-2.1.23-15.el6_6.2.x86_64
I have checked as follows (and the 6.6 and 6.7 repos) root@maui:~]$ yum history list Loaded plugins: refresh-packagekit ID | Login user | Date and time | Action(s) | Altered ------------------------------------------------------------------------------- 296 | <localuser> | 2015-08-10 18:57 | E, I, U | 441 EE ---------------------------------------------------------------- root@maui:~]$ yum history info 296 |grep cyrus [root@maui:~]$
----------------------------------------------------------------- [root@maui:~]$ yum history info 296 Loaded plugins: refresh-packagekit Transaction ID : 296 Begin time : Mon Aug 10 18:57:05 2015 Begin rpmdb : 1690:ba774adeba878250ee530bba04e9d21f3131213a End time : 19:11:19 2015 (14 minutes) End rpmdb : 1700:3a7e6c33d354503cc503597393e85b8e82ed16e5 User : <localuser> Return-Code : Success Command Line : update Transaction performed with: Updated rpm-4.8.0-38.el6_6.x86_64 @updates Updated yum-3.2.29-60.el6.centos.noarch @base Packages Altered: Updated ImageMagick-6.5.4.7-7.el6_5.x86_64 @updates Update 6.7.2.7-2.el6.x86_64 @base Updated ImageMagick-c++-6.5.4.7-7.el6_5.x86_64 @updates ... Update 3.2.29-69.el6.centos.noarch @base Scriptlet output: 1 warning: /etc/sysctl.conf created as /etc/sysctl.conf.rpmnew 2 udevd[27166]: GOTO 'pulseaudio_check_usb' has no matching label in: '/lib/udev/rules.d/90-pulseaudio.rules' 3 Stopping slapd: [ OK ] 4 Starting slapd: [ OK ] history info -------------------------------------------------------------------
John
On Tue, 11 Aug 2015, Alexander Dalloz wrote:
Am 11.08.2015 um 17:56 schrieb Dr J Austin:
Hi
I have been using evolution/cyrus/exim for 10 years - until yesterday!
I upgraded to C6.7 and now there is no way I can find of connecting from evo to the cyrus imap(s) server
[root@maui:~]$ ps -ef|grep imap cyrus 27768 1 0 15:21 ? 00:00:00 /usr/lib/cyrus-imapd/cyrus-master -d cyrus 27775 27768 0 15:21 ? 00:00:00 imapd -s cyrus 27779 27768 0 15:21 ? 00:00:00 imapd cyrus 27781 27768 0 15:21 ? 00:00:00 imapd cyrus 27782 27768 0 15:21 ? 00:00:00 imapd cyrus 27783 27768 0 15:21 ? 00:00:00 imapd cyrus 27933 27768 0 15:36 ? 00:00:00 imapd cyrus 28048 27768 0 15:46 ? 00:00:00 imapd
evo is running on a fully updated F22 machine, cyrus/exim on C6.7 k-9 mail on a tablet and a mobile no longer connect even tried thunderbird which also would not connect
When trying to connect with evo I get Failed to open folder The reported error was "Could not connect to 148.197.29.5: Connection refused"
If I try to change things by editing the "Recieving Email" menu ie by changing the "Encryption method" from "SSL on a dedicated port" 993 to "No encryption" it still fails In fact just hitting Authentication "Check for supported types" gives Failed to query server for a list of supported authentication mechanisms. Could not connect to 148.197.29.5: Connection refused
wireshark shows just two lines using tcp.port==993 filter Unfortunately this does not mean much to me!
124 3.276582000 148.197.29.159 148.197.29.5 TCP 74 54564→993 [SYN] Seq=0 Win=29200 Len=0 MSS=1460 SACK_PERM=1 TSval=71392019 TSecr=0 WS=128
125 3.276770000 148.197.29.5 148.197.29.159 TCP 60 993→54564 [RST, ACK] Seq=1 Ack=1 Win=0 Len=0
I have tried the following to no avail tcpdump -s 0 -w dump_file ssldump -a -A -H -d -r dump_file and selinux in permissive mode firewall off
Help!
John
What does cyrus-imapd log?
Alexander
Where should I be looking ?
On Tue, 11 Aug 2015, Alexander Dalloz wrote:
Am 11.08.2015 um 21:47 schrieb Dr J Austin:
What does cyrus-imapd log?
Alexander
Where should I be looking ?
/var/log/maillog is the default log file for the MAIL facility. Else check your syslog() daemon configuration.
Alexander
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Hi Alexander
[root@maui:/var/log]$ watch 'tail -n40 maillog
does not quiver when I try to connect In coming mail can be seen but nothing about evo connections as far as I can see
There do seem to be some warnings/errors - they don't look relavant??
Many thanks for your help
John
Aug 11 21:17:29 maui lmtpunix[10038]: duplicate_check: 2601564684-JVVYITYRHUOROMKSRSWVQKEO@mzdrthfhs35.com-internet.us user.ja 0 Aug 11 21:17:29 maui lmtpunix[10038]: duplicate_check: 2601564684-JVVYITYRHUOROMKSRSWVQKEO@mzdrthfhs35.com-internet.us user.ja 0 Aug 11 21:17:29 maui lmtpunix[10038]: Delivered: 2601564684-JVVYITYRHUOROMKSRSWVQKEO@mzdrthfhs35.com-internet.us to mailbox: user.ja Aug 11 21:17:29 maui lmtpunix[10038]: mystore: starting txn 2147483715 Aug 11 21:17:29 maui lmtpunix[10038]: mystore: committing txn 2147483715 Aug 11 21:17:29 maui lmtpunix[10038]: duplicate_mark: 2601564684-JVVYITYRHUOROMKSRSWVQKEO@mzdrthfhs35.com-internet.us user.ja 1439324249 441771 Aug 11 21:17:29 maui lmtpunix[10048]: executed Aug 11 21:17:43 maui lmtpunix[10038]: accepted connection Aug 11 21:17:43 maui lmtpunix[10038]: lmtp connection preauth'd as postman Aug 11 21:17:43 maui lmtpunix[10038]: IOERROR: fstating sieve script /var/lib/imap/sieve/j/ja/defaultbc: No such file or directory Aug 11 21:17:43 maui lmtpunix[10038]: duplicate_check: CAJCQCtQ+aNqM8SKkH8etmjG6nFzPyLBXtiQ2uanMNPVq-wFioQ@mail.gmail.com user.ja 0 Aug 11 21:17:43 maui lmtpunix[10038]: duplicate_check: CAJCQCtQ+aNqM8SKkH8etmjG6nFzPyLBXtiQ2uanMNPVq-wFioQ@mail.gmail.com user.ja 0 Aug 11 21:17:43 maui lmtpunix[10038]: Delivered: CAJCQCtQ+aNqM8SKkH8etmjG6nFzPyLBXtiQ2uanMNPVq-wFioQ@mail.gmail.com to mailbox: user.ja Aug 11 21:17:43 maui lmtpunix[10038]: mystore: starting txn 2147483717 Aug 11 21:17:43 maui lmtpunix[10038]: mystore: committing txn 2147483717 Aug 11 21:17:43 maui lmtpunix[10038]: duplicate_mark: CAJCQCtQ+aNqM8SKkH8etmjG6nFzPyLBXtiQ2uanMNPVq-wFioQ@mail.gmail.com user.ja 1439324263 441772 Aug 11 21:18:08 maui lmtpunix[10048]: accepted connection Aug 11 21:18:08 maui lmtpunix[10048]: lmtp connection preauth'd as postman Aug 11 21:18:08 maui lmtpunix[10048]: IOERROR: fstating sieve script /var/lib/imap/sieve/j/ja/defaultbc: No such file or directory Aug 11 21:18:08 maui lmtpunix[10048]: duplicate_check: 55CA5873.7090007@htt-consult.com user.ja 0 Aug 11 21:18:08 maui lmtpunix[10048]: duplicate_check: 55CA5873.7090007@htt-consult.com user.ja 0 Aug 11 21:18:08 maui lmtpunix[10048]: Delivered: 55CA5873.7090007@htt-consult.com to mailbox: user.ja Aug 11 21:18:08 maui lmtpunix[10048]: mystore: starting txn 2147483718 Aug 11 21:18:08 maui lmtpunix[10048]: mystore: committing txn 2147483718 Aug 11 21:18:08 maui lmtpunix[10048]: duplicate_mark: 55CA5873.7090007@htt-consult.com user.ja 1439324288 441773 Aug 11 21:19:03 maui master[2515]: process 10038 exited, status 0 Aug 11 21:19:13 maui master[2515]: process 10048 exited, status 0 Aug 11 21:19:13 maui master[10160]: about to exec /usr/lib/cyrus-imapd/lmtpd Aug 11 21:19:13 maui lmtpunix[10160]: executed
Dr J Austin wrote:
On Tue, 11 Aug 2015, Alexander Dalloz wrote:
Am 11.08.2015 um 21:47 schrieb Dr J Austin:
What does cyrus-imapd log?
<snip>
There do seem to be some warnings/errors - they don't look relavant??
<snip>
Aug 11 21:17:43 maui lmtpunix[10038]: IOERROR: fstating sieve script /var/lib/imap/sieve/j/ja/defaultbc: No such file or directory 441773
<snip>
Aug 11 21:19:03 maui master[2515]: process 10038 exited, status 0 Aug 11 21:19:13 maui master[2515]: process 10048 exited, status 0
Not sure about these last two, but what's that sieve script doing?
mark
Am 11.08.2015 um 22:28 schrieb Dr J Austin:
Hi Alexander
[root@maui:/var/log]$ watch 'tail -n40 maillog
does not quiver when I try to connect
That's suspicious.
Let's exclude it is the client which causes the problem: Connect directly to the IMAPS server on CLI.
openssl s_client -connect <server ip>:993
You hopefully see a greeting message from the IMAP server. Then issue
a1 LOGIN username password
If you see a success message that you logged in, then everything is fine with your cyrus-imapd.
Logout by entering
a2 LOGOUT
If you got that far, the troublemaker is Evolution. Can't help you with that one as I am not using it. Validate all the account settings to be valid.
In coming mail can be seen but nothing about evo connections as far as I can see
There do seem to be some warnings/errors - they don't look relavant??
Right, irrelevant for your isse.
Many thanks for your help
John
Aug 11 21:17:29 maui lmtpunix[10038]: duplicate_check: 2601564684-JVVYITYRHUOROMKSRSWVQKEO@mzdrthfhs35.com-internet.us user.ja 0 Aug 11 21:17:29 maui lmtpunix[10038]: duplicate_check: 2601564684-JVVYITYRHUOROMKSRSWVQKEO@mzdrthfhs35.com-internet.us user.ja 0 Aug 11 21:17:29 maui lmtpunix[10038]: Delivered: 2601564684-JVVYITYRHUOROMKSRSWVQKEO@mzdrthfhs35.com-internet.us to mailbox: user.ja Aug 11 21:17:29 maui lmtpunix[10038]: mystore: starting txn 2147483715 Aug 11 21:17:29 maui lmtpunix[10038]: mystore: committing txn 2147483715 Aug 11 21:17:29 maui lmtpunix[10038]: duplicate_mark: 2601564684-JVVYITYRHUOROMKSRSWVQKEO@mzdrthfhs35.com-internet.us user.ja 1439324249 441771 Aug 11 21:17:29 maui lmtpunix[10048]: executed Aug 11 21:17:43 maui lmtpunix[10038]: accepted connection Aug 11 21:17:43 maui lmtpunix[10038]: lmtp connection preauth'd as postman Aug 11 21:17:43 maui lmtpunix[10038]: IOERROR: fstating sieve script /var/lib/imap/sieve/j/ja/defaultbc: No such file or directory
Cyrus-IMAPd tries to execute the default sieve but there is no sieve filter defined for the mailbox. You can ignore that or just configure your syslog to not log these debug messages.
Aug 11 21:17:43 maui lmtpunix[10038]: duplicate_check: CAJCQCtQ+aNqM8SKkH8etmjG6nFzPyLBXtiQ2uanMNPVq-wFioQ@mail.gmail.com user.ja 0 Aug 11 21:17:43 maui lmtpunix[10038]: duplicate_check: CAJCQCtQ+aNqM8SKkH8etmjG6nFzPyLBXtiQ2uanMNPVq-wFioQ@mail.gmail.com user.ja 0 Aug 11 21:17:43 maui lmtpunix[10038]: Delivered: CAJCQCtQ+aNqM8SKkH8etmjG6nFzPyLBXtiQ2uanMNPVq-wFioQ@mail.gmail.com to mailbox: user.ja Aug 11 21:17:43 maui lmtpunix[10038]: mystore: starting txn 2147483717 Aug 11 21:17:43 maui lmtpunix[10038]: mystore: committing txn 2147483717 Aug 11 21:17:43 maui lmtpunix[10038]: duplicate_mark: CAJCQCtQ+aNqM8SKkH8etmjG6nFzPyLBXtiQ2uanMNPVq-wFioQ@mail.gmail.com user.ja 1439324263 441772 Aug 11 21:18:08 maui lmtpunix[10048]: accepted connection Aug 11 21:18:08 maui lmtpunix[10048]: lmtp connection preauth'd as postman Aug 11 21:18:08 maui lmtpunix[10048]: IOERROR: fstating sieve script /var/lib/imap/sieve/j/ja/defaultbc: No such file or directory
Same as above.
Aug 11 21:18:08 maui lmtpunix[10048]: duplicate_check: 55CA5873.7090007@htt-consult.com user.ja 0 Aug 11 21:18:08 maui lmtpunix[10048]: duplicate_check: 55CA5873.7090007@htt-consult.com user.ja 0 Aug 11 21:18:08 maui lmtpunix[10048]: Delivered: 55CA5873.7090007@htt-consult.com to mailbox: user.ja Aug 11 21:18:08 maui lmtpunix[10048]: mystore: starting txn 2147483718 Aug 11 21:18:08 maui lmtpunix[10048]: mystore: committing txn 2147483718 Aug 11 21:18:08 maui lmtpunix[10048]: duplicate_mark: 55CA5873.7090007@htt-consult.com user.ja 1439324288 441773
So far just activity of the LMTP processes to deliver mail into the mailbox.
Aug 11 21:19:03 maui master[2515]: process 10038 exited, status 0 Aug 11 21:19:13 maui master[2515]: process 10048 exited, status 0
Processes get terminated. That's fine.
Aug 11 21:19:13 maui master[10160]: about to exec /usr/lib/cyrus-imapd/lmtpd Aug 11 21:19:13 maui lmtpunix[10160]: executed
You really should see your user login in this log file.
Alexander
On Tue, 11 Aug 2015, Alexander Dalloz wrote:
Am 11.08.2015 um 22:28 schrieb Dr J Austin:
Hi Alexander
[root@maui:/var/log]$ watch 'tail -n40 maillog
does not quiver when I try to connect
That's suspicious.
Let's exclude it is the client which causes the problem: Connect directly to the IMAPS server on CLI.
openssl s_client -connect <server ip>:993
You hopefully see a greeting message from the IMAP server. Then issue
a1 LOGIN username password
If you see a success message that you logged in, then everything is fine with your cyrus-imapd.
Logout by entering
a2 LOGOUT
If you got that far, the troublemaker is Evolution. Can't help you with that one as I am not using it. Validate all the account settings to be valid.
In coming mail can be seen but nothing about evo connections as far as I can see
There do seem to be some warnings/errors - they don't look relavant??
Right, irrelevant for your isse.
Many thanks for your help
John
You really should see your user login in this log file.
Alexander
Hmmm
Summary On the server maui itself Failure when using IP address but works with name maui for root and fred
On a separate machine paxos Failure for both IP address and name maui and maui.jaa.org.uk for both root and ja
However the error messages are different between maui and paxos
John
------------------------------------------------------------------------- As user fred on the server maui itself [fred@maui ~]$ openssl s_client -connect 148.197.29.5:993 socket: Connection refused connect:errno=111
As root on the server maui itself [root@maui:/var/log]$ openssl s_client -connect 148.197.29.5:993 socket: Connection refused connect:errno=111 ------------------------------------------------------------------------ As root on maui using "name" [root@maui:/var/log]$ openssl s_client -connect maui:993 CONNECTED(00000003) depth=0 C = UK, ST = Hampshire, L = Fareham, CN = maui.jaa.org.uk, emailAddress = ja@jaa.org.uk verify error:num=18:self signed certificate verify return:1 depth=0 C = UK, ST = Hampshire, L = Fareham, CN = maui.jaa.org.uk, emailAddress = ja@jaa.org.uk verify return:1 --- Certificate chain 0 s:/C=UK/ST=Hampshire/L=Fareham/CN=maui.jaa.org.uk/emailAddress=ja@jaa.org.uk
i:/C=UK/ST=Hampshire/L=Fareham/CN=maui.jaa.org.uk/emailAddress=ja@jaa.org.uk --- Server certificate ... * OK [CAPABILITY IMAP4 IMAP4rev1 LITERAL+ ID AUTH=PLAIN SASL-IR COMPRESS=DEFLATE] maui.jaa.org.uk Cyrus IMAP v2.3.16-Fedora-RPM-2.3.16-13.el6_6 server ready a1 LOGIN username password al OK [CAPABILITY IMAP4 IMAP4rev1 LITERAL+ ID LOGINDISABLED AUTH=PLAIN COMPRESS=DEFLATE ACL RIGHTS=kxte QUOTA MAILBOX-REFERRALS NAMESPACE UIDPLUS NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND BINARY SORT SORT=MODSEQ THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE CATENATE CONDSTORE SCAN IDLE LISTEXT LIST-SUBSCRIBED X-NETSCAPE URLAUTH] User logged in a2 LOGOUT * BYE LOGOUT received a2 OK Completed read:errno=0
These also work OK [ja@maui ~]$ openssl s_client -connect maui:993 ja@maui ~ 4$ openssl s_client -connect maui.jaa.org.uk:9 --------------------------------------------------------------------- On a separate machine paxos - always fails
As user ja on a separate machine paxos ja@paxos ~ 1$ openssl s_client -connect 148.197.29.5:993 socket: Bad file descriptor connect:errno=9
As root on a separate machine paxos [root@paxos:~]$ openssl s_client -connect 148.197.29.5:993 socket: Bad file descriptor connect:errno=9
[root@paxos:~]$ openssl s_client -connect maui:993 socket: Bad file descriptor connect:errno=9
[root@paxos:~]$ openssl s_client -connect maui.jaa.org.uk:993 socket: Bad file descriptor connect:errno=9
[root@paxos:~]$ exit logout ja@paxos ~ 3$ openssl s_client -connect maui:993 socket: Bad file descriptor connect:errno=9
ja@paxos ~ 4$ openssl s_client -connect maui.jaa.org.uk:993 socket: Bad file descriptor connect:errno=9
On Tue, 11 Aug 2015, Dr J Austin wrote:
On Tue, 11 Aug 2015, Alexander Dalloz wrote:
Am 11.08.2015 um 22:28 schrieb Dr J Austin:
Hi Alexander
[root@maui:/var/log]$ watch 'tail -n40 maillog
does not quiver when I try to connect
That's suspicious.
Let's exclude it is the client which causes the problem: Connect directly to the IMAPS server on CLI.
openssl s_client -connect <server ip>:993
You hopefully see a greeting message from the IMAP server. Then issue
a1 LOGIN username password
If you see a success message that you logged in, then everything is fine with your cyrus-imapd.
Logout by entering
a2 LOGOUT
If you got that far, the troublemaker is Evolution. Can't help you with that one as I am not using it. Validate all the account settings to be valid.
In coming mail can be seen but nothing about evo connections as far as I can see
There do seem to be some warnings/errors - they don't look relavant??
Right, irrelevant for your isse.
Many thanks for your help
John
You really should see your user login in this log file.
Alexander
Hmmm
Summary On the server maui itself Failure when using IP address but works with name maui for root and fred
On a separate machine paxos Failure for both IP address and name maui and maui.jaa.org.uk for both root and ja
However the error messages are different between maui and paxos
John
As user fred on the server maui itself [fred@maui ~]$ openssl s_client -connect 148.197.29.5:993 socket: Connection refused connect:errno=111
As root on the server maui itself [root@maui:/var/log]$ openssl s_client -connect 148.197.29.5:993 socket: Connection refused connect:errno=111
As root on maui using "name" [root@maui:/var/log]$ openssl s_client -connect maui:993 CONNECTED(00000003) depth=0 C = UK, ST = Hampshire, L = Fareham, CN = maui.jaa.org.uk, emailAddress = ja@jaa.org.uk verify error:num=18:self signed certificate verify return:1 depth=0 C = UK, ST = Hampshire, L = Fareham, CN = maui.jaa.org.uk, emailAddress = ja@jaa.org.uk verify return:1
Certificate chain 0 s:/C=UK/ST=Hampshire/L=Fareham/CN=maui.jaa.org.uk/emailAddress=ja@jaa.org.uk
i:/C=UK/ST=Hampshire/L=Fareham/CN=maui.jaa.org.uk/emailAddress=ja@jaa.org.uk
Server certificate ...
- OK [CAPABILITY IMAP4 IMAP4rev1 LITERAL+ ID AUTH=PLAIN SASL-IR
COMPRESS=DEFLATE] maui.jaa.org.uk Cyrus IMAP v2.3.16-Fedora-RPM-2.3.16-13.el6_6 server ready a1 LOGIN username password al OK [CAPABILITY IMAP4 IMAP4rev1 LITERAL+ ID LOGINDISABLED AUTH=PLAIN COMPRESS=DEFLATE ACL RIGHTS=kxte QUOTA MAILBOX-REFERRALS NAMESPACE UIDPLUS NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND BINARY SORT SORT=MODSEQ THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE CATENATE CONDSTORE SCAN IDLE LISTEXT LIST-SUBSCRIBED X-NETSCAPE URLAUTH] User logged in a2 LOGOUT
- BYE LOGOUT received
a2 OK Completed read:errno=0
These also work OK [ja@maui ~]$ openssl s_client -connect maui:993 ja@maui ~ 4$ openssl s_client -connect maui.jaa.org.uk:9
On a separate machine paxos - always fails
As user ja on a separate machine paxos ja@paxos ~ 1$ openssl s_client -connect 148.197.29.5:993 socket: Bad file descriptor connect:errno=9
As root on a separate machine paxos [root@paxos:~]$ openssl s_client -connect 148.197.29.5:993 socket: Bad file descriptor connect:errno=9
[root@paxos:~]$ openssl s_client -connect maui:993 socket: Bad file descriptor connect:errno=9
[root@paxos:~]$ openssl s_client -connect maui.jaa.org.uk:993 socket: Bad file descriptor connect:errno=9
[root@paxos:~]$ exit logout ja@paxos ~ 3$ openssl s_client -connect maui:993 socket: Bad file descriptor connect:errno=9
ja@paxos ~ 4$ openssl s_client -connect maui.jaa.org.uk:993 socket: Bad file descriptor connect:errno=9
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
A little more info about using s_client on paxos to connect to maui
openssl s_client -connect maui.jaa.org.uk:993
Wireshark shows just one packet each way (to/from port 993) A request for connection from paxos to maui and a reset from maui to paxos
[Expert Info (Chat/sequence): Connection establish request (SYN): server port 993] ... [Severity level: Chat] [Group: sequence]
(RST, ACK) [Expert Info (Warn/sequence): Connection reset (RST] [Connection reset (RST)] [Severity level: Warn] [Group: Sequence]
John
Date: Wednesday, August 12, 2015 11:14:29 +0100 From: Dr J Austin ja@maui.jaa.org.uk
On Tue, 11 Aug 2015, Dr J Austin wrote:
On Tue, 11 Aug 2015, Alexander Dalloz wrote:
Am 11.08.2015 um 22:28 schrieb Dr J Austin:
Hi Alexander
[root@maui:/var/log]$ watch 'tail -n40 maillog
does not quiver when I try to connect
That's suspicious.
Let's exclude it is the client which causes the problem: Connect directly to the IMAPS server on CLI.
openssl s_client -connect <server ip>:993
You hopefully see a greeting message from the IMAP server. Then issue
a1 LOGIN username password
If you see a success message that you logged in, then everything is fine with your cyrus-imapd.
Logout by entering
a2 LOGOUT
If you got that far, the troublemaker is Evolution. Can't help you with that one as I am not using it. Validate all the account settings to be valid.
In coming mail can be seen but nothing about evo connections as far as I can see
There do seem to be some warnings/errors - they don't look relavant??
Right, irrelevant for your isse.
Many thanks for your help
John
You really should see your user login in this log file.
Alexander
Hmmm
Summary On the server maui itself Failure when using IP address but works with name maui for root and fred
On a separate machine paxos Failure for both IP address and name maui and maui.jaa.org.uk for both root and ja
However the error messages are different between maui and paxos
John
-------- As user fred on the server maui itself [fred@maui ~]$ openssl s_client -connect 148.197.29.5:993 socket: Connection refused connect:errno=111
As root on the server maui itself [root@maui:/var/log]$ openssl s_client -connect 148.197.29.5:993 socket: Connection refused connect:errno=111
------- As root on maui using "name" [root@maui:/var/log]$ openssl s_client -connect maui:993 CONNECTED(00000003) depth=0 C = UK, ST = Hampshire, L = Fareham, CN = maui.jaa.org.uk, emailAddress = ja@jaa.org.uk verify error:num=18:self signed certificate verify return:1 depth=0 C = UK, ST = Hampshire, L = Fareham, CN = maui.jaa.org.uk, emailAddress = ja@jaa.org.uk verify return:1
Certificate chain 0 s:/C=UK/ST=Hampshire/L=Fareham/CN=maui.jaa.org.uk/emailAddress=ja @jaa.org.uk
i:/C=UK/ST=Hampshire/L=Fareham/CN=maui.jaa.org.uk/emailAddress=ja @jaa.org.uk --- Server certificate ...
- OK [CAPABILITY IMAP4 IMAP4rev1 LITERAL+ ID AUTH=PLAIN SASL-IR
COMPRESS=DEFLATE] maui.jaa.org.uk Cyrus IMAP v2.3.16-Fedora-RPM-2.3.16-13.el6_6 server ready a1 LOGIN username password al OK [CAPABILITY IMAP4 IMAP4rev1 LITERAL+ ID LOGINDISABLED AUTH=PLAIN COMPRESS=DEFLATE ACL RIGHTS=kxte QUOTA MAILBOX-REFERRALS NAMESPACE UIDPLUS NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND BINARY SORT SORT=MODSEQ THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE CATENATE CONDSTORE SCAN IDLE LISTEXT LIST-SUBSCRIBED X-NETSCAPE URLAUTH] User logged in a2 LOGOUT
- BYE LOGOUT received
a2 OK Completed read:errno=0
These also work OK [ja@maui ~]$ openssl s_client -connect maui:993 ja@maui ~ 4$ openssl s_client -connect maui.jaa.org.uk:9
---- On a separate machine paxos - always fails
As user ja on a separate machine paxos ja@paxos ~ 1$ openssl s_client -connect 148.197.29.5:993 socket: Bad file descriptor connect:errno=9
As root on a separate machine paxos [root@paxos:~]$ openssl s_client -connect 148.197.29.5:993 socket: Bad file descriptor connect:errno=9
[root@paxos:~]$ openssl s_client -connect maui:993 socket: Bad file descriptor connect:errno=9
[root@paxos:~]$ openssl s_client -connect maui.jaa.org.uk:993 socket: Bad file descriptor connect:errno=9
[root@paxos:~]$ exit logout ja@paxos ~ 3$ openssl s_client -connect maui:993 socket: Bad file descriptor connect:errno=9
ja@paxos ~ 4$ openssl s_client -connect maui.jaa.org.uk:993 socket: Bad file descriptor connect:errno=9
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
A little more info about using s_client on paxos to connect to maui
openssl s_client -connect maui.jaa.org.uk:993
Wireshark shows just one packet each way (to/from port 993) A request for connection from paxos to maui and a reset from maui to paxos
I don't think that wireshark adds much to this. Unless you had a proxy in the middle, the "connection refused" responses already indicated that your connections were getting to the/a server, it's just refusing the connections.
Connections by name, especially short forms, are suspect unless you can be very certain of how they are being resolved (i.e., what IPnumber you end up trying to connect to). There is no reason that using root to connect to port 993 would work when a normal user doesn't. An IMAP server either accepts the initial connection from a machine or not - it doesn't know or care what type of user is originating the connection.
You may want to look into what you were able to connect to via:
openssl s_client -connect maui:993
I'd start by looking up what "maui" resolves to.
I just looked up maui.jaa.org.uk. It (currently) resolves to 213.152.52.233, not the 148.197 you seemed to be using above. I realize you may have some form of dynamic dns going here, but thought I'd mention it.
Could you try (as root) two slightly different version of my earlier netstat commands:
netstat -pnlA inet | egrep ':993|:143'
netstat -pnlA inet6 | egrep ':993|:143'
the addition of "A inet/inet6" will show whether it is listening via ipv4 (inet) or ipv6 (inet6) on the imap ports.
On Wed, 12 Aug 2015, Richard wrote:
I don't think that wireshark adds much to this. Unless you had a proxy in the middle, the "connection refused" responses already indicated that your connections were getting to the/a server, it's just refusing the connections.
Connections by name, especially short forms, are suspect unless you can be very certain of how they are being resolved (i.e., what IPnumber you end up trying to connect to). There is no reason that using root to connect to port 993 would work when a normal user doesn't. An IMAP server either accepts the initial connection from a machine or not - it doesn't know or care what type of user is originating the connection.
You may want to look into what you were able to connect to via:
openssl s_client -connect maui:993
I'd start by looking up what "maui" resolves to.
I just looked up maui.jaa.org.uk. It (currently) resolves to 213.152.52.233, not the 148.197 you seemed to be using above. I realize you may have some form of dynamic dns going here, but thought I'd mention it.
Could you try (as root) two slightly different version of my earlier netstat commands:
netstat -pnlA inet | egrep ':993|:143'
netstat -pnlA inet6 | egrep ':993|:143'
the addition of "A inet/inet6" will show whether it is listening via ipv4 (inet) or ipv6 (inet6) on the imap port
Hi Richard
I have been working at trying to get cyrus to listen on 148.197.29.5 interface instead of the localhost - I have failed
Whenever I add things to /etc/cyrus.conf such as imaps cmd="imapd -s" listen="[148.197.29.5]:imaps" prefork=1
[root@maui:~]$ service cyrus-imapd restart
[root@maui:~]$ ps -ef|grep cyr cyrus 22187 1 0 13:26 ? 00:00:00 idled cyrus 28044 1 0 13:54 ? 00:00:00 /usr/lib/cyrus-imapd/cyrus-master -d cyrus 28048 1 0 13:54 ? 00:00:00 idled cyrus 28050 28044 0 13:54 ? 00:00:00 imapd cyrus 28051 28044 0 13:54 ? 00:00:00 pop3d cyrus 28052 28044 0 13:54 ? 00:00:00 pop3d -s cyrus 28053 28044 0 13:54 ? 00:00:00 lmtpd -a cyrus 28054 28044 0 13:54 ? 00:00:00 imapd cyrus 28055 28044 0 13:54 ? 00:00:00 pop3d cyrus 28058 28044 0 13:54 ? 00:00:00 imapd cyrus 28059 28044 0 13:54 ? 00:00:00 imapd cyrus 28060 28044 0 13:54 ? 00:00:00 imapd cyrus 28061 28044 1 13:54 ? 00:00:00 pop3d root 28063 11348 0 13:54 pts/2 00:00:00 grep cyr
Then no "imapd -s" appears
I have tried all sorts of combinations in cyrus.conf but all fail to LISTEN on 148.197.29.5
I have tried taking maui out of /etc/hosts
My IP addresses are a bit odd - but I have been using 148.197.29.0/24 for so long, ... They have never escaped as far as I know! client machine ja@paxos ~ 1$ host 148.197.29.5 5.29.197.148.in-addr.arpa domain name pointer maui.jaa.org.uk. ja@paxos ~ 2$ host maui maui.jaa.org.uk has address 148.197.29.5
server machine [root@maui:/etc/pki/cyrus-imapd]$ host maui maui.jaa.org.uk has address 148.197.29.5 ----------------------------------------------------------------------- With these lines in cyrus.conf imap cmd="imapd" listen="imap" prefork=5 # imaps cmd="imapd -s" listen="imaps" prefork=1 imaps cmd="imapd -s" listen="[148.197.29.5]:imaps" prefork=1 pop3 cmd="pop3d" listen="pop3" prefork=3 pop3s cmd="pop3d -s" listen="pop3s" prefork=1 sieve cmd="timsieved" listen="sieve" prefork=0
your two netstat lines show [root@maui:/etc/pki/cyrus-imapd]$ netstat -pnlA inet | egrep ':993|:143' udp 0 0 0.0.0.0:143 0.0.0.0:* 1465/portreserve udp 0 0 0.0.0.0:993 0.0.0.0:* 1465/portreserve
[root@maui:/etc/pki/cyrus-imapd]$ netstat -pnlA inet6 | egrep ':993|:143' tcp 0 0 :::143 :::* LISTEN 29460/cyrus-master
-------------------------------------------------------------------------- With imap cmd="imapd" listen="imap" prefork=5 imaps cmd="imapd -s" listen="imaps" prefork=1 # imaps cmd="imapd -s" listen="[148.197.29.5]:imaps" prefork=1 pop3 cmd="pop3d" listen="pop3" prefork=3 pop3s cmd="pop3d -s" listen="pop3s" prefork=1 sieve cmd="timsieved" listen="sieve" prefork=0
[root@maui:/etc/pki/cyrus-imapd]$ netstat -pnlA inet | egrep ':993|:143' udp 0 0 0.0.0.0:143 0.0.0.0:* 1465/portreserve udp 0 0 0.0.0.0:993 0.0.0.0:* 1465/portreserve [root@maui:/etc/pki/cyrus-imapd]$ netstat -pnlA inet6 | egrep ':993|:143' tcp 0 0 :::993 :::* LISTEN 30596/cyrus-master tcp 0 0 :::143 :::* LISTEN 30596/cyrus-master
Why will cyrus not listen on 148.197.29.5 ?
John
Am 12.08.2015 um 15:16 schrieb Dr J Austin:
Hi Richard
I have been working at trying to get cyrus to listen on 148.197.29.5 interface instead of the localhost - I have failed
Whenever I add things to /etc/cyrus.conf such as imaps cmd="imapd -s" listen="[148.197.29.5]:imaps" prefork=1
No square brackets around the ip address.
[root@maui:~]$ service cyrus-imapd restart
[root@maui:~]$ ps -ef|grep cyr cyrus 22187 1 0 13:26 ? 00:00:00 idled cyrus 28044 1 0 13:54 ? 00:00:00 /usr/lib/cyrus-imapd/cyrus-master -d cyrus 28048 1 0 13:54 ? 00:00:00 idled cyrus 28050 28044 0 13:54 ? 00:00:00 imapd cyrus 28051 28044 0 13:54 ? 00:00:00 pop3d cyrus 28052 28044 0 13:54 ? 00:00:00 pop3d -s cyrus 28053 28044 0 13:54 ? 00:00:00 lmtpd -a cyrus 28054 28044 0 13:54 ? 00:00:00 imapd cyrus 28055 28044 0 13:54 ? 00:00:00 pop3d cyrus 28058 28044 0 13:54 ? 00:00:00 imapd cyrus 28059 28044 0 13:54 ? 00:00:00 imapd cyrus 28060 28044 0 13:54 ? 00:00:00 imapd cyrus 28061 28044 1 13:54 ? 00:00:00 pop3d root 28063 11348 0 13:54 pts/2 00:00:00 grep cyr
Then no "imapd -s" appears
I have tried all sorts of combinations in cyrus.conf but all fail to LISTEN on 148.197.29.5
Make sure the IP address 148.197.29.5 is definitely up on any of the system's devices. Verify running "ip address list".
[ ... ]
Why will cyrus not listen on 148.197.29.5 ?
I am sure it is because that IP address isn't bound to any device.
John
Alexander
On Wed, 12 Aug 2015, Alexander Dalloz wrote:
I have been working at trying to get cyrus to listen on 148.197.29.5 interface instead of the localhost - I have failed
No square brackets around the ip address.
imap cmd="imapd" listen="imap" prefork=5 # imaps cmd="imapd -s" listen="imaps" prefork=1 imaps cmd="imapd -s" listen="148.197.29.5:imaps" prefork=1 pop3 cmd="pop3d" listen="pop3" prefork=3
[root@maui:/var/log]$ gedit /etc/cyrus.conf [root@maui:/var/log]$ service cyrus-imapd stop Shutting down cyrus-imapd: [ OK ] Exporting cyrus-imapd databases: [ OK ] [root@maui:/var/log]$ service cyrus-imapd start Importing cyrus-imapd databases: [ OK ] Starting cyrus-imapd: [ OK ] [root@maui:/var/log]$ ps -ef|grep cyrus cyrus 31699 1 0 19:13 ? 00:00:00 /usr/lib/cyrus-imapd/cyrus-master -d cyrus 31703 1 0 19:13 ? 00:00:00 idled cyrus 31705 31699 0 19:13 ? 00:00:00 imapd cyrus 31706 31699 0 19:13 ? 00:00:00 pop3d cyrus 31707 31699 0 19:13 ? 00:00:00 pop3d -s cyrus 31708 31699 0 19:13 ? 00:00:00 lmtpd -a cyrus 31709 31699 0 19:13 ? 00:00:00 imapd cyrus 31710 31699 0 19:13 ? 00:00:00 pop3d cyrus 31712 31699 0 19:13 ? 00:00:00 imapd cyrus 31713 31699 0 19:13 ? 00:00:00 imapd cyrus 31714 31699 0 19:13 ? 00:00:00 imapd cyrus 31715 31699 0 19:13 ? 00:00:00 pop3d root 31717 3627 0 19:13 pts/1 00:00:00 grep cyrus [root@maui:/var/log]$ ip a l 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000 link/ether 00:30:1b:a0:4d:cc brd ff:ff:ff:ff:ff:ff inet 148.197.29.5/24 brd 148.197.29.255 scope global eth0 inet6 fe80::230:1bff:fea0:4dcc/64 scope link valid_lft forever preferred_lft forever
Then no "imapd -s" appears
I have tried all sorts of combinations in cyrus.conf but all fail to LISTEN on 148.197.29.5
Make sure the IP address 148.197.29.5 is definitely up on any of the system's devices. Verify running "ip address list".
See above
Why will cyrus not listen on 148.197.29.5 ?
I am sure it is because that IP address isn't bound to any device.
I must be missing something very obvious !
John
A few extra tests
[root@maui:/var/log]$ nmap -A -T4 -p 993 127.0.0.1
Starting Nmap 5.51 ( http://nmap.org ) at 2015-08-12 19:23 BST Nmap scan report for localhost.localdomain (127.0.0.1) Host is up (0.000049s latency). PORT STATE SERVICE VERSION 993/tcp closed imaps Too many fingerprints match this host to give specific OS details Network Distance: 0 hops
OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 2.12 seconds ------------------------------------------------------------------------ [root@maui:/var/log]$ nmap -A -T4 -p 993 148.197.29.5
Starting Nmap 5.51 ( http://nmap.org ) at 2015-08-12 19:23 BST Nmap scan report for maui.jaa.org.uk (148.197.29.5) Host is up (0.000051s latency). PORT STATE SERVICE VERSION 993/tcp closed imaps Too many fingerprints match this host to give specific OS details Network Distance: 0 hops
OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 2.16 seconds ------------------------------------------------------------------------ [root@maui:/var/log]$ nmap -A -T4 -p 993 maui
Starting Nmap 5.51 ( http://nmap.org ) at 2015-08-12 19:20 BST Nmap scan report for maui (127.0.0.1) Host is up (0.000052s latency). Other addresses for maui (not scanned): 127.0.0.1 148.197.29.5 rDNS record for 127.0.0.1: localhost.localdomain PORT STATE SERVICE VERSION 993/tcp closed imaps Too many fingerprints match this host to give specific OS details Network Distance: 0 hops
OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 2.14 seconds ------------------------------------------------------------------------
From another machine
[root@paxos:~]$ nmap -A -T4 -p 993 maui
Starting Nmap 6.47 ( http://nmap.org ) at 2015-08-12 19:27 BST Nmap scan report for maui (148.197.29.5) Host is up (0.00016s latency). PORT STATE SERVICE VERSION 993/tcp closed imaps MAC Address: 00:30:1B:A0:4D:CC (Shuttle) Too many fingerprints match this host to give specific OS details Network Distance: 1 hop
TRACEROUTE HOP RTT ADDRESS 1 0.16 ms 148.197.29.5
OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 1.84 seconds
Am 12.08.2015 um 20:29 schrieb Dr J Austin:
On Wed, 12 Aug 2015, Alexander Dalloz wrote:
I have been working at trying to get cyrus to listen on 148.197.29.5 interface instead of the localhost - I have failed
No square brackets around the ip address.
imap cmd="imapd" listen="imap" prefork=5 # imaps cmd="imapd -s" listen="imaps" prefork=1 imaps cmd="imapd -s" listen="148.197.29.5:imaps" prefork=1
That limits the listener to bind to only the specific IP address and not to all interfaces including localhost.
pop3 cmd="pop3d" listen="pop3" prefork=3
[root@maui:/var/log]$ gedit /etc/cyrus.conf [root@maui:/var/log]$ service cyrus-imapd stop Shutting down cyrus-imapd: [ OK ] Exporting cyrus-imapd databases: [ OK ] [root@maui:/var/log]$ service cyrus-imapd start Importing cyrus-imapd databases: [ OK ] Starting cyrus-imapd: [ OK ]
What gets being logged at exactly that point? cyrus-imapd logs information at service start.
Please provide the content of /etc/imapd.conf.
[root@maui:/var/log]$ ps -ef|grep cyrus cyrus 31699 1 0 19:13 ? 00:00:00 /usr/lib/cyrus-imapd/cyrus-master -d cyrus 31703 1 0 19:13 ? 00:00:00 idled cyrus 31705 31699 0 19:13 ? 00:00:00 imapd cyrus 31706 31699 0 19:13 ? 00:00:00 pop3d cyrus 31707 31699 0 19:13 ? 00:00:00 pop3d -s cyrus 31708 31699 0 19:13 ? 00:00:00 lmtpd -a cyrus 31709 31699 0 19:13 ? 00:00:00 imapd cyrus 31710 31699 0 19:13 ? 00:00:00 pop3d cyrus 31712 31699 0 19:13 ? 00:00:00 imapd cyrus 31713 31699 0 19:13 ? 00:00:00 imapd cyrus 31714 31699 0 19:13 ? 00:00:00 imapd cyrus 31715 31699 0 19:13 ? 00:00:00 pop3d root 31717 3627 0 19:13 pts/1 00:00:00 grep cyrus [root@maui:/var/log]$ ip a l 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000 link/ether 00:30:1b:a0:4d:cc brd ff:ff:ff:ff:ff:ff inet 148.197.29.5/24 brd 148.197.29.255 scope global eth0 inet6 fe80::230:1bff:fea0:4dcc/64 scope link valid_lft forever preferred_lft forever
Ok, IP 148.197.29.5 is set for interface eth0.
Then no "imapd -s" appears
I have tried all sorts of combinations in cyrus.conf but all fail to LISTEN on 148.197.29.5
Make sure the IP address 148.197.29.5 is definitely up on any of the system's devices. Verify running "ip address list".
See above
Why will cyrus not listen on 148.197.29.5 ?
I am sure it is because that IP address isn't bound to any device.
I must be missing something very obvious !
John
A few extra tests
[root@maui:/var/log]$ nmap -A -T4 -p 993 127.0.0.1
You configured the imaps service not to bind to localhost.
Starting Nmap 5.51 ( http://nmap.org ) at 2015-08-12 19:23 BST Nmap scan report for localhost.localdomain (127.0.0.1) Host is up (0.000049s latency). PORT STATE SERVICE VERSION 993/tcp closed imaps Too many fingerprints match this host to give specific OS details Network Distance: 0 hops
OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 2.12 seconds
[root@maui:/var/log]$ nmap -A -T4 -p 993 148.197.29.5
Starting Nmap 5.51 ( http://nmap.org ) at 2015-08-12 19:23 BST Nmap scan report for maui.jaa.org.uk (148.197.29.5) Host is up (0.000051s latency). PORT STATE SERVICE VERSION 993/tcp closed imaps Too many fingerprints match this host to give specific OS details Network Distance: 0 hops
OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 2.16 seconds
[root@maui:/var/log]$ nmap -A -T4 -p 993 maui
Starting Nmap 5.51 ( http://nmap.org ) at 2015-08-12 19:20 BST Nmap scan report for maui (127.0.0.1) Host is up (0.000052s latency). Other addresses for maui (not scanned): 127.0.0.1 148.197.29.5 rDNS record for 127.0.0.1: localhost.localdomain
What did you configure in your DNS and set in /etc/hosts? Please provide last one.
PORT STATE SERVICE VERSION 993/tcp closed imaps Too many fingerprints match this host to give specific OS details Network Distance: 0 hops
OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 2.14 seconds
From another machine [root@paxos:~]$ nmap -A -T4 -p 993 maui
Starting Nmap 6.47 ( http://nmap.org ) at 2015-08-12 19:27 BST Nmap scan report for maui (148.197.29.5) Host is up (0.00016s latency). PORT STATE SERVICE VERSION 993/tcp closed imaps MAC Address: 00:30:1B:A0:4D:CC (Shuttle) Too many fingerprints match this host to give specific OS details Network Distance: 1 hop
TRACEROUTE HOP RTT ADDRESS 1 0.16 ms 148.197.29.5
OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 1.84 seconds
Alexander
Many thanks to Alexander, Richard, Jonathan and m.roth
The Magic incandation !
portrelease dovecot service cyrus-imapd restart
[root@maui:/etc/named]$ cat /etc/portreserve/dovecot imap imaps pop3 pop3s
My total ignorance of portrelease/portreserve has been a bit of a problem!
Now to fix it permanently and get evolution back in one piece
But why was cyrus able to use imap, pop3 & pop3S but not imaps?
John
!This showe it up!
--------------------------------------------------------------------
That limits the listener to bind to only the specific IP
Yes - that made it easy to tell if imapd was running on 148.197.29.5 by just doing ps -ef|grep cyrus --------------------------------------------------------------------
What gets being logged at exactly that point? cyrus-imapd logs information at service start.
[root@maui:/var/log]$ cat maillog just after running service cyrus-imapd restart
Aug 12 21:33:17 maui cvt_cyrusdb[2753]: skiplist: checkpointed /var/lib/imap/deliver.db.skiplist (630 records, 64416 bytes) in 0 seconds Aug 12 21:33:19 maui cvt_cyrusdb[3352]: mystore: starting txn 2147483651 Aug 12 21:33:19 maui cvt_cyrusdb[3352]: mystore: reusing txn 2147483651 Aug 12 21:33:19 maui cvt_cyrusdb[3352]: mystore: reusing txn 2147483651 Aug 12 21:33:19 maui cvt_cyrusdb[3352]: mystore: reusing txn 2147483651 Aug 12 21:33:19 maui cvt_cyrusdb[3352]: mystore: reusing txn 2147483651 ... maybe 200 lines like this !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! Aug 12 21:33:19 maui cvt_cyrusdb[3352]: mystore: reusing txn 2147483651 Aug 12 21:33:19 maui cvt_cyrusdb[3352]: mystore: reusing txn 2147483651 Aug 12 21:33:19 maui cvt_cyrusdb[3352]: mystore: reusing txn 2147483651 Aug 12 21:33:19 maui cvt_cyrusdb[3352]: mystore: reusing txn 2147483651 Aug 12 21:33:19 maui master[3384]: setrlimit: Unable to set file descriptors limit to -1: Operation not permitted Aug 12 21:33:19 maui master[3384]: retrying with 4096 (current max) Aug 12 21:33:19 maui master[3384]: process started Aug 12 21:33:19 maui master[3385]: about to exec /usr/lib/cyrus-imapd/ctl_cyrusdb Aug 12 21:33:19 maui ctl_cyrusdb[3385]: recovering cyrus databases Aug 12 21:33:19 maui ctl_cyrusdb[3385]: skiplist: checkpointed /var/lib/imap/mailboxes.db (9 records, 756 bytes) in 0 seconds Aug 12 21:33:19 maui ctl_cyrusdb[3385]: skiplist: checkpointed /var/lib/imap/annotations.db (0 records, 144 bytes) in 0 seconds Aug 12 21:33:19 maui ctl_cyrusdb[3385]: done recovering cyrus databases Aug 12 21:33:19 maui master[3387]: about to exec /usr/lib/cyrus-imapd/idled Aug 12 21:33:19 maui master[3384]: unable to create imaps listener socket: Address already in use !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! Aug 12 21:33:19 maui master[3384]: unable to setsocketopt(IP_TOS): Operation not supported Aug 12 21:33:19 maui master[3384]: ready for work Aug 12 21:33:19 maui master[3389]: about to exec /usr/lib/cyrus-imapd/ctl_cyrusdb Aug 12 21:33:19 maui master[3392]: about to exec /usr/lib/cyrus-imapd/pop3d Aug 12 21:33:19 maui ctl_cyrusdb[3389]: checkpointing cyrus databases Aug 12 21:33:19 maui master[3390]: about to exec /usr/lib/cyrus-imapd/imapd Aug 12 21:33:19 maui master[3391]: about to exec /usr/lib/cyrus-imapd/pop3d Aug 12 21:33:19 maui master[3393]: about to exec /usr/lib/cyrus-imapd/lmtpd Aug 12 21:33:19 maui lmtpunix[3393]: executed Aug 12 21:33:19 maui pop3s[3392]: executed Aug 12 21:33:19 maui ctl_cyrusdb[3389]: archiving database file: /var/lib/imap/annotations.db Aug 12 21:33:19 maui imap[3390]: executed Aug 12 21:33:19 maui pop3[3391]: executed Aug 12 21:33:19 maui ctl_cyrusdb[3389]: archiving log file: /var/lib/imap/db/log.0000000001 Aug 12 21:33:19 maui ctl_cyrusdb[3389]: archiving log file: /var/lib/imap/db/log.0000000001 Aug 12 21:33:19 maui ctl_cyrusdb[3389]: archiving database file: /var/lib/imap/mailboxes.db Aug 12 21:33:19 maui ctl_cyrusdb[3389]: archiving log file: /var/lib/imap/db/log.0000000001 Aug 12 21:33:19 maui ctl_cyrusdb[3389]: archiving log file: /var/lib/imap/db/log.0000000001 Aug 12 21:33:19 maui ctl_cyrusdb[3389]: done checkpointing cyrus databases Aug 12 21:33:19 maui master[3384]: process 3389 exited, status 0 Aug 12 21:33:19 maui master[3394]: about to exec /usr/lib/cyrus-imapd/imapd Aug 12 21:33:19 maui master[3395]: about to exec /usr/lib/cyrus-imapd/pop3d Aug 12 21:33:19 maui pop3[3395]: executed Aug 12 21:33:19 maui imap[3394]: executed [root@maui:/var/log]$
--------------------------------------------------------------------
Please provide the content of /etc/imapd.conf.
[root@maui:/etc/named]$ cat /etc/imapd.conf configdirectory: /var/lib/imap partition-default: /var/spool/imap admins: cyrus sievedir: /var/lib/imap/sieve sendmail: /usr/sbin/sendmail hashimapspool: true sasl_pwcheck_method: saslauthd sasl_mech_list: PLAIN tls_cert_file: /etc/pki/cyrus-imapd/cyrus-imapd.pem tls_key_file: /etc/pki/cyrus-imapd/cyrus-imapd.pem tls_ca_file: /etc/pki/tls/certs/ca-bundle.crt # uncomment this if you're operating in a DSCP environment (RFC-4594) # qosmarking: af13 --------------------------------------------------------------------
You configured the imaps service not to bind to localhost.
Yes - that made it easy to tell if imapd was running on 148.197.29.5 by just doing ps -ef|grep cyrus --------------------------------------------------------------------
What did you configure in your DNS and set in /etc/hosts? Please provide last one.
I am running a DNS server on maui that is updated by DHCP as required The zone file looks like this at the moment IPs between range 148.197.29.129 148.197.29.253 ; are dynamic, the rest are fixed
[root@maui:/var/named/chroot/var/named/dynamic]$ cat jaa.org.uk.zone $ORIGIN . $TTL 86400 ; 1 day jaa.org.uk IN SOA maui.jaa.org.uk. ja.jaa.org.uk. ( 200714349 ; serial 7200 ; refresh (2 hours) 300 ; retry (5 minutes) 604800 ; expire (1 week) 60 ; minimum (1 minute) ) NS maui.jaa.org.uk. MX 10 maui.jaa.org.uk. $ORIGIN jaa.org.uk. $TTL 43200 ; 12 hours android-54f4af51ba23308b A 148.197.29.251 TXT "31d805ae3efb12d6a37351a28b581c9142" $TTL 86400 ; 1 day draytek A 148.197.29.254 $TTL 43200 ; 12 hours ferrari A 148.197.29.183 TXT "310fc27c6e505544502e0a12fb2192d64a" $TTL 86400 ; 1 day maui A 148.197.29.5 $TTL 43200 ; 12 hours paxos A 148.197.29.159 TXT "315dff374b9faae33e5457b537bb671bd9" $TTL 86400 ; 1 day zyxel A 148.197.29.2 ------------------------------------------------------------------- [root@maui:/etc/named]$ cat /etc/hosts 127.0.0.1 localhost.localdomain localhost maui #127.0.0.1 localhost.localdomain localhost ::1 maui.jaa.org.uk maui localhost6.localdomain6 localhost6 148.197.29.5 maui.jaa.org.uk maui
On Tue, Aug 11, 2015 at 11:05:38PM +0200, Alexander Dalloz wrote:
openssl s_client -connect <server ip>:993
You hopefully see a greeting message from the IMAP server. Then issue
I know I'm late to this thread, but a useful tool for testing your Cyrus IMAP service is the 'imtest' command, which is in the cyrus-imapd-utils package.
imtest -v -s <serverip|hostname>
(I used to manage a cyrus murder, a long time ago, and imtest is a great tool for debugging)
However, your issue sounds more like a network-level problem than a IMAPd problem.
-
Alexander Dalloz -
Dr J Austin -
Jonathan Billings -
m.roth@5-cent.us -
Richard