Monday, March 14, 2011

Fedora + Postfix + Dovecot + TLS/SSL + SASL

I was trying to set up Postfix with Dovecot, TLS/SSL on a new server and came across some issues so I documented them here and the install process again.

Tutorials Used
Install the Following
  • Postfix
  • Dovecot
  • OpenSSL
  • MailX
  • SASLAuthD
Configure Postfix according to my previous article on the blog
In /etc/dovecot/conf.d/10-auth.conf add the following:
passdb {
driver = pam

Forward these Ports to the Mailserver if Behind Gateway
smtp: 25, 2525, 3535
smtp submission: 587
smtp over ssl: 465
pop3: 110, 995
imap: 143, 220, 993, 585

Activate and start all the above daemons using chkconfig and service saslauthd on etc.

Issue #1
Ran into a problem where Postfix would not relay mail for its own domain.
Had to add $mydomain to "mydestination" directive.

Issue #2
/var/log/maillog said mail coming from outside is going to even though the user exists on the system.
saslauthd service was not running. Also removed these from
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth

Issue #3
Outgoing mail was not being delivered.
I had enabled TLS and provided a certificate to Postfix.
The client needed to be told to use SSL/TLS.

Issue #4
Set disable_plaintext_auth = yes
Incoming mail not being delivered.
Set client to use Secure POP (port 995)

No comments:

Post a Comment