IPv6 Problem

Günther J. Niederwimmer gjn at gjn.priv.at
Di Aug 15 16:55:27 CEST 2017


Hallo Heinrich,

Am Dienstag, 15. August 2017, 16:50:13 CEST schrieb Heinrich Boeder:
> Hi Günther,
> 
> Am 2017-08-15 16:47, Günther J. Niederwimmer<gjn at gjn.priv.at>schrieb:
> > Ich komme einfach nicht per IPv6 auf Port 25 telnet 2001:470:1f0b:371::203
> > 587 funktioniert, aber telnet 2001:470:1f0b:371::203 587 25 funktioniert
> > nicht!!
> Probier mal
> telnet 2001:470:1f0b:371::203 25
> ... also telnet<ip><port>. Du hast zwei mal den Port angehängt (587 + 25)

Das wrat ein Schreibfehler, ausserdem fehlt die postconf wird hirmit 
nachgereicht ;-)
 
> LG
> 
> - heinrich
> hb at mesacom.net
> key: 0x9BFD9B5F -- 13E7 8A3A DDA0 3E75 E0A8 BFB5 2C7A 506E 9BFD 9B5F


-- 
mit freundlichen Grüssen / best regards,

  Günther J. Niederwimmer
-------------- nächster Teil --------------
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
amavisd_milter = inet:127.0.0.1:10024
bounce_template_file = /etc/postfix/bounce.de-DE.cf
broken_sasl_auth_clients = yes
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/libexec/postfix
data_directory = /var/lib/postfix
debug_peer_level = 2
debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id & sleep 5
html_directory = no
inet_interfaces = all
inet_protocols = ipv6, ipv4
lmtp_dns_support_level = dnssec
mail_owner = postfix
mailq_path = /usr/bin/mailq.postfix
manpage_directory = /usr/share/man
message_size_limit = 20480000
milter_default_action = tempfail
mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain
myhostname = mx01.4gjn.com
mynetworks = 127.0.0.0/8 192.168.100.0/24 192.168.55.0/24 89.26.108.0/28 [::1]/128 [2001:470:1f0b:371::]/64
myorigin = $mydomain
newaliases_path = /usr/bin/newaliases.postfix
non_smtpd_milters = $smtpd_milters
opendkim_milter = inet:127.0.0.1:8891
opendmarc_milter = inet:127.0.0.1:8893
postscreen_access_list = permit_mynetworks cidr:/etc/postfix/postscreen_access.cidr
postscreen_bare_newline_action = drop
postscreen_bare_newline_enable = yes
postscreen_blacklist_action = drop
postscreen_dnsbl_action = enforce
postscreen_dnsbl_reply_map = texthash:/etc/postfix/dnsbl_reply
postscreen_dnsbl_sites = zen.spamhaus.org*3 bl.mailspike.net*3 b.barracudacentral.org*1 bad.psky.me*2 psbl.surriel.com bl.blocklist.de bl.spamcop.net spam.spamrats.com bl.spameatingmonkey.net dnsbl.cobion.com ix.dnsbl.manitu.net hostkarma.junkemailfilter.com dnsbl.inps.de swl.spamhaus.org*-2 list.dnswl.org=127.0.[0..255].0*-1 list.dnswl.org=127.0.[0..255].1*-2 list.dnswl.org=127.0.[0..255].[2..3]*-3 iadb.isipp.com=127.0.[0..255].[0..255]*-2 iadb.isipp.com=127.3.100.[6..200]*-2 wl.mailspike.net=127.0.0.[17;18]*-1 wl.mailspike.net=127.0.0.[19;20]*-2
postscreen_dnsbl_threshold = 3
postscreen_dnsbl_ttl = 3h
postscreen_dnsbl_whitelist_threshold = -1
postscreen_greet_action = enforce
postscreen_non_smtp_command_enable = yes
postscreen_pipelining_enable = yes
postscreen_whitelist_interfaces = static:all
queue_directory = /var/spool/postfix
readme_directory = /usr/share/doc/postfix-2.11.8/README_FILES
recipient_canonical_maps = hash:/etc/postfix/recipient_canonical_maps
recipient_delimiter = +
relay_domains = hash:/etc/postfix/relay_domains,
sample_directory = /usr/share/doc/postfix-2.11.8/samples
sendmail_path = /usr/sbin/sendmail.postfix
setgid_group = postdrop
smtp_dns_support_level = dnssec
smtp_host_lookup = dns
smtp_sasl_security_options = noplaintext, noanonymous
smtp_tls_loglevel = 1
smtp_tls_mandatory_ciphers = high
smtp_tls_mandatory_exclude_ciphers = aNULL, eNULL, EXPORT, DES, RC4, MD5, PSK, aECDH, EDH-DSS-DES-CBC3-SHA, EDH-RSA-DES-CDB3-SHA, KRB5-DES, CBC3-SHA
smtp_tls_mandatory_protocols = !SSLv2,!SSLv3
smtp_tls_note_starttls_offer = yes
smtp_tls_protocols = !SSLv2,!SSLv3
smtp_tls_security_level = dane
smtp_tls_session_cache_database = btree:$(data_directory)/smtp_scache
smtp_use_tls = yes
smtpd_authorized_xforward_hosts = 127.0.0.0/8, 192.168.0.0/16, 89.26.108.7/32, [2001:470:1f0b:371::203]/128
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_mynetworks, reject_invalid_hostname
smtpd_milters = ${spf_milter},${opendkim_milter},${opendmarc_milter},${amavisd_milter}
smtpd_recipient_restrictions = permit_sasl_authenticated, permit_auth_destination, permit_mynetworks, reject_unverified_recipient, reject_unauth_destination, reject
smtpd_sasl_auth_enable = yes
smtpd_sasl_authenticated_header = no
smtpd_sasl_path = private/auth
smtpd_sasl_security_options = noanonymous,
smtpd_sasl_tls_security_options = noanonymous,
smtpd_sasl_type = dovecot
smtpd_sender_restrictions = check_sender_access btree:/etc/postfix/check_sender_access
smtpd_tls_CAfile = /etc/pki/tls/cert.pem
smtpd_tls_CApath = /etc/pki/tls/certs
smtpd_tls_ask_ccert = yes
smtpd_tls_auth_only = yes
smtpd_tls_cert_file = /etc/letsencrypt/live/mx01.4gjn.com/fullchain.pem
smtpd_tls_dh1024_param_file = /etc/pki/tls/private/dh_2048.pem
smtpd_tls_dh512_param_file = /etc/pki/tls/private/dh_512.pem
smtpd_tls_eecdh_grade = ultra
smtpd_tls_exclude_ciphers = aNULL, eNULL, EXPORT, DES, MD5, PSK, aECDH, EDH-DSS-DES-CBC3-SHA, EDH-RSA-DES-CDB3-SHA, KRB5-DES, CBC3-SHA, CAMELLIA128-SHA. CAMELLIA256-SHA
smtpd_tls_key_file = /etc/pki/tls/private/4gjn.com.key
smtpd_tls_loglevel = 1
smtpd_tls_mandatory_ciphers = high
smtpd_tls_mandatory_exclude_ciphers = aNULL, eNULL, EXPORT, MD5, PSK, aECDH, EDH-DSS-DES-CBC3-SHA, EDH-RSA-DES-CDB3-SHA, KRB5-DES, CBC3-SHA, CAMELLIA128-SHA. CAMELLIA256-SHA
smtpd_tls_mandatory_protocols = !SSLv2,!SSLv3
smtpd_tls_protocols = !SSLv2,!SSLv3
smtpd_tls_received_header = yes
smtpd_tls_security_level = may
smtpd_tls_session_cache_database = btree:$(data_directory)/smtpd_scache
smtpd_use_tls = yes
spf_milter = inet:127.0.0.1:8890
tls_preempt_cipherlist = yes
tls_random_bytes = 128
transport_maps = hash:/etc/postfix/transport, $relay_domains,
unknown_local_recipient_reject_code = 550
unverified_recipient_reject_code = 577
virtual_alias_maps = hash:/etc/postfix/virtual
virtual_transport = lmtps:inet:mailstore:24


Mehr Informationen über die Mailingliste Postfixbuch-users