Good morning, I’m fairly new to email hosting and I’m in a bit of a pickle here.
I’m self hosting (or trying to) a test email service, I’m using DuckDNS as a DNS provider and using NGINX Proxy Manager for the specific email domain (automail.frail.duckdns.org). I installed Mailcow using docker, the server has all necessary ports open:
UFW
Status: active
Logging: on (low)
Default: deny (incoming), allow (outgoing), deny (routed)
New profiles: skip
To Action From
22 ALLOW IN Anywhere
25565 ALLOW IN Anywhere
80,443/tcp ALLOW IN Anywhere
25/tcp ALLOW IN Anywhere
587 ALLOW IN Anywhere
465 ALLOW IN Anywhere
25/udp ALLOW IN Anywhere
22 (v6) ALLOW IN Anywhere (v6)
80,443/tcp (v6) ALLOW IN Anywhere (v6)
25/tcp (v6) ALLOW IN Anywhere (v6)
587 (v6) ALLOW IN Anywhere (v6)
465 (v6) ALLOW IN Anywhere (v6)
25/udp (v6) ALLOW IN Anywhere (v6)!<
DOCKER IPTABLES
Chain DOCKER (10 references)
num target prot opt source destination
1 ACCEPT tcp – anywhere anywhere tcp dpt:smtp
2 ACCEPT tcp – anywhere 172.17.0.2 tcp dpt:9443
3 ACCEPT tcp – anywhere 172.17.0.2 tcp dpt:8000
4 ACCEPT tcp – anywhere 172.18.0.2 tcp dpt:https
5 ACCEPT tcp – anywhere 172.18.0.2 tcp dpt:81
6 ACCEPT tcp – anywhere 172.18.0.2 tcp dpt:http
7 ACCEPT tcp – anywhere 172.26.0.2 tcp dpt:8000
8 ACCEPT tcp – anywhere 172.26.0.3 tcp dpt:8011
9 ACCEPT tcp – anywhere 172.26.0.3 tcp dpt:6881
10 ACCEPT udp – anywhere 172.26.0.3 udp dpt:6881
11 ACCEPT tcp – anywhere 172.17.0.6 tcp dpt:5000
12 ACCEPT tcp – anywhere 172.17.0.8 tcp dpt:3000
13 ACCEPT tcp – anywhere 172.17.0.4 tcp dpt:http-alt
14 ACCEPT tcp – anywhere 172.17.0.9 tcp dpt:8020
15 ACCEPT tcp – anywhere 172.17.0.9 tcp dpt:8019
16 ACCEPT tcp – anywhere 172.17.0.3 tcp dpt:3001
17 ACCEPT tcp – anywhere 172.17.0.5 tcp dpt:https
18 ACCEPT tcp – anywhere 172.30.0.9 tcp dpt:8443
19 ACCEPT tcp – anywhere 172.30.0.9 tcp dpt:http-alt
20 ACCEPT tcp – anywhere 172.23.0.2 tcp dpt:3000
21 ACCEPT tcp – anywhere 172.22.1.249 tcp dpt:6379
22 ACCEPT tcp – anywhere 172.22.1.5 tcp dpt:8983
23 ACCEPT tcp – anywhere 172.22.1.7 tcp dpt:mysql
24 ACCEPT tcp – anywhere 172.22.1.250 tcp dpt:12345
25 ACCEPT tcp – anywhere 172.22.1.250 tcp dpt:sieve
26 ACCEPT tcp – anywhere 172.22.1.250 tcp dpt:pop3s
27 ACCEPT tcp – anywhere 172.22.1.250 tcp dpt:imaps
28 ACCEPT tcp – anywhere 172.22.1.250 tcp dpt:imap2
29 ACCEPT tcp – anywhere 172.22.1.250 tcp dpt:pop3
30 ACCEPT tcp – anywhere 172.22.1.253 tcp dpt:submission
31 ACCEPT tcp – anywhere 172.22.1.253 tcp dpt:submissions
32 ACCEPT tcp – anywhere 172.22.1.253 tcp dpt:smtp
33 ACCEPT tcp – anywhere 172.22.1.12 tcp dpt:https
34 ACCEPT tcp – anywhere 172.22.1.12 tcp dpt:http!<
The specific error I’m getting is this:
Dec 1 11:48:44 bf9b217ae291 postfix/smtp[2965]: connect to mailsec.protonmail.ch[185.205.70.129]:25: Connection timed out
Dec 1 11:48:44 bf9b217ae291 postfix/smtp[2966]: 8BB823E40672: to=xxxxxxxx@pm.me, relay=none, delay=27205, delays=27052/1.6/151/0, dsn=4.4.1, status=deferred (connect to mailsec.protonmail.ch[185.205.70.129]:25: Connection timed out)!<
I have talked with my ISP and they will try to unblock port 25, but in case it’s not related, what am I doing wrong? I’ll provide more logs if necessary and sorry if I made any mistakes, I’m fairly new to this sort of thing.
Cheers,