Hi, I’m running my mailcow server as a machine behind an nginx reverse proxy.

I have exposed ports 25, 465, 587, 110, 143 ,4190, 993 ,995 directly from my mailcow machine to my public IP and port 80 through my reverse proxy, with the subdomain mail.domain.tld reaching port 80 of my local 192.168 machine.

  1. What do I do with autoconfig and autodiscover.domain.tld? Set them to port 80 of the mailcow machine also?
  2. I can’t get SSL working. Using a site like Mailserver encryption test (STARTTLS, TLS and PFS) · SSL-Tools
    ssl-tools.net
    Mailserver encryption test (STARTTLS, TLS and PFS) · SSL-Tools
    testSSL-Zertifikate
    to check. I get Certificates problem found. DANE protocol TSLv1.2 is missing. Also have certificate chain mail.example.org - I have narrowed this to an acme-mailcow problem.

Right now, I am stuck at: “Found A record, Confirmed A record but HTTP validation failed”. I note this is a common issue on Github, #2632, #2634, #2664 etc. The common solution mentioned in them is exposing the docker bridge to the external interface. If I understand correctly, that’s this in mailcow.conf? IPV4_NETWORK=172.22.1

networks:
  mailcow-network:
    driver: bridge
    driver_opts:
      com.docker.network.bridge.name: br-mailcow
    enable_ipv6: false
    ipam:
      driver: default
      config:
        - subnet: ${IPV4_NETWORK:-172.22.1}.0/24
        - subnet: ${IPV6_NETWORK:-fd4d:6169:6c63:6f77::/64}

The question is, how do I connect br-mailcow to the external interface? What other ports specifically do I need to forward?

No one is typing

Have something to say?

Join the community by quickly registering to participate in this discussion. We'd like to see you joining our great moo-community!