Englishhost for info i use a normal server and right now i don’t use a firewall can someone help me?
Please give us more details. What is a “normal server”? Where is it hosted? Hetzner for example has a firewall in front.
Have you firewalld, UFW or SELinux enabled? then please disable it, and restart everything using docker compose.
Does DNS resolution work from Debian 12?
Have something to say?
Join the community by quickly registering to participate in this discussion. We'd like to see you joining our great moo-community!
esackbauer
By normal server in this case I mean a server (no virtual machine on my pc) hosted by a server hoster called 
(dashserv), where normally there is no firewall in front of the server and no local firewall running. dashserv.io
Edit: I have never dealt with the DNS resolution, how can I check this?
host I have never dealt with the DNS resolution, how can I check this?
Run
dig fuzzy.mailcow.email +short
dig github.com +short
dig hub.docker.com +shorton your host system.
Do you have selinux enabled? And please use “docker compose” instead of “docker-compose”. The command “docker-compose” is the standalone version and may not be compatible with your docker version
Output:
root@mail:/opt/mailcow-dockerized# dig fuzzy.mailcow.email +short
95.217.129.125
root@mail:/opt/mailcow-dockerized# dig github.com +short
140.82.121.3
root@mail:/opt/mailcow-dockerized# dig hub.docker.com +short
elb-default.us-east-1.aws.dckr.io.
54.156.140.159
52.44.227.212
44.221.37.199
And unbound stills unhealthy with “docker compose” command
iptables -L
Output:
`root@mail:/opt/mailcow-dockerized# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy DROP)
target prot opt source destination
MAILCOW all – anywhere anywhere /* mailcow */
DOCKER-USER all – anywhere anywhere
DOCKER-ISOLATION-STAGE-1 all – anywhere anywhere
ACCEPT all – anywhere anywhere ctstate RELATED,ESTABLISHED
DOCKER all – anywhere anywhere
ACCEPT all – anywhere anywhere
ACCEPT all – anywhere anywhere
ACCEPT all – anywhere anywhere ctstate RELATED,ESTABLISHED
DOCKER all – anywhere anywhere
ACCEPT all – anywhere anywhere
ACCEPT all – anywhere anywhere
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain DOCKER (2 references)
target prot opt source destination
ACCEPT tcp – anywhere 172.22.1.5 tcp dpt:8983
ACCEPT tcp – anywhere 172.22.1.249 tcp dpt:redis
ACCEPT tcp – anywhere 172.22.1.6 tcp dpt:mysql
ACCEPT tcp – anywhere 172.22.1.250 tcp dpt:pop3
ACCEPT tcp – anywhere 172.22.1.250 tcp dpt:imap2
ACCEPT tcp – anywhere 172.22.1.250 tcp dpt:imaps
ACCEPT tcp – anywhere 172.22.1.250 tcp dpt:pop3s
ACCEPT tcp – anywhere 172.22.1.250 tcp dpt:sieve
ACCEPT tcp – anywhere 172.22.1.250 tcp dpt:12345
ACCEPT tcp – anywhere 172.22.1.253 tcp dpt:smtp
ACCEPT tcp – anywhere 172.22.1.253 tcp dpt:submissions
ACCEPT tcp – anywhere 172.22.1.253 tcp dpt:submission
Chain DOCKER-ISOLATION-STAGE-1 (1 references)
target prot opt source destination
DOCKER-ISOLATION-STAGE-2 all – anywhere anywhere
DOCKER-ISOLATION-STAGE-2 all – anywhere anywhere
RETURN all – anywhere anywhere
Chain DOCKER-ISOLATION-STAGE-2 (2 references)
target prot opt source destination
DROP all – anywhere anywhere
DROP all – anywhere anywhere
RETURN all – anywhere anywhere
Chain DOCKER-USER (1 references)
target prot opt source destination
RETURN all – anywhere anywhere
Chain MAILCOW (1 references)
target prot opt source destination
DROP tcp – anywhere anywhere /* mailcow isolation */
root@mail:/opt/mailcow-dockerized#`
iptables -t nat -L
Output:
`root@mail:/opt/mailcow-dockerized# iptables -t nat -L
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
DOCKER all – anywhere anywhere ADDRTYPE match dst-type LOCAL
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
DOCKER all – anywhere !127.0.0.0/8 ADDRTYPE match dst-type LOCAL
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
MASQUERADE all – 172.22.1.0/24 anywhere
MASQUERADE all – 172.17.0.0/16 anywhere
MASQUERADE tcp – 172.22.1.5 172.22.1.5 tcp dpt:8983
MASQUERADE tcp – 172.22.1.249 172.22.1.249 tcp dpt:redis
MASQUERADE tcp – 172.22.1.6 172.22.1.6 tcp dpt:mysql
MASQUERADE tcp – 172.22.1.250 172.22.1.250 tcp dpt:pop3
MASQUERADE tcp – 172.22.1.250 172.22.1.250 tcp dpt:imap2
MASQUERADE tcp – 172.22.1.250 172.22.1.250 tcp dpt:imaps
MASQUERADE tcp – 172.22.1.250 172.22.1.250 tcp dpt:pop3s
MASQUERADE tcp – 172.22.1.250 172.22.1.250 tcp dpt:sieve
MASQUERADE tcp – 172.22.1.250 172.22.1.250 tcp dpt:12345
MASQUERADE tcp – 172.22.1.253 172.22.1.253 tcp dpt:smtp
MASQUERADE tcp – 172.22.1.253 172.22.1.253 tcp dpt:submissions
MASQUERADE tcp – 172.22.1.253 172.22.1.253 tcp dpt:submission
Chain DOCKER (2 references)
target prot opt source destination
RETURN all – anywhere anywhere
RETURN all – anywhere anywhere
DNAT tcp – anywhere localhost tcp dpt:18983 to:172.22.1.5:8983
DNAT tcp – anywhere localhost tcp dpt:7654 to:172.22.1.249:6379
DNAT tcp – anywhere localhost tcp dpt:13306 to:172.22.1.6:3306
DNAT tcp – anywhere anywhere tcp dpt:pop3 to:172.22.1.250:110
DNAT tcp – anywhere anywhere tcp dpt:imap2 to:172.22.1.250:143
DNAT tcp – anywhere anywhere tcp dpt:imaps to:172.22.1.250:993
DNAT tcp – anywhere anywhere tcp dpt:pop3s to:172.22.1.250:995
DNAT tcp – anywhere anywhere tcp dpt:sieve to:172.22.1.250:4190
DNAT tcp – anywhere localhost tcp dpt:19991 to:172.22.1.250:12345
DNAT tcp – anywhere anywhere tcp dpt:smtp to:172.22.1.253:25
DNAT tcp – anywhere anywhere tcp dpt:submissions to:172.22.1.253:465
DNAT tcp – anywhere anywhere tcp dpt:submission to:172.22.1.253:587
root@mail:/opt/mailcow-dockerized#`
Hm, that looks okay. But why do you ignore my question for selinux? 
Do you have selinux enabled? If yes, please disable it.
Maybe try to shutdown the stack, reboot the system and fire it up again
docker compose down
reboot
docker compose up -d
Sorry I don’t have selinux enabled and after rebooting mailcow and the server it still doesn’t work
OK… please post the output of
docker exec mailcowdockerized-unbound-mailcow-1 dig fuzzy.mailcow.email +trace
to show whats going on from inside the container
DocFraggle
Output:
`root@mail:/opt/mailcow-dockerized# docker exec mailcowdockerized-unbound-mailcow-1 dig fuzzy.mailcow.email +trace
; <<>> DiG 9.18.27 <<>> fuzzy.mailcow.email +trace
;; global options: +cmd
. 512987 IN NS a.root-servers.net.
. 512987 IN NS b.root-servers.net.
. 512987 IN NS c.root-servers.net.
. 512987 IN NS d.root-servers.net.
. 512987 IN NS e.root-servers.net.
. 512987 IN NS f.root-servers.net.
. 512987 IN NS g.root-servers.net.
. 512987 IN NS h.root-servers.net.
. 512987 IN NS i.root-servers.net.
. 512987 IN NS j.root-servers.net.
. 512987 IN NS k.root-servers.net.
. 512987 IN NS l.root-servers.net.
. 512987 IN NS m.root-servers.net.
. 512987 IN RRSIG NS 8 0 518400 20250122050000 20250109040000 26470 . fCi0bd1Nz+rH7oLSkpyNLACAIuBAd7oWCYPIrX0cCj0UYtT1Ly/YMmH2 ItjyRjXRXi/OHG401734HkGsis9+zLxf0cVG7+xg+e9xHGEMHGOOEPDn 9i6DwedWAp6OJE2Lq6wfZDHwdnDJBz8DplCF3lv2za/ATDpXZvTEJF2v OXu4DJwGXAxE+cOGt9Y91zokrCkCHGci89fOU+sXNhnjK//3MnDL/+/0 WQjCZu7mofpbW4JKXMmqlHw1VX0udz2JDJntglwW0fQT5tP+K5rGFOys ZdLXGxl7N4JT0PHW3FbARVXD0pA4HZ/KL7jdGmUSMXp2GHtznMEH2Jwd EVDrXA==
;; Received 525 bytes from 127.0.0.11#53(127.0.0.11) in 4 ms
;; UDP setup with 2001:500:9f::42#53(2001:500:9f::42) for fuzzy.mailcow.email failed: network unreachable.
;; no servers could be reached
;; UDP setup with 2001:500:9f::42#53(2001:500:9f::42) for fuzzy.mailcow.email failed: network unreachable.
;; no servers could be reached
;; UDP setup with 2001:500:9f::42#53(2001:500:9f::42) for fuzzy.mailcow.email failed: network unreachable.
;; UDP setup with 2801:1b8:10::b#53(2801:1b8:10::b) for fuzzy.mailcow.email failed: network unreachable.
;; communications error to 192.112.36.4#53: timed out
;; UDP setup with 2001:500:2d::d#53(2001:500:2d::d) for fuzzy.mailcow.email failed: network unreachable.
;; communications error to 192.58.128.30#53: timed out
;; UDP setup with 2001:500:2::c#53(2001:500:2::c) for fuzzy.mailcow.email failed: network unreachable.
;; communications error to 192.36.148.17#53: timed out
;; UDP setup with 2001:500:1::53#53(2001:500:1::53) for fuzzy.mailcow.email failed: network unreachable.
;; UDP setup with 2001:7fe::53#53(2001:7fe::53) for fuzzy.mailcow.email failed: network unreachable.
;; communications error to 198.41.0.4#53: timed out
;; UDP setup with 2001:7fd::1#53(2001:7fd::1) for fuzzy.mailcow.email failed: network unreachable.
email. 172800 IN NS v0n0.nic.email.
email. 172800 IN NS v0n1.nic.email.
email. 172800 IN NS v0n2.nic.email.
email. 172800 IN NS v0n3.nic.email.
email. 172800 IN NS v2n0.nic.email.
email. 172800 IN NS v2n1.nic.email.
email. 86400 IN DS 62422 8 2 92A9DA686674B9BC30EE72224130A7C761D5B01902DA9A5A62038C79 6A16BD33
email. 86400 IN RRSIG DS 8 1 86400 20250122050000 20250109040000 26470 . LfRI1vK3lQfS0MXFH8j09yXXPk38g2shVIDzCpg6meStf+HgzQhcNQw9 3lEF5ubkQ0ycYO2BNAzrrCCzn9MNp33tuN2Pr3O1p+bN1f2E7Gt23uUo D/S3XMjyNOoFjaLuaJfSNIj7XeEypXOQ9LvS60FUMk9eHKdL/ejw6aMZ gGsbL4R2N6ZXBP5iqhOaGsMY0stf7qzw1ZtOtqsLxTl6/ahUxHGPjjFd sC95y4LNH2LHEARjkbyMfEVW5iDbxKehoSM6DE/6wf4JvWcvKk5QRpY3 ZvdFYRChAAE8yBVA1qjp/m6hgizGrmzt0o1pJMjE6HWhD1URzvx5W64u bQfE4g==
;; Received 765 bytes from 192.5.5.241#53(f.root-servers.net) in 0 ms
;; communications error to 65.22.26.35#53: timed out
;; UDP setup with 2a01:8840:f6::35#53(2a01:8840:f6::35) for fuzzy.mailcow.email failed: network unreachable.
;; UDP setup with 2a01:8840:1c::35#53(2a01:8840:1c::35) for fuzzy.mailcow.email failed: network unreachable.
;; UDP setup with 2a01:8840:1a::35#53(2a01:8840:1a::35) for fuzzy.mailcow.email failed: network unreachable.
;; UDP setup with 2a01:8840:1d::35#53(2a01:8840:1d::35) for fuzzy.mailcow.email failed: network unreachable.
;; UDP setup with 2a01:8840:f7::35#53(2a01:8840:f7::35) for fuzzy.mailcow.email failed: network unreachable.
;; UDP setup with 2a01:8840:1b::35#53(2a01:8840:1b::35) for fuzzy.mailcow.email failed: network unreachable.
;; communications error to 161.232.13.35#53: timed out
;; communications error to 161.232.12.35#53: timed out
;; communications error to 65.22.24.35#53: timed out
;; communications error to 65.22.25.35#53: timed out
;; communications error to 65.22.27.35#53: timed out
;; no servers could be reached`
OK… I have to admit I have no idea what’s wrong with your setup… my mailcow is running on Debian 12 as well without problems.
Is this a plain installation of Debian and mailcow or did you setup any specials?
Any docker overrides?
I dont’t have any docker overrides or specials it is the normal installation from 
Mailcow Docs. docs.mailcow.email
host
I am using Debian 12 as well with no problems. Something must be wrong on your side or you are maybe using a predefined image from your hoster which has some features enabled like UFW, firewalld or SELinux.
A typical error is that both docker-compose (standalone) and docker compose (plugin, native) are installed and you keep using both of them. You shall always use only one of the two, and never use the other one.
Which one is referenced in your mailcow.conf?
mailcow.conf refers to native (compose plugin) and there is no UFW, firewalld or SELinux installed.
Please post the output of these commands:
️docker network inspect bridge
docker network inspect mailcowdockerized_mailcow-network
ip a s
ip r sAnd please try this:
docker exec mailcowdockerized-unbound-mailcow-1 dig @8.8.8.8 fuzzy.mailcow.email
ETNyx
I have already tried that
docker network inspect bridge:
[
{
"Name": "bridge",
"Id": "72f75be34060312e1b1bdea1c7df72112d8177f1eda472cd775ca8545c5aad34",
"Created": "2025-01-10T17:01:54.648665288+01:00",
"Scope": "local",
"Driver": "bridge",
"EnableIPv6": false,
"IPAM": {
"Driver": "default",
"Options": null,
"Config": [
{
"Subnet": "172.17.0.0/16",
"Gateway": "172.17.0.1"
}
]
},
"Internal": false,
"Attachable": false,
"Ingress": false,
"ConfigFrom": {
"Network": ""
},
"ConfigOnly": false,
"Containers": {},
"Options": {
"com.docker.network.bridge.default_bridge": "true",
"com.docker.network.bridge.enable_icc": "true",
"com.docker.network.bridge.enable_ip_masquerade": "true",
"com.docker.network.bridge.host_binding_ipv4": "0.0.0.0",
"com.docker.network.bridge.name": "docker0",
"com.docker.network.driver.mtu": "1500"
},
"Labels": {}
}
]
docker network inspect mailcowdockerized_mailcow-network ip a s:
[
{
"Name": "mailcowdockerized_mailcow-network",
"Id": "5a5e084a0d4b66a64b5ec75224614d4ac83c0c981c0d0cd09e9cddcfb6373b3e",
"Created": "2025-01-09T19:44:13.537753289+01:00",
"Scope": "local",
"Driver": "bridge",
"EnableIPv6": true,
"IPAM": {
"Driver": "default",
"Options": null,
"Config": [
{
"Subnet": "172.22.1.0/24",
"Gateway": "172.22.1.1"
},
{
"Subnet": "fd4d:6169:6c63:6f77::/64",
"Gateway": "fd4d:6169:6c63:6f77::1"
}
]
},
"Internal": false,
"Attachable": false,
"Ingress": false,
"ConfigFrom": {
"Network": ""
},
"ConfigOnly": false,
"Containers": {
"0ed29c822b03c7bd5e4f92b80e0271c93769107b4774aa177546cce19803ee43": {
"Name": "mailcowdockerized-dockerapi-mailcow-1",
"EndpointID": "f7c224b4c993ae9e5022ab58d3defbbc88475ec77639f8a25d06ac9f2b139a54",
"MacAddress": "02:42:ac:16:01:04",
"IPv4Address": "172.22.1.4/24",
"IPv6Address": "fd4d:6169:6c63:6f77::5/64"
},
"1206f8867cec1d76bc01ce5cec985adcdff9d9f9525d57ddacd4713a1130a74e": {
"Name": "mailcowdockerized-memcached-mailcow-1",
"EndpointID": "029d9a0df736514d2fc41ca85de0dbd5bbf0807d7ccde7e3fa99ff221f5015b3",
"MacAddress": "02:42:ac:16:01:05",
"IPv4Address": "172.22.1.5/24",
"IPv6Address": "fd4d:6169:6c63:6f77::6/64"
},
"24a8cc22953669ac7d18ba509aded94b4788afd580f305f46858407d834b2587": {
"Name": "mailcowdockerized-olefy-mailcow-1",
"EndpointID": "9920ec69966b252cf13701278d87e7309075c47fc5585ad77391bba13b679d94",
"MacAddress": "02:42:ac:16:01:08",
"IPv4Address": "172.22.1.8/24",
"IPv6Address": "fd4d:6169:6c63:6f77::c/64"
},
"36f198afb1b75cabf7293eff08c2d15d277783060cb94f8603def5e0845b4713": {
"Name": "mailcowdockerized-mysql-mailcow-1",
"EndpointID": "1ddd3299d1747c5c2262202e6e6601b6ef061a7a346ac0e05fbe1d5728088919",
"MacAddress": "02:42:ac:16:01:06",
"IPv4Address": "172.22.1.6/24",
"IPv6Address": "fd4d:6169:6c63:6f77::7/64"
},
"36fda5f01e444ab08cf360717ba729ca16430b92c8c4f0a04b6c3bbc566eca48": {
"Name": "mailcowdockerized-sogo-mailcow-1",
"EndpointID": "86a0e36f3f3a7d4eb72000749686f66facc052536f8657cc3fda3f7b20a667c3",
"MacAddress": "02:42:ac:16:01:f8",
"IPv4Address": "172.22.1.248/24",
"IPv6Address": "fd4d:6169:6c63:6f77::3/64"
},
"6bb589dad82b45b0e902c029d747c086b495932271ff1a2bbaf3033612ab6011": {
"Name": "mailcowdockerized-dovecot-mailcow-1",
"EndpointID": "c03ac442ce044315983024a068a71bf4d294b9e51e924bd5e8a25bb3fc3cda7b",
"MacAddress": "02:42:ac:16:01:fa",
"IPv4Address": "172.22.1.250/24",
"IPv6Address": "fd4d:6169:6c63:6f77::9/64"
},
"88c46b70b842f53f040bfba7ebabce3d5a5bbb4c79f4d34afda054fef5208217": {
"Name": "mailcowdockerized-redis-mailcow-1",
"EndpointID": "2ba6d5df79a5780562ce1a1235c8213e435b52e354c640c83108ad36dae50d4c",
"MacAddress": "02:42:ac:16:01:f9",
"IPv4Address": "172.22.1.249/24",
"IPv6Address": "fd4d:6169:6c63:6f77::8/64"
},
"8bbfaed161c34a561dac02164a74cfa3de13f9deae67909a1de48bfee6851ba7": {
"Name": "mailcowdockerized-unbound-mailcow-1",
"EndpointID": "4a1818e9a7f8f3779da4c4ad26923ab4f4bf2d1f85d55ef9f06c6f0417d5d40a",
"MacAddress": "02:42:ac:16:01:fe",
"IPv4Address": "172.22.1.254/24",
"IPv6Address": "fd4d:6169:6c63:6f77::b/64"
},
"b2747e34198a42c9d2280c28aeb3c1095ab49ac1d6d75aecad5ad18ddcccd00f": {
"Name": "mailcowdockerized-php-fpm-mailcow-1",
"EndpointID": "233fd378e7ecb0b7356e108bd6458384e809848900db593a28c99d791c01b4e9",
"MacAddress": "02:42:ac:16:01:03",
"IPv4Address": "172.22.1.3/24",
"IPv6Address": "fd4d:6169:6c63:6f77::4/64"
},
"c0d489e9f54c894c8a37a411edd5603ba5862cd2955b2db570d961492b4b8ca0": {
"Name": "mailcowdockerized-ofelia-mailcow-1",
"EndpointID": "1d54bb4857e8c656e109581d077ae2e3163ca18fc7a17d1f8482b8cb2b38ae55",
"MacAddress": "02:42:ac:16:01:02",
"IPv4Address": "172.22.1.2/24",
"IPv6Address": "fd4d:6169:6c63:6f77::2/64"
},
"f7c4ecf2320531f6678c48acd31d64f7aff976a6a7426c52bd0ce1655eca7768": {
"Name": "mailcowdockerized-solr-mailcow-1",
"EndpointID": "2e1b092f891a985ce3034bb1fc326d52662f3c694f5d945f52d4390d6c1a0711",
"MacAddress": "02:42:ac:16:01:07",
"IPv4Address": "172.22.1.7/24",
"IPv6Address": "fd4d:6169:6c63:6f77::a/64"
}
},
"Options": {
"com.docker.network.bridge.name": "br-mailcow"
},
"Labels": {
"com.docker.compose.config-hash": "53b5069ca4ccecd7a934a515f1a80cf914e2d0c79fd956529231416df2f2ff96",
"com.docker.compose.network": "mailcow-network",
"com.docker.compose.project": "mailcowdockerized",
"com.docker.compose.version": "2.32.1"
}
}
]
ip a s:
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host noprefixroute
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
link/ether bc:24:11:72:2d:29 brd ff:ff:ff:ff:ff:ff
altname enp6s18
inet 45.137.68.65/25 brd 45.137.68.127 scope global eth0
valid_lft forever preferred_lft forever
inet6 fe80::be24:11ff:fe72:2d29/64 scope link
valid_lft forever preferred_lft forever
3: docker0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default
link/ether 02:42:ef:de:ee:b2 brd ff:ff:ff:ff:ff:ff
inet 172.17.0.1/16 brd 172.17.255.255 scope global docker0
valid_lft forever preferred_lft forever
4: br-mailcow: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default
link/ether 02:42:c5:9f:30:42 brd ff:ff:ff:ff:ff:ff
inet 172.22.1.1/24 brd 172.22.1.255 scope global br-mailcow
valid_lft forever preferred_lft forever
inet6 fd4d:6169:6c63:6f77::1/64 scope global nodad
valid_lft forever preferred_lft forever
inet6 fe80::42:c5ff:fe9f:3042/64 scope link
valid_lft forever preferred_lft forever
6: veth76169c0@if5: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 5a:fe:67:de:1e:a4 brd ff:ff:ff:ff:ff:ff link-netnsid 1
inet6 fe80::58fe:67ff:fede:1ea4/64 scope link
valid_lft forever preferred_lft forever
8: vethdb48414@if7: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 7a:5c:7c:01:85:e8 brd ff:ff:ff:ff:ff:ff link-netnsid 4
inet6 fe80::785c:7cff:fe01:85e8/64 scope link
valid_lft forever preferred_lft forever
10: veth253fecd@if9: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 1e:2d:c3:59:ee:36 brd ff:ff:ff:ff:ff:ff link-netnsid 5
inet6 fe80::1c2d:c3ff:fe59:ee36/64 scope link
valid_lft forever preferred_lft forever
12: vethc127df9@if11: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 76:29:6d:c9:83:c6 brd ff:ff:ff:ff:ff:ff link-netnsid 3
inet6 fe80::7429:6dff:fec9:83c6/64 scope link
valid_lft forever preferred_lft forever
14: veth0447b2f@if13: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 8a:50:62:1b:10:9f brd ff:ff:ff:ff:ff:ff link-netnsid 0
inet6 fe80::8850:62ff:fe1b:109f/64 scope link
valid_lft forever preferred_lft forever
16: vethe5f2abb@if15: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 62:e5:5c:bd:19:54 brd ff:ff:ff:ff:ff:ff link-netnsid 2
inet6 fe80::60e5:5cff:febd:1954/64 scope link
valid_lft forever preferred_lft forever
18: veth2c53ff7@if17: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 86:29:cb:9d:a2:7c brd ff:ff:ff:ff:ff:ff link-netnsid 7
inet6 fe80::8429:cbff:fe9d:a27c/64 scope link
valid_lft forever preferred_lft forever
20: veth18e78eb@if19: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 1a:e9:b3:b9:13:ca brd ff:ff:ff:ff:ff:ff link-netnsid 11
inet6 fe80::18e9:b3ff:feb9:13ca/64 scope link
valid_lft forever preferred_lft forever
22: veth315e58d@if21: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 16:1b:8a:be:db:e1 brd ff:ff:ff:ff:ff:ff link-netnsid 9
inet6 fe80::141b:8aff:febe:dbe1/64 scope link
valid_lft forever preferred_lft forever
24: veth8f5e1db@if23: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 0a:06:ca:b2:c5:25 brd ff:ff:ff:ff:ff:ff link-netnsid 6
inet6 fe80::806:caff:feb2:c525/64 scope link
valid_lft forever preferred_lft forever
26: vethcc147ce@if25: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 02:5f:8f:68:1a:e7 brd ff:ff:ff:ff:ff:ff link-netnsid 8
inet6 fe80::5f:8fff:fe68:1ae7/64 scope link
valid_lft forever preferred_lft forever
ip r s:
default via 45.137.68.1 dev eth0 onlink
45.137.68.0/25 dev eth0 proto kernel scope link src 45.137.68.65
172.17.0.0/16 dev docker0 proto kernel scope link src 172.17.0.1 linkdown
172.22.1.0/24 dev br-mailcow proto kernel scope link src 172.22.1.1
docker exec mailcowdockerized-unbound-mailcow-1 dig @8.8.8.8 fuzzy.mailcow.email:
`; <<>> DiG 9.18.27 <<>> @8.8.8.8 fuzzy.mailcow.email
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 2130
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;fuzzy.mailcow.email. IN A
;; ANSWER SECTION:
fuzzy.mailcow.email. 9033 IN A 95.217.129.125
;; Query time: 4 msec
;; SERVER: 8.8.8.8#53(8.8.8.8) (UDP)
;; WHEN: Fri Jan 10 17:05:16 CET 2025
;; MSG SIZE rcvd: 64 `
Ok, looking good, I have no idea what’s wrong with your server… sorry…
I have the same issue
clean Ubuntu server installed on my Raspberry pi5
ran update and upgrade
installed docker which includes docker compose plugin v2.32.4
all of firewall is currently handled bu OpenWrt as well as all port forwarding
The logs unbound-mailcow all show DNS issue but ping and dig to fuzzy, github and docker hub all work
OK my issue is that the unbound service doesn’t work behind a wireguard vpn from Nordvpn when was on the unprotected not work it worked testing othe providers to see if the issue is with them
