Hm, that looks okay. But why do you ignore my question for selinux? 
Do you have selinux enabled? If yes, please disable it.
Maybe try to shutdown the stack, reboot the system and fire it up again
docker compose down
reboot
docker compose up -d
EnglishContainer mailcowdockerized-unbound-mailcow-1 is unhealthy
- Edited
Sorry I don’t have selinux enabled and after rebooting mailcow and the server it still doesn’t work
OK… please post the output of
docker exec mailcowdockerized-unbound-mailcow-1 dig fuzzy.mailcow.email +trace
to show whats going on from inside the container
- Edited
DocFraggle
Output:
`root@mail:/opt/mailcow-dockerized# docker exec mailcowdockerized-unbound-mailcow-1 dig fuzzy.mailcow.email +trace
; <<>> DiG 9.18.27 <<>> fuzzy.mailcow.email +trace
;; global options: +cmd
. 512987 IN NS a.root-servers.net.
. 512987 IN NS b.root-servers.net.
. 512987 IN NS c.root-servers.net.
. 512987 IN NS d.root-servers.net.
. 512987 IN NS e.root-servers.net.
. 512987 IN NS f.root-servers.net.
. 512987 IN NS g.root-servers.net.
. 512987 IN NS h.root-servers.net.
. 512987 IN NS i.root-servers.net.
. 512987 IN NS j.root-servers.net.
. 512987 IN NS k.root-servers.net.
. 512987 IN NS l.root-servers.net.
. 512987 IN NS m.root-servers.net.
. 512987 IN RRSIG NS 8 0 518400 20250122050000 20250109040000 26470 . fCi0bd1Nz+rH7oLSkpyNLACAIuBAd7oWCYPIrX0cCj0UYtT1Ly/YMmH2 ItjyRjXRXi/OHG401734HkGsis9+zLxf0cVG7+xg+e9xHGEMHGOOEPDn 9i6DwedWAp6OJE2Lq6wfZDHwdnDJBz8DplCF3lv2za/ATDpXZvTEJF2v OXu4DJwGXAxE+cOGt9Y91zokrCkCHGci89fOU+sXNhnjK//3MnDL/+/0 WQjCZu7mofpbW4JKXMmqlHw1VX0udz2JDJntglwW0fQT5tP+K5rGFOys ZdLXGxl7N4JT0PHW3FbARVXD0pA4HZ/KL7jdGmUSMXp2GHtznMEH2Jwd EVDrXA==
;; Received 525 bytes from 127.0.0.11#53(127.0.0.11) in 4 ms
;; UDP setup with 2001:500:9f::42#53(2001:500:9f::42) for fuzzy.mailcow.email failed: network unreachable.
;; no servers could be reached
;; UDP setup with 2001:500:9f::42#53(2001:500:9f::42) for fuzzy.mailcow.email failed: network unreachable.
;; no servers could be reached
;; UDP setup with 2001:500:9f::42#53(2001:500:9f::42) for fuzzy.mailcow.email failed: network unreachable.
;; UDP setup with 2801:1b8:10::b#53(2801:1b8:10::b) for fuzzy.mailcow.email failed: network unreachable.
;; communications error to 192.112.36.4#53: timed out
;; UDP setup with 2001:500:2d::d#53(2001:500:2d::d) for fuzzy.mailcow.email failed: network unreachable.
;; communications error to 192.58.128.30#53: timed out
;; UDP setup with 2001:500:2::c#53(2001:500:2::c) for fuzzy.mailcow.email failed: network unreachable.
;; communications error to 192.36.148.17#53: timed out
;; UDP setup with 2001:500:1::53#53(2001:500:1::53) for fuzzy.mailcow.email failed: network unreachable.
;; UDP setup with 2001:7fe::53#53(2001:7fe::53) for fuzzy.mailcow.email failed: network unreachable.
;; communications error to 198.41.0.4#53: timed out
;; UDP setup with 2001:7fd::1#53(2001:7fd::1) for fuzzy.mailcow.email failed: network unreachable.
email. 172800 IN NS v0n0.nic.email.
email. 172800 IN NS v0n1.nic.email.
email. 172800 IN NS v0n2.nic.email.
email. 172800 IN NS v0n3.nic.email.
email. 172800 IN NS v2n0.nic.email.
email. 172800 IN NS v2n1.nic.email.
email. 86400 IN DS 62422 8 2 92A9DA686674B9BC30EE72224130A7C761D5B01902DA9A5A62038C79 6A16BD33
email. 86400 IN RRSIG DS 8 1 86400 20250122050000 20250109040000 26470 . LfRI1vK3lQfS0MXFH8j09yXXPk38g2shVIDzCpg6meStf+HgzQhcNQw9 3lEF5ubkQ0ycYO2BNAzrrCCzn9MNp33tuN2Pr3O1p+bN1f2E7Gt23uUo D/S3XMjyNOoFjaLuaJfSNIj7XeEypXOQ9LvS60FUMk9eHKdL/ejw6aMZ gGsbL4R2N6ZXBP5iqhOaGsMY0stf7qzw1ZtOtqsLxTl6/ahUxHGPjjFd sC95y4LNH2LHEARjkbyMfEVW5iDbxKehoSM6DE/6wf4JvWcvKk5QRpY3 ZvdFYRChAAE8yBVA1qjp/m6hgizGrmzt0o1pJMjE6HWhD1URzvx5W64u bQfE4g==
;; Received 765 bytes from 192.5.5.241#53(f.root-servers.net) in 0 ms
;; communications error to 65.22.26.35#53: timed out
;; UDP setup with 2a01:8840:f6::35#53(2a01:8840:f6::35) for fuzzy.mailcow.email failed: network unreachable.
;; UDP setup with 2a01:8840:1c::35#53(2a01:8840:1c::35) for fuzzy.mailcow.email failed: network unreachable.
;; UDP setup with 2a01:8840:1a::35#53(2a01:8840:1a::35) for fuzzy.mailcow.email failed: network unreachable.
;; UDP setup with 2a01:8840:1d::35#53(2a01:8840:1d::35) for fuzzy.mailcow.email failed: network unreachable.
;; UDP setup with 2a01:8840:f7::35#53(2a01:8840:f7::35) for fuzzy.mailcow.email failed: network unreachable.
;; UDP setup with 2a01:8840:1b::35#53(2a01:8840:1b::35) for fuzzy.mailcow.email failed: network unreachable.
;; communications error to 161.232.13.35#53: timed out
;; communications error to 161.232.12.35#53: timed out
;; communications error to 65.22.24.35#53: timed out
;; communications error to 65.22.25.35#53: timed out
;; communications error to 65.22.27.35#53: timed out
;; no servers could be reached`
- Edited
OK… I have to admit I have no idea what’s wrong with your setup… my mailcow is running on Debian 12 as well without problems.
Is this a plain installation of Debian and mailcow or did you setup any specials?
Any docker overrides?
- Edited
I dont’t have any docker overrides or specials it is the normal installation from 
Mailcow Docs. docs.mailcow.email
- Edited
host
I am using Debian 12 as well with no problems. Something must be wrong on your side or you are maybe using a predefined image from your hoster which has some features enabled like UFW, firewalld or SELinux.
A typical error is that both docker-compose (standalone) and docker compose (plugin, native) are installed and you keep using both of them. You shall always use only one of the two, and never use the other one.
Which one is referenced in your mailcow.conf?
mailcow.conf refers to native (compose plugin) and there is no UFW, firewalld or SELinux installed.
Please post the output of these commands:
docker network inspect bridge
docker network inspect mailcowdockerized_mailcow-network
ip a s
ip r sAnd please try this:
docker exec mailcowdockerized-unbound-mailcow-1 dig @8.8.8.8 fuzzy.mailcow.email
- Edited
ETNyx
I have already tried that
docker network inspect bridge:
[
{
"Name": "bridge",
"Id": "72f75be34060312e1b1bdea1c7df72112d8177f1eda472cd775ca8545c5aad34",
"Created": "2025-01-10T17:01:54.648665288+01:00",
"Scope": "local",
"Driver": "bridge",
"EnableIPv6": false,
"IPAM": {
"Driver": "default",
"Options": null,
"Config": [
{
"Subnet": "172.17.0.0/16",
"Gateway": "172.17.0.1"
}
]
},
"Internal": false,
"Attachable": false,
"Ingress": false,
"ConfigFrom": {
"Network": ""
},
"ConfigOnly": false,
"Containers": {},
"Options": {
"com.docker.network.bridge.default_bridge": "true",
"com.docker.network.bridge.enable_icc": "true",
"com.docker.network.bridge.enable_ip_masquerade": "true",
"com.docker.network.bridge.host_binding_ipv4": "0.0.0.0",
"com.docker.network.bridge.name": "docker0",
"com.docker.network.driver.mtu": "1500"
},
"Labels": {}
}
]
docker network inspect mailcowdockerized_mailcow-network ip a s:
[
{
"Name": "mailcowdockerized_mailcow-network",
"Id": "5a5e084a0d4b66a64b5ec75224614d4ac83c0c981c0d0cd09e9cddcfb6373b3e",
"Created": "2025-01-09T19:44:13.537753289+01:00",
"Scope": "local",
"Driver": "bridge",
"EnableIPv6": true,
"IPAM": {
"Driver": "default",
"Options": null,
"Config": [
{
"Subnet": "172.22.1.0/24",
"Gateway": "172.22.1.1"
},
{
"Subnet": "fd4d:6169:6c63:6f77::/64",
"Gateway": "fd4d:6169:6c63:6f77::1"
}
]
},
"Internal": false,
"Attachable": false,
"Ingress": false,
"ConfigFrom": {
"Network": ""
},
"ConfigOnly": false,
"Containers": {
"0ed29c822b03c7bd5e4f92b80e0271c93769107b4774aa177546cce19803ee43": {
"Name": "mailcowdockerized-dockerapi-mailcow-1",
"EndpointID": "f7c224b4c993ae9e5022ab58d3defbbc88475ec77639f8a25d06ac9f2b139a54",
"MacAddress": "02:42:ac:16:01:04",
"IPv4Address": "172.22.1.4/24",
"IPv6Address": "fd4d:6169:6c63:6f77::5/64"
},
"1206f8867cec1d76bc01ce5cec985adcdff9d9f9525d57ddacd4713a1130a74e": {
"Name": "mailcowdockerized-memcached-mailcow-1",
"EndpointID": "029d9a0df736514d2fc41ca85de0dbd5bbf0807d7ccde7e3fa99ff221f5015b3",
"MacAddress": "02:42:ac:16:01:05",
"IPv4Address": "172.22.1.5/24",
"IPv6Address": "fd4d:6169:6c63:6f77::6/64"
},
"24a8cc22953669ac7d18ba509aded94b4788afd580f305f46858407d834b2587": {
"Name": "mailcowdockerized-olefy-mailcow-1",
"EndpointID": "9920ec69966b252cf13701278d87e7309075c47fc5585ad77391bba13b679d94",
"MacAddress": "02:42:ac:16:01:08",
"IPv4Address": "172.22.1.8/24",
"IPv6Address": "fd4d:6169:6c63:6f77::c/64"
},
"36f198afb1b75cabf7293eff08c2d15d277783060cb94f8603def5e0845b4713": {
"Name": "mailcowdockerized-mysql-mailcow-1",
"EndpointID": "1ddd3299d1747c5c2262202e6e6601b6ef061a7a346ac0e05fbe1d5728088919",
"MacAddress": "02:42:ac:16:01:06",
"IPv4Address": "172.22.1.6/24",
"IPv6Address": "fd4d:6169:6c63:6f77::7/64"
},
"36fda5f01e444ab08cf360717ba729ca16430b92c8c4f0a04b6c3bbc566eca48": {
"Name": "mailcowdockerized-sogo-mailcow-1",
"EndpointID": "86a0e36f3f3a7d4eb72000749686f66facc052536f8657cc3fda3f7b20a667c3",
"MacAddress": "02:42:ac:16:01:f8",
"IPv4Address": "172.22.1.248/24",
"IPv6Address": "fd4d:6169:6c63:6f77::3/64"
},
"6bb589dad82b45b0e902c029d747c086b495932271ff1a2bbaf3033612ab6011": {
"Name": "mailcowdockerized-dovecot-mailcow-1",
"EndpointID": "c03ac442ce044315983024a068a71bf4d294b9e51e924bd5e8a25bb3fc3cda7b",
"MacAddress": "02:42:ac:16:01:fa",
"IPv4Address": "172.22.1.250/24",
"IPv6Address": "fd4d:6169:6c63:6f77::9/64"
},
"88c46b70b842f53f040bfba7ebabce3d5a5bbb4c79f4d34afda054fef5208217": {
"Name": "mailcowdockerized-redis-mailcow-1",
"EndpointID": "2ba6d5df79a5780562ce1a1235c8213e435b52e354c640c83108ad36dae50d4c",
"MacAddress": "02:42:ac:16:01:f9",
"IPv4Address": "172.22.1.249/24",
"IPv6Address": "fd4d:6169:6c63:6f77::8/64"
},
"8bbfaed161c34a561dac02164a74cfa3de13f9deae67909a1de48bfee6851ba7": {
"Name": "mailcowdockerized-unbound-mailcow-1",
"EndpointID": "4a1818e9a7f8f3779da4c4ad26923ab4f4bf2d1f85d55ef9f06c6f0417d5d40a",
"MacAddress": "02:42:ac:16:01:fe",
"IPv4Address": "172.22.1.254/24",
"IPv6Address": "fd4d:6169:6c63:6f77::b/64"
},
"b2747e34198a42c9d2280c28aeb3c1095ab49ac1d6d75aecad5ad18ddcccd00f": {
"Name": "mailcowdockerized-php-fpm-mailcow-1",
"EndpointID": "233fd378e7ecb0b7356e108bd6458384e809848900db593a28c99d791c01b4e9",
"MacAddress": "02:42:ac:16:01:03",
"IPv4Address": "172.22.1.3/24",
"IPv6Address": "fd4d:6169:6c63:6f77::4/64"
},
"c0d489e9f54c894c8a37a411edd5603ba5862cd2955b2db570d961492b4b8ca0": {
"Name": "mailcowdockerized-ofelia-mailcow-1",
"EndpointID": "1d54bb4857e8c656e109581d077ae2e3163ca18fc7a17d1f8482b8cb2b38ae55",
"MacAddress": "02:42:ac:16:01:02",
"IPv4Address": "172.22.1.2/24",
"IPv6Address": "fd4d:6169:6c63:6f77::2/64"
},
"f7c4ecf2320531f6678c48acd31d64f7aff976a6a7426c52bd0ce1655eca7768": {
"Name": "mailcowdockerized-solr-mailcow-1",
"EndpointID": "2e1b092f891a985ce3034bb1fc326d52662f3c694f5d945f52d4390d6c1a0711",
"MacAddress": "02:42:ac:16:01:07",
"IPv4Address": "172.22.1.7/24",
"IPv6Address": "fd4d:6169:6c63:6f77::a/64"
}
},
"Options": {
"com.docker.network.bridge.name": "br-mailcow"
},
"Labels": {
"com.docker.compose.config-hash": "53b5069ca4ccecd7a934a515f1a80cf914e2d0c79fd956529231416df2f2ff96",
"com.docker.compose.network": "mailcow-network",
"com.docker.compose.project": "mailcowdockerized",
"com.docker.compose.version": "2.32.1"
}
}
]
ip a s:
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host noprefixroute
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
link/ether bc:24:11:72:2d:29 brd ff:ff:ff:ff:ff:ff
altname enp6s18
inet 45.137.68.65/25 brd 45.137.68.127 scope global eth0
valid_lft forever preferred_lft forever
inet6 fe80::be24:11ff:fe72:2d29/64 scope link
valid_lft forever preferred_lft forever
3: docker0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default
link/ether 02:42:ef:de:ee:b2 brd ff:ff:ff:ff:ff:ff
inet 172.17.0.1/16 brd 172.17.255.255 scope global docker0
valid_lft forever preferred_lft forever
4: br-mailcow: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default
link/ether 02:42:c5:9f:30:42 brd ff:ff:ff:ff:ff:ff
inet 172.22.1.1/24 brd 172.22.1.255 scope global br-mailcow
valid_lft forever preferred_lft forever
inet6 fd4d:6169:6c63:6f77::1/64 scope global nodad
valid_lft forever preferred_lft forever
inet6 fe80::42:c5ff:fe9f:3042/64 scope link
valid_lft forever preferred_lft forever
6: veth76169c0@if5: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 5a:fe:67:de:1e:a4 brd ff:ff:ff:ff:ff:ff link-netnsid 1
inet6 fe80::58fe:67ff:fede:1ea4/64 scope link
valid_lft forever preferred_lft forever
8: vethdb48414@if7: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 7a:5c:7c:01:85:e8 brd ff:ff:ff:ff:ff:ff link-netnsid 4
inet6 fe80::785c:7cff:fe01:85e8/64 scope link
valid_lft forever preferred_lft forever
10: veth253fecd@if9: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 1e:2d:c3:59:ee:36 brd ff:ff:ff:ff:ff:ff link-netnsid 5
inet6 fe80::1c2d:c3ff:fe59:ee36/64 scope link
valid_lft forever preferred_lft forever
12: vethc127df9@if11: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 76:29:6d:c9:83:c6 brd ff:ff:ff:ff:ff:ff link-netnsid 3
inet6 fe80::7429:6dff:fec9:83c6/64 scope link
valid_lft forever preferred_lft forever
14: veth0447b2f@if13: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 8a:50:62:1b:10:9f brd ff:ff:ff:ff:ff:ff link-netnsid 0
inet6 fe80::8850:62ff:fe1b:109f/64 scope link
valid_lft forever preferred_lft forever
16: vethe5f2abb@if15: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 62:e5:5c:bd:19:54 brd ff:ff:ff:ff:ff:ff link-netnsid 2
inet6 fe80::60e5:5cff:febd:1954/64 scope link
valid_lft forever preferred_lft forever
18: veth2c53ff7@if17: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 86:29:cb:9d:a2:7c brd ff:ff:ff:ff:ff:ff link-netnsid 7
inet6 fe80::8429:cbff:fe9d:a27c/64 scope link
valid_lft forever preferred_lft forever
20: veth18e78eb@if19: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 1a:e9:b3:b9:13:ca brd ff:ff:ff:ff:ff:ff link-netnsid 11
inet6 fe80::18e9:b3ff:feb9:13ca/64 scope link
valid_lft forever preferred_lft forever
22: veth315e58d@if21: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 16:1b:8a:be:db:e1 brd ff:ff:ff:ff:ff:ff link-netnsid 9
inet6 fe80::141b:8aff:febe:dbe1/64 scope link
valid_lft forever preferred_lft forever
24: veth8f5e1db@if23: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 0a:06:ca:b2:c5:25 brd ff:ff:ff:ff:ff:ff link-netnsid 6
inet6 fe80::806:caff:feb2:c525/64 scope link
valid_lft forever preferred_lft forever
26: vethcc147ce@if25: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-mailcow state UP group default
link/ether 02:5f:8f:68:1a:e7 brd ff:ff:ff:ff:ff:ff link-netnsid 8
inet6 fe80::5f:8fff:fe68:1ae7/64 scope link
valid_lft forever preferred_lft forever
ip r s:
default via 45.137.68.1 dev eth0 onlink
45.137.68.0/25 dev eth0 proto kernel scope link src 45.137.68.65
172.17.0.0/16 dev docker0 proto kernel scope link src 172.17.0.1 linkdown
172.22.1.0/24 dev br-mailcow proto kernel scope link src 172.22.1.1
docker exec mailcowdockerized-unbound-mailcow-1 dig @8.8.8.8 fuzzy.mailcow.email:
`; <<>> DiG 9.18.27 <<>> @8.8.8.8 fuzzy.mailcow.email
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 2130
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;fuzzy.mailcow.email. IN A
;; ANSWER SECTION:
fuzzy.mailcow.email. 9033 IN A 95.217.129.125
;; Query time: 4 msec
;; SERVER: 8.8.8.8#53(8.8.8.8) (UDP)
;; WHEN: Fri Jan 10 17:05:16 CET 2025
;; MSG SIZE rcvd: 64 `
Ok, looking good, I have no idea what’s wrong with your server… sorry…
10 days later
I have the same issue
clean Ubuntu server installed on my Raspberry pi5
ran update and upgrade
installed docker which includes docker compose plugin v2.32.4
all of firewall is currently handled bu OpenWrt as well as all port forwarding
The logs unbound-mailcow all show DNS issue but ping and dig to fuzzy, github and docker hub all work
OK my issue is that the unbound service doesn’t work behind a wireguard vpn from Nordvpn when was on the unprotected not work it worked testing othe providers to see if the issue is with them
Since the server is in a VPN protected subnet it couldn’t resolve DNS even though dig shows clearly the the domains are accessible
added dns servers to the conf file fixed the issue
a month later
- Edited
Hey there,
I know this is a bit late, but in case you’re still looking for a solution—or if someone else stumbles upon this thread—here’s what you need to know:
I’m also a Dashserv customer, and this issue is due to a limitation with their DNS. To fix it and get everything running smoothly, check out this post: 
Dashserv DDoS Protection. Wiki.js
If that link is no longer accessible, you can manually adjust your configuration with the following steps:
cd /opt/mailcow-dockerized
echo "forward-zone:
name: \".\"
forward-addr: 1.1.1.1
forward-addr: 1.0.0.1" >> data/conf/unbound/unbound.conf
docker compose restart unbound-mailcowThis should resolve the issue
No one is typing