請問:
我架的是ubuntu 9.4
裝了postfix
有以下問題請幫小弟謝謝.
1.只能內部寄信.除非指定ip的電腦才可以寄外部信.
2.寄msn信箱出現以下訊息
This is the mail system at host dns.xxx.com.tw.

I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

The mail system

: host mx3.hotmail.com[65.55.37.88] said: 550 SC-001
Mail rejected by Windows Live Hotmail for policy reasons. Reasons for
rejection may be related to content with spam-like characteristics or
IP/domain reputation problems. If you are not an email/network admin please
contact your E-mail/Internet Service Provider for help. Email/network
admins, please visit http://postmaster.live.com for email delivery
information and support (in reply to MAIL FROM command)
但msn可以寄給這個信箱

3.寄yahoo ok,但yahoo寄給這個信箱出現
Hi. This is the qmail-send program at yahoo.com.
I'm afraid I wasn't able to deliver your message to the following addresses.
This is a permanent error; I've given up. Sorry it didn't work out.

:
Sorry. Although I'm listed as a best-preference MX or A for that host,
it isn't in my control/locals file, so I don't treat it as local. (#5.4.6)

--- Below this line is a copy of the message.

但寄給yahoo信箱正常.

請問小弟那沒設好.是dns還是mail.cf 感謝您

附上mail.cf檔.請幫忙謝謝
# See /usr/share/postfix/main.cf.dist for a commented, more complete version


# Debian specific: Specifying a file name will cause the first
# line of that file to be used as the name. The Debian default
# is /etc/mailname.
#myorigin = /etc/mailname

smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
biff = no

# appending .domain is the MUA's job.
append_dot_mydomain = no

# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h

readme_directory = no

# TLS parameters
smtpd_tls_cert_file = /etc/ssl/certs/ssl-mail.pem
smtpd_tls_key_file = /etc/ssl/private/ssl-mail.key
smtpd_use_tls = yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache

# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
# information on enabling SSL in the smtp client.

myhostname = dns
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = XXX.com.tw, dns, localhost.localdomain, localhost
relayhost =
#mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
home_mailbox = Maildir/
smtpd_sasl_auth_enable = yes
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/dovecot-auth
smtpd_sasl_authenticated_header = yes
smtpd_sasl_security_options = noanonymous
smtpd_sasl_local_domain = $myhostname
broken_sasl_auth_clients = yes
smtpd_recipient_restrictions = reject_unknown_sender_domain, reject_unknown_recipient_domain, reject_unauth_pipelining, permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
smtpd_sender_restrictions = reject_unknown_sender_domain
mailbox_command = /usr/lib/dovecot/deliver -c /etc/dovecot/dovecot-postfix.conf -n -m "${EXTENSION}"
smtp_use_tls = yes
smtpd_tls_received_header = yes
smtpd_tls_mandatory_protocols = SSLv3, TLSv1
smtpd_tls_mandatory_ciphers = medium, high
smtpd_tls_auth_only = yes
tls_random_source = dev:/dev/urandom

在 mynetworks 改成這樣試試..

例如主機 IP 是 1.2.3.4

mynetworks = 1.2.3.4 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128

謝謝.
處理好了..感謝

處理好了??
可是我看你前文附的信,不只是postfix mynetworks的問題
架設smtp另外一個要注意的事情是你dns的正反解

你smtp使用的那個domain name及ip address,除了一定要有正反解之外
最好正反解要相符
也就是說假設你是 mail.abc .com.tw 123.123.123.123的話
host mail.abc .com.tw 查出來的ip address必須是 123.123.123.123
host 123.123.123.123 查出來的domain name 最好也是 mail.abc .com.tw.
不然有不小的機率會被擋信

然後修正一下你前面發的文,main.cf那樓.....把你的domain隱掉吧,露餡了
另外....如果真的是那間出版社的話
你的domain 沒有設MX
對外部來講,smtp的port 25沒通,這樣外面信是發不過去的

謝謝..
沒改到..感謝大大.
另請教.架了ftp啟動都正常.為什麼21p就是不能用.要登入22p

netstat -na | grep LISTEN 看一下port21有沒LISTEN

另外....你的ftp client設定要注意
沒特別設定的話, port 21要用ftp登入
port22 能登入是sftp 兩者是不一樣的
看一下你是不是用sftp嘗試要在port21登入

大大.
我是安裝vsftp
沒有特別設定.
22p是我有裝ssh,目前只有ssh可以連線.
但我想開放用網頁也可以上傳ftp.^_^
感謝你.安裝好重啟都寫ok..但就是連telnet xxxxx 21都不行

另可以請問.在這個系統要安裝openwebmail要怎麼安裝.感謝

大大.本來都可以正常收發信了,
但很奇怪安裝webmail後,現在寄信沒問題.外面寄來的信會不見,
msn寄的就ok.yahoo及pchome就收不到信.
yahoo有退信如下
Hi. This is the qmail-send program at yahoo.com.
I'm afraid I wasn't able to deliver your message to the following addresses.
This is a permanent error; I've given up. Sorry it didn't work out.

:
Sorry. Although I'm listed as a best-preference MX or A for that host,
it isn't in my control/locals file, so I don't treat it as local. (#5.4.6)

--- Below this line is a copy of the message.

請問是dns問題嗎.
附上dns設定檔
正解:
;
; BIND data file for local loopback interface
;
$TTL 604800
@ IN SOA xxxx.com.tw. dns.xxxx.com.tw. (
2 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS dns.xxxx.com.tw.
@ IN A 127.0.0.1
proxy IN A 1.2.3.4 外部
dns IN A 1.2.3.4 外部
mail IN A 1.2.3.4 外部
misc IN A 1.2.3.4 外部

www IN CNAME misc
ftp IN CNAME misc
ftp2 IN CNAME misc

mail IN MX 10 mail.xxxx.com.tw.
反解
$TTL 604800
@ IN SOA xxxx.com.tw. dns.xxxx.com.tw. (
1 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS dns.xxxx.com.tw.
142 IN PTR proxy.xxxx.com.tw.
142 IN PTR dns.xxxx.com.tw.
142 IN PTR mail.xxxx.com.tw.
142 IN PTR misc.xxxx.com.tw.
請幫我看看謝謝.

另我有申請中華ip位置反解 1.2.3.4 mail.xxxx.com.tw

把這些
proxy IN A 1.2.3.4 外部
dns IN A 1.2.3.4 外部
mail IN A 1.2.3.4 外部
misc IN A 1.2.3.4 外部
改成
proxy IN CNAME dns
mail IN CNAME dns
misc IN CNAME dns

把這行

mail IN MX 10 mail.xxxx.com.tw.
改成
@ IN MX 10 mail.xxxx.com.tw.

試試看
我是這樣設的