Jcloud Posted February 19, 2018 Share Posted February 19, 2018 Application Name: Poste.io <==> "SMTP + IMAP + POP3 + Antispam + Antivirus + Web administration + Web email ... on your server in ~5 minutes." Application Site: https://poste.io/ Docker Hub: https://hub.docker.com/r/analogic/poste.io/ Template-Repository: https://github.com/Jcloud67/Docker-Templates INITIAL SETUP: 0. Requires registered FQDN to send/receive external email. 1. Following ports are used by container for mail: 25, 110, 143, 443, 465, 587, 993, 995 2. Following ports are used by container for webui: 443, 8280 (These may conflict, check your ports) 3. Make a user share for mail data, default is /mnt/user/poste 4. Some or all mail ports may need to be opened, forwarded, or dmz for mail send/receive to work. Optional arguments -e "HTTPS=OFF" To disable all redirects to encrypted HTTP, its useful when you are using some kind of reverse proxy (place this argument before image name!) NOTE: Marked as BETA, simply because author is not an expert in email exchange servers -- software itself looks pretty good. Quote Link to comment
JonathanM Posted February 19, 2018 Share Posted February 19, 2018 Just keep in mind if you set this up, you need to be able to set the PTR record for your public IP. Many if not most ISP's will NOT want to do this, resulting in your outgoing emails being tagged as spam and / or immediately bounced on almost every major email provider. Sending email from a normal consumer ISP connection without it being tagged as spam is difficult to impossible. 1 Quote Link to comment
Jcloud Posted February 19, 2018 Author Share Posted February 19, 2018 7 hours ago, jonathanm said: Just keep in mind if you set this up, you need to be able to set the PTR record for your public IP. Many if not most ISP's will NOT want to do this, resulting in your outgoing emails being tagged as spam and / or immediately bounced on almost every major email provider. Sending email from a normal consumer ISP connection without it being tagged as spam is difficult to impossible. Good call. I had seen requests in forums, and was just trying to fulfill, I may have I opened a large can of worms. I've actually run into the issue you mention, GMAIL flags everything I've sent as SPAM. The bigger issue has been receiving email. Emailing from outside to Poste has resulted in no delivery/stuck in mailserver queue (not bounced). It's been over 15 years from the last time I've worked on a mail server, DNS, and delivery systems. Quote Link to comment
JonathanM Posted February 19, 2018 Share Posted February 19, 2018 You may want to flag this container as advanced users only or post other warnings. I can definitely see it being useful for some folks, but not on a normal consumer level ISP. Fixed IP is a must, as is the ability to set PTR records to match the mail DNS name. A business internet account with a fixed IP would probably be a minimum requirement. Trying to get this working with a dynamic IP would be an automatic fail on all levels. 1 1 Quote Link to comment
gxs Posted March 7, 2018 Share Posted March 7, 2018 I can't enter the web interface screen. Port 8280 (webui port) only forwards me to https://myserver/admin/install/server. The problem is that this then shows my unraid interface. Adding the port like https://myserver:8280/admin/install/server or even changing it to http doesn't do anything. Is there anything I'm missing? Quote Link to comment
tjohansson Posted April 20, 2018 Share Posted April 20, 2018 I have got this mostly working but when setting up a smarthost to use (my isp requires this) the mailserver just ignores the setting and still try to send the mails out on port 25 instead of 465 that I have specified. Anyone know how to fix this? Also when trying to fix this issue I read on poste.io page that there should be logs for the smtp stuff in the following location, but there is no qpsmtpd folder in the logs dir. /your-data-dir/logs/qpsmtpd - logs from all smtpd communications Any help would be greatly appreciated. Quote Link to comment
Ryonez Posted April 25, 2018 Share Posted April 25, 2018 Yeah, this is starting to get annoying I think I have everything set up, I can receive email, I just can't send. Seriously, nothing sends. It all ends up in a queue and I don't know why it won't send. And the logs don't seem to give any clue. IT just shows them being added to the queue and then... nothing. Doesn't seem to be any attempt to send. Any suggestions? Quote Link to comment
Ryonez Posted April 27, 2018 Share Posted April 27, 2018 Alright, figured out my problem. I use a Fritzbox that had locked down outgoing port 25 connections. I shifted it into to normal access rules and made an exception for the server. SPF and DKIM all set up, test emails are going, seems like it's good! Quote Link to comment
JonathanM Posted April 27, 2018 Share Posted April 27, 2018 14 minutes ago, Ryonez said: test emails are going, seems like it's good! Does your IP resolve back to your domain name? https://mxtoolbox.com/reverselookup.aspx Quote Link to comment
Ryonez Posted April 27, 2018 Share Posted April 27, 2018 6 hours ago, jonathanm said: Does your IP resolve back to your domain name? https://mxtoolbox.com/reverselookup.aspx It says it's found a DNS record. Why do you ask? Quote Link to comment
JonathanM Posted April 27, 2018 Share Posted April 27, 2018 2 hours ago, Ryonez said: It says it's found a DNS record. Why do you ask? Does the DNS record it found match your domain precisely? When you ping the domain that you are using for your email, it returns an IP address. When you get the info on that IP, if the domain that is returned doesn't match the pinged domain exactly, you will have issues with providers bouncing your email as spam. Quote Link to comment
JonathanM Posted April 27, 2018 Share Posted April 27, 2018 2 hours ago, Ryonez said: It says it's found a DNS record. Why do you ask? Here is a better link. https://www.debouncer.com/reverse-dns-check Quote Link to comment
Ryonez Posted April 27, 2018 Share Posted April 27, 2018 There isn't an issue with them: Quote SPF and DKIM all set up I tested it with the tools on poste.io's site, and can see them passing in the email headers. Quote Link to comment
Jonny190 Posted May 12, 2018 Share Posted May 12, 2018 After filling out the initial config page i get: Oops! An Error Occurred The server returned a "500 Internal Server Error". Something is broken. Please let us know what you were doing when this error occurred. We will fix it as soon as possible. Sorry for any inconvenience caused. returned, is this a conman issue ? Quote Link to comment
coopooc Posted May 18, 2018 Share Posted May 18, 2018 Anyone know how to change the default maximum import size? It says it's set at 100M but I can't find that in any config files to modify. Quote Link to comment
EmilionDK Posted July 8, 2018 Share Posted July 8, 2018 Hey After a fresh install, i get a flood of this in the log, [!] WARNING: Too many API connections (use -S to adjust). Can't seem to find any info about i. Quote Link to comment
xorinzor Posted November 28, 2018 Share Posted November 28, 2018 (edited) I'm running into the problem that all sent emails end up as "250 - Message queued". All ports are open and confirmed to be open using an online tool. When configuring SMTP relay to my local IP they get sent, but immediately return a Delivery Failure email (because it checks if the domain is configured on my own mailserver, instead of looking up what mailserver to send it to). Wasn't this supposed to be an all-in-one solution? Right now it seems like it's just completely incapable of sending emails and only capable of receiving them. So, for clarification, emails aren't being sent, seemingly not even an attempt to send them is being made. Not to be confused with emails getting rejected or ending up in SPAM (which isn't one of my concerns since it's for personal use only anyway). Tried checking log files, but they don't tell me anything useful either, only that the message got queued, but nothing after that. EDIT: Turns out my ISP is blocking the outgoing port 25 somewhere along the way. I didn't bother to check at first since I never ran into a similar issue before with my ISP so figured they weren't blocking anything. Edited November 28, 2018 by xorinzor Quote Link to comment
h3xcmd Posted December 31, 2018 Share Posted December 31, 2018 (edited) Most common residential ISP's in the past millennium turn and even at this present time participate in banning outgoing port 25 with absolutely no support to accommodate your request to open it. Make sure you thank the people who spam and send out 10's of thousands of news letters a day promoting bed bath and beyond coupons. If you are lucky and have a registered business in a residential area paying for Business Class service in a residential area Then this should not be an issue.. Q: What about using a SMTP relay, i.e sendgrid, sending 100 emails p/day for free possible with Poste.io Free version? FQ: Does Poste.io Free version provide support [in its GUI for an SMTP relay? [EDIT] A: yes!A: Q: MX records, Pointing to DuckDNS, achieve Static results? [EDIT] A: yes! FQ: what would you put for a SPF record? Q: How much Ram are we talking about when using Poste.io? MS Exchange 2019 Memory Varies depending on Exchange roles that are installed: • Mailbox: 128GB • Edge Transport: 64GB minimum recommended. MS Exchange 2016 requires 8 GB of RAM for the mailbox role and 4 GB for the Edge Transport role minimum recommended. A: Using the Poste.io demo is showing "Used memory 6GB" I am assuming that can go higher! Edited December 31, 2018 by h3xcmd Answers 1 Quote Link to comment
Starlord Posted January 11, 2019 Share Posted January 11, 2019 So I was able to get this working sending and receiving mail (static ip, ptr record set by my isp, all ports forwarded and working) but I'm having issues getting this working with my nginx reverse proxy.. keep getting a 502 error Here's my proxy conf server { listen 443 ssl; listen [::]:443 ssl; server_name mail.*; include /config/nginx/ssl.conf; client_max_body_size 0; # enable for ldap auth, fill in ldap details in ldap.conf #include /config/nginx/ldap.conf; location / { # enable the next two lines for http auth #auth_basic "Restricted"; #auth_basic_user_file /config/nginx/.htpasswd; # enable the next two lines for ldap auth #auth_request /auth; #error_page 401 =200 /login; include /config/nginx/proxy.conf; resolver 127.0.0.11 valid=30s; set $upstream_mail mail; proxy_pass http://$upstream_mail:4433; } } and here's the container setup Quote Link to comment
Dro Posted January 18, 2019 Share Posted January 18, 2019 Is there a way on the backend to default it to use port 587? If I wanted to use the web interface it seems by default it uses port 25 and I haven't found a way to change it.. Since my ISP blocks outbound port 25 this is an issue.. Emails get delivered if i setup an SMTP relay with port 587 but i cannot use that solution going forward it was for a test... I also cannot receive any emails which I am not sure why yet but am able to telnet to my server and can see a connection on the interface so i know inbound port 25/587 is open and working. Looks like most stuff is ending up in the "queue" and just stays there. Quote Link to comment
Phastor Posted June 11, 2019 Share Posted June 11, 2019 (edited) MXToolbox is reporting that my server does not support TLS. My knowledge in this sort of thing is limited, but I think I have pinpointed the problem. After issuing the EHLO command myself, it returned the following. 250-PIPELINING 250-8BITMIME 250-SMTPUTF8 250-SIZE 25214400 250 STARTTLS That last line is what draws my attention. It's got a space instead of a dash. MXToolbox is expecting "250-STARTTLS" and I'm guessing that's why it's marking it as not supported since that's not in the response that it's getting. I imagine this is something more for the original developer of the software to deal with--just hoping that it makes its way up the chain from here. Edited June 11, 2019 by Phastor Quote Link to comment
wierdbeard65 Posted June 14, 2019 Share Posted June 14, 2019 Hi, I have Poste.io set up on my Unraid server which is behind my firewall. I have a reverse proxy (NGINX) set up for web access. Mail ports are forwarded. All this is working. My problem is with using Let's Encrypt for certificates. I created a wildcard cert for my domain and, if I manually copy the certs, it "kind-of" works. Problem is that I have to manually renew this and then copy a bunch of certificates around. If I try to use Poste.io's internal certificate setup, then I hit a road-block. I don't know how this is working, but if I go to the URL for my Unraid box, then I get the Unraid interface. Same URL, but with /webmail or /admin gets me Poste.io. I have no idea where this redirect is being set up. I don't really care, however when I use the Cert setup, it tries to set up a challenge on http://<mydomain>/.well-known/acme-challenge/IyfGN5K7ZHtYnV198g5g-phW219wh73eMjddgVvhrmg and that is NOT redirected, so fails. Can anyone help? Quote Link to comment
wierdbeard65 Posted June 14, 2019 Share Posted June 14, 2019 Ok, after much digging as well as not a little hair-pulling, I now have it working. If anyone else stumbles across this post and has the same problem, it seems that when you access the web interface using port 8280, it redirects the browser to use https on port 443, changing the location to be /webmail. I hadn't noticed the switch.... The Let's Encrypt challenge works on http on port 80. So, what I did was to set my reverse proxy to forward all http requests to mail.<mydomain> port 80 to https on my Unraid box and it was able to verify everything.... Quote Link to comment
aterfax Posted October 22, 2019 Share Posted October 22, 2019 (edited) For users who want the letsencrypt in Poste IO working but are already using a letsencrypt docker, all you need to do is share the .well-known folders between your Poste IO and letsencrypt docker i.e. in the Poste IO docker config: This will not work if your domain has HSTS turned on with redirects to HTTPS (or this was the case with the version of letsencypt in the docker a while ago as it was reported here: https://bitbucket.org/analogic/mailserver/issues/749/lets-encrypt-errors-with-caprover ) You can instead mount the default certificate files in the docker directly to the certificates from the letsencrypt/SWAG docker. To be explicit with my volume mounts for SSL working: /data/ssl/server.crt → /mnt/user/appdata/letsencrypt/etc/letsencrypt/live/mailonlycert.DOMAIN.com/cert.pem /data/ssl/ca.crt → /mnt/user/appdata/letsencrypt/etc/letsencrypt/live/mailonlycert.DOMAIN.com/chain.pem /data/ssl/server.key → /mnt/user/appdata/letsencrypt/etc/letsencrypt/live/mailonlycert.DOMAIN.com/privkey.pem I do not recall the exact details of why the above is optimal but I suspect that Poste is handling making it's own full chain cert which results in some cert mangling if you do give it your fullchain cert rather than each separately (various internal services inside the docker need different formats) - I believe that without the mounts as above the administration portal will be unable to log you in. Edited May 18, 2021 by aterfax Updating info 2 1 Quote Link to comment
eagle470 Posted November 5, 2019 Share Posted November 5, 2019 So I have this container installed on my system, but going to the port the web UI is supposed to be tied to sends me to a stripped version of the array page. Please advise. Quote Link to comment
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.