1

Topic: Problems with iptables , blocks IP's validity of my mail users.

==== Required information ====
- iRedMail version (check /etc/iredmail-release): 0.9.5-1
- Linux/BSD distribution name and version: Centos 7
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): MySQL
- Web server (Apache or Nginx):Apache
- Manage mail accounts with iRedAdmin-Pro? no
- Related log if you're reporting an issue:
====


Chain IN_iredmail_deny (1 references)
num  target     prot opt source               destination

Chain IN_iredmail_log (1 references)
num  target     prot opt source               destination

Chain OUTPUT_direct (1 references)
num  target     prot opt source               destination

Chain f2b-dovecot (1 references)
num  target     prot opt source               destination
1    RETURN     all  --  0.0.0.0/0            0.0.0.0/0

Chain f2b-postfix (1 references)
num  target     prot opt source               destination
1    RETURN     all  --  0.0.0.0/0            0.0.0.0/0

Chain f2b-roundcube (1 references)
num  target     prot opt source               destination
1    RETURN     all  --  0.0.0.0/0            0.0.0.0/0

Chain f2b-sshd (1 references)
num  target     prot opt source               destination
1    RETURN     all  --  0.0.0.0/0            0.0.0.0/0

Chain f2b-sshd-ddos (1 references)
num  target     prot opt source               destination
1    RETURN     all  --  0.0.0.0/0            0.0.0.0/0




redmail is installed with rules and chains for access control and that seems to me very well , but I have a problem with iptables chains , blocks IP's valid daily my mail users and what I have to do is delete the rule that is created , how can I do to prevent this from happening ? I can delete or chains iredamail , I hope I can help , no more for now I am at your service , greetings .

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2

Re: Problems with iptables , blocks IP's validity of my mail users.

*) If you're using static IP address, whitelist them in Fail2ban config file: /etc/fail2ban/jail.local.
*) If you're using dynamic IP address, think about why your mail client applications generate errors which triggered Fail2ban to block the IP address?

3

Re: Problems with iptables , blocks IP's validity of my mail users.

*) If you're using static IP address, whitelist them in Fail2ban config file: /etc/fail2ban/jail.local.

R.- customers do not use static ip have different internet services the only static ip I occupy is where this hosted my mail server.

*) If you're using dynamic IP address, Think About why your mail client applications generate errors triggered Which Fail2ban to block the IP address?

R.- not imagine what could be the error that triggers the insertion of ip iptables, so if it is to occupy mail clients Outlook 2010 and whenever a customer opens asks me to accept a certificate of mail do not know if it has to do that, but I would be very strange that cause to block the ip, even their homes the blocks, you could help me ???, Greetings !!!

4

Re: Problems with iptables , blocks IP's validity of my mail users.

Check which iptables chain the client IP address was blocked in. for example, chain 'f2b-roundcube' means the block was triggered by Roundcube log - the client was using Roundcube and raised some errors.

Then check log file to understand what the errors are and think about why it happened.

5

Re: Problems with iptables , blocks IP's validity of my mail users.

where I find the log roundcube ?, already look but can not find, greetings.

6

Re: Problems with iptables , blocks IP's validity of my mail users.

FYI: http://www.iredmail.org/docs/file.locat … ndcube-log