THANK YOU VLADIMIR-SERVER, thank you for the tip, yes I do everything from scratch after I have post here on the forum and works good, smtp relay is my problem right now because a snakeoil.pem file that is not find. I will try to use 456 for SSL + WP SMTP + SSL RELAY + MAIL SERVER.

Thank you really much for the effort of helping me! I reinstalled again the aaPanel, I have created mail + site + domains + ssl + roundcube like I saw on this forum, works great even roundcube with new settings.

Now I try to make the path in Postfix to check the correct path in order for myself to use SMTP RELAY and to bind the SMTP relay to the SMTP WORDPRESS PLUGIN that are on the same server with aaPanel, this is what all I need to do.

When I use roundcube it works perfect and sending to the inbox, but when I open the smtp relay from aaPanel it not send because postfix try to autentificate to a .pem file that is not there πŸ™‚) for some reason, could be a bug I not know.

This is my postfix log: Apr 22 21:19:28 vmi1812900 postfix/smtps/smtpd[10567]: lost connection after CONNECT from unknown[94.207.106.37]
Apr 22 21:19:28 vmi1812900 postfix/smtps/smtpd[10567]: disconnect from unknown[94.207.106.37] commands=0/0
Apr 22 21:19:38 vmi1812900 postfix/smtps/smtpd[10567]: connect from unknown[211.228.113.27]
Apr 22 21:19:39 vmi1812900 postfix/smtps/smtpd[10567]: SSL_accept error from unknown[211.228.113.27]: -1
Apr 22 21:19:39 vmi1812900 postfix/smtps/smtpd[10567]: warning: TLS library problem: error:1417A0C1:SSL routines:tls_post_process_client_hello:no shared cipher:../ssl/statem/statem_srvr.c:2283:
Apr 22 21:19:39 vmi1812900 postfix/smtps/smtpd[10567]: lost connection after CONNECT from unknown[211.228.113.27]
Apr 22 21:19:39 vmi1812900 postfix/smtps/smtpd[10567]: disconnect from unknown[211.228.113.27] commands=0/0
Apr 22 21:19:51 vmi1812900 dovecot: imap-login: Login: user=contact@alinaroman.ro, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=10573, secured, session=<Wi1PUrQWCNF/AAAB>
Apr 22 21:19:51 vmi1812900 dovecot: imap(contact@alinaroman.ro)<10573><Wi1PUrQWCNF/AAAB>: Logged out in=173 out=1089 deleted=0 expunged=0 trashed=0 hdr_count=0 hdr_bytes=0 body_count=0 body_bytes=0
Apr 22 21:20:08 vmi1812900 postfix/smtpd[10576]: warning: /etc/postfix/main.cf, line 69: overriding earlier entry: relayhost=
Apr 22 21:20:08 vmi1812900 postfix/submission/smtpd[10576]: warning: error opening chain file: /etc/ssl/private/ssl-cert-snakeoil.key: No such file or directory
Apr 22 21:20:08 vmi1812900 postfix/submission/smtpd[10576]: connect from unknown[109.206.237.176]
Apr 22 21:20:08 vmi1812900 postfix/submission/smtpd[10576]: disconnect from unknown[109.206.237.176] ehlo=1 auth=0/1 rset=0/1 quit=1 commands=2/4
Apr 22 21:21:39 vmi1812900 dovecot: imap-login: Login: user=contact@alinaroman.ro, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=10588, secured, session=<dwvBWLQWouJ/AAAB>
Apr 22 21:21:39 vmi1812900 dovecot: imap(contact@alinaroman.ro)<10588><dwvBWLQWouJ/AAAB>: Logged out in=91 out=950 deleted=0 expunged=0 trashed=0 hdr_count=0 hdr_bytes=0 body_count=0 body_bytes=0

    aaP_bobmarley4777 : This what I have in the folder that is checked by postfix for the pem file: root@vmi1812900:/etc/ssl/private# ls
    my-mail-server.key pure-ftpd-dhparams.pem pure-ftpd.pem
    root@vmi1812900:/etc/ssl/private#

      I have do what Kern do, thank you Kern, the openssl s_client -connect mail.135mailtest.com:587 -starttls smtp worked good an it output for me the key test.

      Now I setup the SMTP from Wordpress also the SMTP RELAY on port 587 TLS and I try to see if all work good, if not, I might output here the log of postfix.

      My logs after I send a test email from roundcube with smtp relay open looks like this: Action: failed
      Status: 5.4.0
      Remote-MTA: dns; mail.alinaroman.ro
      Diagnostic-Code: smtp; 554 5.4.0 Error: too many hops

      My mail log looks like this: Apr 22 23:16:59 vmi1812900 postfix/anvil[2928]: statistics: max cache size 2 at Apr 22 23:13:39
      Apr 22 23:17:39 vmi1812900 dovecot: imap-login: Login: user=contact@alinaroman.ro, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=3022, secured, session=<ixGa97UW3s9/AAAB>
      Apr 22 23:17:39 vmi1812900 dovecot: imap(contact@alinaroman.ro)<3022><ixGa97UW3s9/AAAB>: Logged out in=91 out=950 deleted=0 expunged=0 trashed=0 hdr_count=0 hdr_bytes=0 body_count=0 body_bytes=0
      Apr 22 23:18:39 vmi1812900 dovecot: imap-login: Login: user=contact@alinaroman.ro, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=3027, secured, session=<U8ks+7UWbOl/AAAB>
      Apr 22 23:18:39 vmi1812900 dovecot: imap(contact@alinaroman.ro)<3027><U8ks+7UWbOl/AAAB>: Logged out in=91 out=950 deleted=0 expunged=0 trashed=0 hdr_count=0 hdr_bytes=0 body_count=0 body_bytes=0
      Apr 22 23:19:07 vmi1812900 postfix/smtpd[3028]: warning: /etc/postfix/main.cf, line 69: overriding earlier entry: relayhost=
      Apr 22 23:19:07 vmi1812900 postfix/proxymap[3029]: warning: /etc/postfix/main.cf, line 69: overriding earlier entry: relayhost=
      Apr 22 23:19:07 vmi1812900 postfix/smtpd[3028]: warning: error opening chain file: /www/server/panel/plugin/mail_sys/cert/alinaroman.ro//www/server/panel/plugin/mail_sys/cert/alinaroman.ro/fullchain.pem: No such file or directory
      Apr 22 23:19:07 vmi1812900 postfix/smtpd[3028]: connect from unknown[109.206.237.176]
      Apr 22 23:19:07 vmi1812900 postfix/anvil[3030]: warning: /etc/postfix/main.cf, line 69: overriding earlier entry: relayhost=
      Apr 22 23:19:09 vmi1812900 postfix/smtpd[3028]: warning: unknown[109.206.237.176]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
      Apr 22 23:19:09 vmi1812900 postfix/smtpd[3028]: disconnect from unknown[109.206.237.176] ehlo=1 auth=0/1 quit=1 commands=2/3
      Apr 22 23:19:39 vmi1812900 dovecot: imap-login: Login: user=contact@alinaroman.ro, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=3034, secured, session=<BdTA/rUWlql/AAAB>
      Apr 22 23:19:39 vmi1812900 dovecot: imap(contact@alinaroman.ro)<3034><BdTA/rUWlql/AAAB>: Logged out in=91 out=950 deleted=0 expunged=0 trashed=0 hdr_count=0 hdr_bytes=0 body_count=0 body_bytes=0
      Apr 22 23:20:39 vmi1812900 dovecot: imap-login: Login: user=contact@alinaroman.ro, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=3045, secured, session=<sbZSArYWgqR/AAAB>
      Apr 22 23:20:39 vmi1812900 dovecot: imap(contact@alinaroman.ro)<3045><sbZSArYWgqR/AAAB>: Logged out in=91 out=950 deleted=0 expunged=0 trashed=0 hdr_count=0 hdr_bytes=0 body_count=0 body_bytes=0
      Apr 22 23:21:02 vmi1812900 dovecot: imap-login: Login: user=contact@alinaroman.ro, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=3047, secured, session=<DFK0A7YWIq1/AAAB>
      Apr 22 23:21:02 vmi1812900 dovecot: imap(contact@alinaroman.ro)<3047><DFK0A7YWIq1/AAAB>: Logged out in=91 out=950 deleted=0 expunged=0 trashed=0 hdr_count=0 hdr_bytes=0 body_count=0 body_bytes=0

        I think my server is loop to many times because I use all eggs into the same server, any tips? I have no idea how to fix this right not, I need to check up the internet.

        I have found something, my config file of postfix is not good I think because "mydestination" is empty, I think should be localhost or 127.0.0.1, maybe Kern knows something about this, I try to check myself on internet how to make it not loop in "walls".

        All my eggs/servers are in same place so I need to configure this to "flow" good.

        -myhostname = vmi1812900.contaboserver.net
        alias_maps = hash:/etc/aliases
        alias_database = hash:/etc/aliases
        myorigin = /etc/mailname
        mydestination =
        relayhost =
        mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
        mailbox_command = procmail -a "$EXTENSION"
        mailbox_size_limit = 0
        recipient_delimiter = +
        inet_interfaces = all

        inet_protocols = all

        After some tweaks, it sends from email1 to email1, looping : 20240423011637.7229B2001B97@vmi1812900.contaboserver.net: stored mail into mailbox 'INBOX'
        Apr 23 03:16:37 vmi1812900 postfix/lmtp[4502]: 7229B2001B97: to=contact@alinaroman.ro, relay=vmi1812900.contaboserver.net[private/dovecot-lmtp], delay=0.04, delays=0/0.01/0.01/0.01, dsn=2.0.0, status=sent (250 2.0.0 contact@alinaroman.ro zo9mHfULJ2aXEQAA46gUhQ Saved)
        Apr 23 03:16:37 vmi1812900 dovecot: lmtp(4503): Disconnect from local: Client has quit the connection (state=READY)
        Apr 23 03:16:37 vmi1812900 postfix/qmgr[4451]: 7229B2001B97: removed

        check the postfix configuration, which can be viewed in the server status
        "mail.135mailtest.com" is replaced with your domain name
        Put:
        smtpd_tls_chain_files=/etc/ssl/private/ssl-cert-snakeoil.key,/etc/ssl/certs/ssl-cert-snakeoil.pem
        Change to:
        smtpd_tls_chain_files = /www/server/panel/plugin/mail_sys/cert/135mailtest.com/privkey.pem,/www/server/panel/plugin/mail_sys/cert/135mailtest.com/fullchain.pem
        Note to replace 135mailtest.com with your domain name.
        Also check /www/server/panel/plugin/mail_sys/cert/135mailtest.com/ for privkey.pem and fullchain.pem files

        aaP_bobmarley4777

          Thank you Kern, I have put the path and it takes it, now I try to check again how is going and I might get back to the forum with my last resolution. Ty

          Here is a video of working roundcube with smtp relay OFF, and after smtp Relay ON my email not send to the gmail inbox.

          What do you Think Kern, have you encounter those kind things, what I should do to fix this to make my smtp relay work on aApanel, any help will be great.

          Video: https://vimeo.com/938043334?share=copy

            Also my server send to gmail to inbox but on yahoo not receive anything

            I need to use port 25 by default for SMTP RELAY or SMTP, where I can change to have 25 the port for my internal email servers and to use 587 for the secured external email traffic?

            SuperTool Beta7

            alinaroman.ro

            mx:alinaroman.ro
            Gmail & Yahoo are now requiring DMARC - Get your's setup with Delivery Center

            Pref Hostname IP Address TTL
            10 mail.alinaroman.ro 62.169.30.22
            Unknown (AS51167) 24 hrs Blacklist Check SMTP Test
            Test Result
            Status Ok DMARC Record Published DMARC Record found
            Status Ok DMARC Policy Not Enabled DMARC Quarantine/Reject policy enabled
            Status Ok DNS Record Published DNS Record found

            220 vmi1812900.contaboserver.net ESMTP Postfix (Ubuntu)
            Test Result
            Status Ok SMTP Reverse DNS Mismatch OK - 62.169.30.22 resolves to vmi1812900.contaboserver.net
            Status Ok SMTP Valid Hostname OK - Reverse DNS is a valid Hostname
            Status Ok SMTP Banner Check OK - Reverse DNS matches SMTP Banner
            Status Ok SMTP TLS OK - Supports TLS.
            Status Ok SMTP Connection Time 0.349 seconds - Good on Connection time
            Status Ok SMTP Open Relay OK - Not an open relay.
            Status Ok SMTP Transaction Time 1.108 seconds - Good on Transaction Time
            Session Transcript:
            Connecting to 62.169.30.22

            220 vmi1812900.contaboserver.net ESMTP Postfix (Ubuntu) [204 ms]
            EHLO keeper-us-east-1d.mxtoolbox.com
            250-vmi1812900.contaboserver.net
            250-PIPELINING
            250-SIZE 102400000
            250-VRFY
            250-ETRN
            250-STARTTLS
            250-AUTH PLAIN LOGIN
            250-ENHANCEDSTATUSCODES
            250-8BITMIME
            250-DSN
            250-SMTPUTF8
            250 CHUNKING [217 ms]
            MAIL FROM:supertool@mxtoolboxsmtpdiag.com
            250 2.1.0 Ok [216 ms]
            RCPT TO:test@mxtoolboxsmtpdiag.com
            554 5.7.1 test@mxtoolboxsmtpdiag.com: Relay access denied [226 ms]

            LookupServer 1788ms

            I'm stucked with this contabo DNS setup, I not know where is the error and why SMTP RELAY when is open not work

            Connect with us: πŸ“¨ Telegram πŸ’¬ Discord Email: support@aapanel.com