Sending mail through an external ISP

[mszych]

I need to change form of sending email with zimbra. Now zimbra server is on public IP address in DMZ, but now i need to change network configuration to send all email trafic via ISP.
I was change server to a private IP and change the MX to set on my ISP.
In global settings in MTA tabs i was set in external MTA delivery my ISP, in server settings i made the same things.
Is that correct settings, should i do something more?
How i can check that all email go only via ISP
I will be grateful with any help

[bonge]

use smarthost

Code: Select all

echo relay.xxxx.com postmaster@xxxx.com:password > /opt/zimbra/conf/relay_password
postmap /opt/zimbra/conf/relay_password
postmap -q relay.xxxx.com /opt/zimbra/conf/relay_password
zmprov ms `zmhostname` zimbraMtaSmtpSaslPasswordMaps lmdb:/opt/zimbra/conf/relay_password
zmprov ms `zmhostname` zimbraMtaSmtpSaslAuthEnable yes
zmprov ms `zmhostname` zimbraMtaSmtpCnameOverridesServername no
zmprov ms `zmhostname` zimbraMtaSmtpTlsSecurityLevel may
zmprov ms `zmhostname` zimbraMtaSmtpSaslSecurityOptions noanonymous
zmprov ms `zmhostname` zimbraMtaRelayHost relay.xxxx.com:587

[mszych]

I set command that You send me, i was only changed relay.xxxx.com to my ISP name and zimbra postmaster password
now when i try to send email i got message host said: 550 Relay access denied (in reply to RCPT TO command)
My ISP is sophos devices, i set there Authenticate Device with Smarthost and set user and password zimbra postmaster
I'm shure that the password is ok
What should i check
Where in zimbra i can check that the smartost was configured properly

[mszych]

After configure smart host in my ISP i see email but i got an information from zimbra server
host 127.0.0.1[127.0.0.1] said: 554 5.4.0 id=03981-05 - Rejected by next-hop MTA on relaying, from MTA(smtp:[127.0.0.1]:10025): 554 5.4.0 Error: too many hops (in reply to end of DATA command)

in zimbra.log i have:

Code: Select all

 postfix/smtpd[27970]: Anonymous TLS connection established from unknown[192.168.*.*]: TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)
 saslauthd[4557]: zmauth: authenticating against elected url 'https://zimbra.server.com:7073/service/admin/soap/' ...
 slapd[1342]: slap_queue_csn: queueing 0xea149c0 20180521085250.067969Z#000000#000#000000
 slapd[1342]: slap_graduate_commit_csn: removing 0xea149c0 20180521085250.067969Z#000000#000#000000
 saslauthd[4557]: zmpost: url='https://zimbra.server.com:7073/service/admin/soap/' returned buffer->data='<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope"><soap:Header><context xmlns$
 saslauthd[4557]: auth_zimbra: smarthost auth OK
 postfix/smtpd[27970]: NOQUEUE: filter: RCPT from unknown[192.168.*.*]: <admin@zimbra.server.com>: Sender address triggers FILTER smtp-amavis:[127.0.0.1]:10026; from=<admin@zimbra.server.com> to=<admin@externalserver.com$
 postfix/smtpd[27970]: 14EE43422D6: client=unknown[192.168.*.*], sasl_method=PLAIN, sasl_username=smarthost
 postfix/cleanup[27247]: 14EE43422D6: message-id=<9d261239-9623-0bb6-5a6c-3f86155c0715@ok.pcz.pl>
 postfix/qmgr[16861]: 14EE43422D6: from=<admin@zimbra.server.com>, size=10021, nrcpt=1 (queue active)
 postfix/smtpd[27970]: disconnect from unknown[192.168.*.*] ehlo=2 starttls=1 auth=1 mail=1 rcpt=1 data=1 commands=7
 amavis[4174]: (04174-17) ESMTP [127.0.0.1]:10026 /opt/zimbra/data/amavisd/tmp/amavis-20180521T074700-04174-ktPmEZM3: <admin@zimbra.server.com> -> <admin@externalserver.com> Received: from zimbra.server.com ([1$
 amavis[4174]: (04174-17) Checking: rCyAB3LyJVkG ORIGINATING/MYNETS [192.168.*.*] <admin@zimbra.server.com> -> <admin@externalserver.com>
 postfix/dkimmilter/smtpd[27250]: connect from localhost.localdomain[127.0.0.1]
 postfix/dkimmilter/smtpd[27250]: 3ADF73422D7: client=localhost.localdomain[127.0.0.1]
 postfix/cleanup[27247]: 3ADF73422D7: message-id=<9d261239-9623-0bb6-5a6c-3f86155c0715@ok.pcz.pl>
 opendkim[4511]: 3ADF73422D7: no signing table match for 'admin@zimbra.server.com'
 postfix/qmgr[16861]: 3ADF73422D7: from=<admin@zimbra.server.com>, size=10507, nrcpt=1 (queue active)
 postfix/dkimmilter/smtpd[27250]: disconnect from localhost.localdomain[127.0.0.1] ehlo=1 mail=1 rcpt=1 data=1 quit=1 commands=5
 amavis[4174]: (04174-17) rCyAB3LyJVkG FWD from <admin@zimbra.server.com> -> <admin@externalserver.com>, BODY=7BIT 250 2.0.0 from MTA(smtp:[127.0.0.1]:10030): 250 2.0.0 Ok: queued as 3ADF73422D7
 amavis[4176]: (04176-17) ESMTP [127.0.0.1]:10032 /opt/zimbra/data/amavisd/tmp/amavis-20180521T074700-04176-Fvhs360k: <admin@zimbra.server.com> -> <admin@externalserver.com> SIZE=10507 Received: from p.wimii$
 amavis[4174]: (04174-17) Passed CLEAN {RelayedOutbound}, ORIGINATING/MYNETS LOCAL [192.168.*.*]:53693 <admin@zimbra.server.com> -> <admin@externalserver.com>, Queue-ID: 14EE43422D6, Message-ID: <9d26123$
 postfix/smtp[27252]: 14EE43422D6: to=<admin@externalserver.com>, relay=127.0.0.1[127.0.0.1]:10026, delay=0.31, delays=0.07/0/0/0.24, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10030$
 postfix/qmgr[16861]: 14EE43422D6: removed
 amavis[4176]: (04176-17) Checking: H391_Uf5sZY7 ORIGINATING_POST/MYNETS [127.0.0.1] <admin@zimbra.server.com> -> <admin@externalserver.com>
 postfix/amavisd/smtpd[27253]: connect from localhost.localdomain[127.0.0.1]
 postfix/amavisd/smtpd[27253]: 9CE403422D6: client=localhost.localdomain[127.0.0.1]
 postfix/cleanup[27247]: warning: 9CE403422D6: message rejected: hopcount exceeded
 postfix/amavisd/smtpd[27253]: disconnect from localhost.localdomain[127.0.0.1] ehlo=1 mail=1 rcpt=1 data=0/1 quit=1 commands=4/5
 amavis[4176]: (04176-17) Negative SMTP response to data-dot (<admin@externalserver.com>): 554 5.4.0 Error: too many hops, dt: 0.2 ms

Smarthost looks good configured, what else in zimbra should i change