Status Check fails after Switching DNS to MiaB Server

Help with Setup/Upgrade
1

Hello everybody,
During the installation I used an external DNS server and made all entries manually. There was no problem.

But I have now switched the DNS server to my MiaB server and now I get the error message during the status check: Something went wrong, sorry.

When I run the status check via SSH, I get the following message:

> ✓  SSH disallows password-based login.
> ✓  System software is up to date.
> ✓  Mail-in-a-Box is up to date. You are running version v0.51.
> ✓  System administrator address exists as a mail alias. [administrator@mail.toffanello-it.com ↦ me@toffanello-it.com]
> ✓  The disk has 102.86 GB space remaining.
> ✓  System memory is 80% free.
> 
> Network
> =======
> ✓  Firewall is active.
> ✓  Outbound mail (SMTP port 25) is not blocked.
> ✖  The IP address of this machine 178.13.248.13 is listed in the Spamhaus Block List (code 127.0.0.11), which may prevent recipients from receiving your email.
>    See http://www.spamhaus.org/query/ip/178.13.248.13.
> multiprocessing.pool.RemoteTraceback:
> """
> Traceback (most recent call last):
>   File "/usr/lib/python3.6/multiprocessing/pool.py", line 119, in worker
>     result = (True, func(*args, **kwds))
>   File "/usr/lib/python3.6/multiprocessing/pool.py", line 47, in starmapstar
>     return list(itertools.starmap(args[0], args[1]))
>   File "./status_checks.py", line 367, in run_domain_checks_on_domain
>     check_mail_domain(domain, env, output)
>   File "./status_checks.py", line 625, in check_mail_domain
>     mxhost = mx.split('; ')[0].split(' ')[1]
> IndexError: list index out of range
> """
> 
> The above exception was the direct cause of the following exception:
> 
> Traceback (most recent call last):
>   File "./status_checks.py", line 1027, in <module>
>     run_checks(False, env, ConsoleOutput(), pool)
>   File "./status_checks.py", line 66, in run_checks
>     run_domain_checks(rounded_values, env, output, pool)
>   File "./status_checks.py", line 335, in run_domain_checks
>     ret = pool.starmap(run_domain_checks_on_domain, args, chunksize=1)
>   File "/usr/lib/python3.6/multiprocessing/pool.py", line 274, in starmap
>     return self._map_async(func, iterable, starmapstar, chunksize).get()
>   File "/usr/lib/python3.6/multiprocessing/pool.py", line 644, in get
>     raise self._value
> IndexError: list index out of range

can you help me to solve this problem?

2

IMHO, you need to solve the underlying problem causing this problem.

Your MiaB server’s IP is listed in several blacklists. Sadly, one of them is used by many email providers. You are very unlikely to be able to send outbound email to several providers.

You’re going to need to request removal from all of the blacklists you are on or get a new IP.

The reality though is that someone before you assigned this IP address was sending spam. You need to start by getting yourself removed from Spamhaus.

https://www.spamhaus.org/query/ip/178.13.248.13

3

Hello alento,

The problem with the blacklist is known and I’m already working on it. The bigger problem, however, is that the status check under System Status does not work since I switched the primary name server of my domain to my MiaB server.

Do you have any idea why that could be?
Because if I use an external DNS server (with manual DNS entries) the status check works without any problems.

4

It appears to be a bug which is manifesting itself when there is a positive hit on Spamhaus. Hence, my suggestion to rectify the underlying problem. I would urge you to post this on the projects Github page as the issue would require positive confirmation by the dev team.

Let me ask you, when you were using External DNS, did you get the positive hit on Spamhaus?

There really should be NO reason for there to be any difference whether you use the MiaB for DNS or not, as there are no changes between when you are using it or when you are using External DNS. Do you have any custom DNS entries that you added to the MiaB when you switched?

5

Upon checking Github there is this issue which may or may not be related.

Are you serving any other domains besides the base domain?

6

no, I don’t have any user-defined entries in the dns on the MiaB server

Yes, but the status check works when using the external DNS. When using the internal DNS, I always get the error message Error: Something went wrong, sorry.

When I switch back to external DNS, the status check works again.
So I don’t think it’s related to the positive hit at Spamhaus.

That’s the confusing thing.

7

You missed this question … are you serving email for any other domains? @Syc0nd

8

No, but I would like to introduce that later after the server is running properly.

9

Is this working now?

10

No
do you have the same problem ?

11

When I use the DNS server on the MiaB server I noticed that the following error message is also under the SSL certificates:

The domain name does not resolve to this machine: [timeout] (A)

Then I did a DNS check but the A entry is defined. Pinging and receiving mail is also possible.

Does somebody still have an idea ?
Or should I just use the external DNS?

13

Current status check via SSH:

Network
=======
✓  Firewall is active.
✓  Outbound mail (SMTP port 25) is not blocked.
✓  IP address is not blacklisted by zen.spamhaus.org.
multiprocessing.pool.RemoteTraceback:
"""
Traceback (most recent call last):
  File "/usr/lib/python3.6/multiprocessing/pool.py", line 119, in worker
    result = (True, func(*args, **kwds))
  File "/usr/lib/python3.6/multiprocessing/pool.py", line 47, in starmapstar
    return list(itertools.starmap(args[0], args[1]))
  File "./status_checks.py", line 367, in run_domain_checks_on_domain
    check_mail_domain(domain, env, output)
  File "./status_checks.py", line 625, in check_mail_domain
    mxhost = mx.split('; ')[0].split(' ')[1]
IndexError: list index out of range
"""

The above exception was the direct cause of the following exception:

Traceback (most recent call last):
  File "./status_checks.py", line 1027, in <module>
    run_checks(False, env, ConsoleOutput(), pool)
  File "./status_checks.py", line 66, in run_checks
    run_domain_checks(rounded_values, env, output, pool)
  File "./status_checks.py", line 335, in run_domain_checks
    ret = pool.starmap(run_domain_checks_on_domain, args, chunksize=1)
  File "/usr/lib/python3.6/multiprocessing/pool.py", line 274, in starmap
    return self._map_async(func, iterable, starmapstar, chunksize).get()
  File "/usr/lib/python3.6/multiprocessing/pool.py", line 644, in get
    raise self._value
IndexError: list index out of range
14

Yes, I cannot find your MX records. Maybe want to try running mailinabox/management/dns_update.py

15

https://dnschecker.org/ Shows me all MX records. What did you test them with?

16

I digged against your server.

; <<>> DiG 9.10.6 <<>> @ns1.mail.toffanello-it.com toffanello-it.com MX
; (1 server found)
;; global options: +cmd
;; connection timed out; no servers could be reached

It responded for other records but not MX.

However, it’s working now. Can you try to see if the status_check.py still giving u problem? I have reasons to believe your server wasn’t resolving MX properly before that, causing the error.

; <<>> DiG 9.10.6 <<>> @ns1.mail.toffanello-it.com toffanello-it.com MX
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 2983
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 4
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;toffanello-it.com.             IN      MX

;; ANSWER SECTION:
toffanello-it.com.      1800    IN      MX      10 mail.toffanello-it.com.

;; AUTHORITY SECTION:
toffanello-it.com.      1800    IN      NS      ns1.mail.toffanello-it.com.
toffanello-it.com.      1800    IN      NS      ns2.mail.toffanello-it.com.

;; ADDITIONAL SECTION:
mail.toffanello-it.com. 1800    IN      A       178.13.248.13
ns1.mail.toffanello-it.com. 1800 IN     A       178.13.248.13
ns2.mail.toffanello-it.com. 1800 IN     A       178.13.248.13
17

I still have the same problem with the status check.

the only thing that has been added is:

✖ Public DNS (nsd4) is not running (port 53).
The ports are open

the output of sudo systemctl status nsd

● nsd.service - Name Server Daemon
   Loaded: loaded (/lib/systemd/system/nsd.service; enabled; vendor preset: enabled)
   Active: active (running) since Sat 2021-01-16 00:21:57 CET; 8min ago
 Main PID: 836 (nsd)
    Tasks: 3 (limit: 4338)
   CGroup: /system.slice/nsd.service
           ├─836 /usr/sbin/nsd -d
           ├─874 /usr/sbin/nsd -d
           └─968 /usr/sbin/nsd -d

Jan 16 00:21:57 mail.toffanello-it.com systemd[1]: Started Name Server Daemon.

the output of sudo systemctl status bind9:

● bind9.service - BIND Domain Name Server
   Loaded: loaded (/lib/systemd/system/bind9.service; enabled; vendor preset: enabled)
   Active: active (running) since Sat 2021-01-16 00:21:57 CET; 9min ago
     Docs: man:named(8)
 Main PID: 867 (named)
    Tasks: 5 (limit: 4338)
   CGroup: /system.slice/bind9.service
           └─867 /usr/sbin/named -f -u bind -4

Jan 16 00:24:55 mail.toffanello-it.com named[867]: checkhints: l.root-servers.net/AAAA (2001:500:3::42) extra record in
Jan 16 00:28:37 mail.toffanello-it.com named[867]: received control channel command 'flush'
Jan 16 00:28:37 mail.toffanello-it.com named[867]: flushing caches in all views succeeded
Jan 16 00:28:38 mail.toffanello-it.com named[867]: resolver priming query complete
Jan 16 00:28:38 mail.toffanello-it.com named[867]: checkhints: b.root-servers.net/A (199.9.14.201) missing from hints
Jan 16 00:28:38 mail.toffanello-it.com named[867]: checkhints: b.root-servers.net/A (192.228.79.201) extra record in hin
Jan 16 00:28:38 mail.toffanello-it.com named[867]: checkhints: b.root-servers.net/AAAA (2001:500:200::b) missing from hi
Jan 16 00:28:38 mail.toffanello-it.com named[867]: checkhints: b.root-servers.net/AAAA (2001:500:84::b) extra record in
Jan 16 00:28:38 mail.toffanello-it.com named[867]: checkhints: l.root-servers.net/AAAA (2001:500:9f::42) missing from hi
Jan 16 00:28:38 mail.toffanello-it.com named[867]: checkhints: l.root-servers.net/AAAA (2001:500:3::42) extra record in
lines 1-19/19 (END)
19

can be closed.

I use the external DNS and everything works as I imagine it to be.
anyway thanks for the help =)

20

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.