Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Pfsense/Mailserver issue

    Scheduled Pinned Locked Moved General pfSense Questions
    16 Posts 3 Posters 1.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • ?
      Guest
      last edited by

      Yes, so for example, mail.mydomain.com would be host = mail, domain = mydomain.com and the IP address is the LAN IP address.

      1 Reply Last reply Reply Quote 0
      • E
        Edbsmed
        last edited by

        Hello.

        Did not make any positive outcome.

        Something else to do ?

        /edbsmed

        1 Reply Last reply Reply Quote 0
        • ?
          Guest
          last edited by

          What IP address to you get back if you ping the fqdn of the mail server from a LAN client?

          1 Reply Last reply Reply Quote 0
          • E
            Edbsmed
            last edited by

            Hello

            I get my  wan static ip address

            /edbsmed

            1 Reply Last reply Reply Quote 0
            • ?
              Guest
              last edited by

              Ok, so if your using a Windows pc to test this can you issue the command ipconfig /flushdns before trying the ping. If you still don't get the local IP back can you tell me what DNS servers the client is using, it should only be using pfsense.

              1 Reply Last reply Reply Quote 0
              • E
                Edbsmed
                last edited by

                Hello

                After flushing I still get wan ip address.

                Ipconfig /all says 8.8.8.8 and 8.8.4.4 for DNS
                Should I remove these under system/generel setup ?

                /edbsmed

                1 Reply Last reply Reply Quote 0
                • ?
                  Guest
                  last edited by

                  In pfsense, in  services-> DHCP -> LAN, are there any entries there for 8.8.8.8 etc, if so remove them and restart pfsense. Wait for it to restart then issue an ifconfig /renew and an ifconfig /flushdns on your client, the try the ping again

                  1 Reply Last reply Reply Quote 0
                  • E
                    Edbsmed
                    last edited by

                    Hello.

                    No luck yet.

                    I thinking… Did I do the override correct.

                    On Pfsense I forwarding port 110,25,143,587 to ip 192.168.0.10.
                    Server on 192.168.0.10 have a windows machinename.

                    I use windows machinename for "host" and ip 192.168.0.10 for ip and smartermail is configured with FQDN that I use for "DOMAIN"

                    /edbsmed

                    1 Reply Last reply Reply Quote 0
                    • GertjanG
                      Gertjan
                      last edited by

                      @Edbsmed:

                      …
                      On Pfsense I forwarding port 110,25,143,587 to ip 192.168.0.10.

                      If these ports should be reachable from the Internet, ok.

                      When you ping from any devie on your LAN to this FQDN that you have overriden, you should see the reply (ay least - it should resolve to) the IP that you assigned to the override.

                      For example, I have two 'internal' interfaces : LAN (192.168.1.0/24) and OPT1 (192.168.2.0/24).
                      I add this override in the DNS Resolver : portal.portal.brit-hotel-fumel.net with IP 192.168.2.2 (which is a device the OPT interface / network).

                      [2.4.2-RELEASE][admin@pfsense.brit-hotel-fumel.net]/root: ping portal.brit-hotel-fumel.net
                      PING portal.brit-hotel-fumel.net (192.168.2.2): 56 data bytes
                      64 bytes from 192.168.2.2: icmp_seq=0 ttl=64 time=0.122 ms
                      64 bytes from 192.168.2.2: icmp_seq=1 ttl=64 time=0.043 ms
                      64 bytes from 192.168.2.2: icmp_seq=2 ttl=64 time=0.045 ms
                      ^C
                      –- portal.brit-hotel-fumel.net ping statistics ---
                      3 packets transmitted, 3 packets received, 0.0% packet loss
                      round-trip min/avg/max/stddev = 0.043/0.070/0.122/0.037 ms

                      Of course, I have the needed firewall rules on the OPT1 interface.

                      Btw : you could also a the static DHCP (a good thing when a device is a server).
                      Add a static lease in the DHCP (pfSEnse) server so your mail server always obtains the same IPv4. Give this server also a name, like "mailserver".
                      Have the static lease being registered into the pfSense DNS Resolver.
                      Let's say the domain of your pfSEnse box is domain.net

                      Now, when you ping "mailserver.domaie.net" it should obtain the IP of this server.

                      Btw : You use the DNS Resolver, right, not the Forwarder .....

                      No "help me" PM's please. Use the forum, the community will thank you.
                      Edit : and where are the logs ??

                      1 Reply Last reply Reply Quote 0
                      • ?
                        Guest
                        last edited by

                        @Edbsmed:

                        Hello.

                        No luck yet.

                        I thinking… Did I do the override correct.

                        On Pfsense I forwarding port 110,25,143,587 to ip 192.168.0.10.
                        Server on 192.168.0.10 have a windows machinename.

                        I use windows machinename for "host" and ip 192.168.0.10 for ip and smartermail is configured with FQDN that I use for "DOMAIN"

                        /edbsmed

                        Forget the forwarding for the moment. Firstly you need to able for your LAN client to correctly resolve the fqdn of the mail server as a LAN IP not the wan IP.

                        Now, in the DNS resolver, the name you enter is the first part of the fqdn of the wan fqdn, so for example if the fqdn is smartmail.mydomain.com, then you  enter 'smartmail' as the host, the rest of the fqdn you enter into domain, the IP is the LAN IP of the server, in your case 192.168.0.10.

                        1 Reply Last reply Reply Quote 0
                        • E
                          Edbsmed
                          last edited by

                          Hello.

                          I have one pc that had the smoothwall as Router/Firewall/GW.
                          My Android phone mailclient is configured with mydomain.com as pop3 port 587.
                          3G/4G/Wifi did work perfect.

                          My pc mailclient (Thunderbird) configured with mydomain.com as pop3 port 587 did work perfect.

                          Taking down the smoothwall pc, setting up my cisco router for temporaly use.
                          Everything runs perfect as on the smoothwall.

                          Install Pfsense on the old smoothwall pc.
                          Setting up portforward as you can see on previus attached pictures.
                          My Android phone mailclient is still configured with mydomain.com as pop3 port 587
                          On 3G/4G mail working perfect. ( Routing thru Pfsense to 192.168.0.10 is working)
                          On Wifi (private network) it is not working anymore.

                          My pc mailclient (thunderbird) configured with mydomain.com as pop3 port 587 is NOT working anymore.
                          My pc mailclient (thunderbird) configured with 192.168.0.10 (private network) as pop3 port 587 is working.

                          My mailserver is installed on 192.168.0.10. This is a static ip. Configured in Pfsense DHCP whit mac/ip.

                          One device working via internet and not on private network.
                          One device working via private network and not via internet
                          But why is it changing, as a result af installing Pfsense

                          /edbsmed

                          1 Reply Last reply Reply Quote 0
                          • E
                            Edbsmed
                            last edited by

                            Hello.

                            Aha…..
                            If I ping mydomain.com i recive wan ip.
                            If I ping machine.mydomain.com i recive 192.168.0.10

                            that should be okay

                            /edbsmed

                            1 Reply Last reply Reply Quote 0
                            • GertjanG
                              Gertjan
                              last edited by

                              That should be ok.
                              Use "machine.mydomain.com" in your mail client and you'll be fine from the 'inside'.

                              Your domain registrar should also contain "machine.mydomain.com" and point to your WAN IP, where you forward your mail ports to your "machine".

                              No "help me" PM's please. Use the forum, the community will thank you.
                              Edit : and where are the logs ??

                              1 Reply Last reply Reply Quote 0
                              • First post
                                Last post
                              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.