SOLVED SMTP server could not receive issue

Samet Chan · Jul 15, 2018

I've tested lost password after doesn't get receive email. I've checked many error emails.

Code:

2018-07-16 02:08:54 SMTP connection from [IPHIDDEN]:41530 (TCP/IP connection count = 1)
2018-07-16 02:08:54 1fer4Q-000503-Uk <= [email protected] H=(localhost) [IPHIDDEN]:41530 P=esmtpsa X=TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128 CV=no A=dovecot_login:[email protected] S=4249 [email protected] T="Forum - DKS Password Reset Request" for [email protected]
2018-07-16 02:08:54 cwd=/var/spool/exim 3 args: /usr/sbin/exim -Mc 1fer4Q-000503-Uk
2018-07-16 02:08:54 SMTP connection from (localhost) [IPHIDDEN]:41530 closed by QUIT
2018-07-16 02:08:55 1fer4Q-000503-Uk Sender identification U=username D=domain.net [email protected]
2018-07-16 02:08:55 1fer4Q-000503-Uk SMTP connection outbound 1531699735 1fer4Q-000503-Uk domain.net [email protected]

Jcats · Jul 15, 2018

That doesn't show everything, or the email is still sitting in the queue.

Code:

grep 1fer4Q-000503-Uk /var/log/exim_mainlog

Samet Chan · Jul 15, 2018

Jcats said:
That doesn't show everything, or the email is still sitting in the queue.

Code:

grep 1fer4Q-000503-Uk /var/log/exim_mainlog

Here,

Code:

2018-07-16 02:08:54 1fer4Q-000503-Uk <= [email protected] H=(localhost) [IPHIDDEN]:41530 P=esmtpsa X=TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128 CV=no A=dovecot_login:[email protected] S=4249 [email protected] T="Forum - DKS Password Reset Request" for [email protected]
2018-07-16 02:08:54 cwd=/var/spool/exim 3 args: /usr/sbin/exim -Mc 1fer4Q-000503-Uk
2018-07-16 02:08:55 1fer4Q-000503-Uk Sender identification U=someusr D=domain.net [email protected]
2018-07-16 02:08:55 1fer4Q-000503-Uk SMTP connection outbound 1531699735 1fer4Q-000503-Uk domain.net [email protected]
2018-07-16 02:08:55 1fer4Q-000503-Uk == [email protected] R=dkim_lookuphost T=dkim_remote_smtp defer (-53): retry time not reached for any host for 'gmail.com'
2018-07-16 03:01:59 1fer4Q-000503-Uk Sender identification U=darks0ftw4r3 D=domain.net [email protected]
2018-07-16 03:01:59 1fer4Q-000503-Uk == [email protected] R=dkim_lookuphost T=dkim_remote_smtp defer (-53): retry time not reached for any host for 'gmail.com'

Jcats · Jul 15, 2018

Not helping.

Can you try to force send it and then post logs again:

Code:

exim -M 1fer4Q-000503-Uk

cPanelMichael · Jul 16, 2018

Samet Chan said:
2018-07-16 03:01:59 1fer4Q-000503-Uk == [email protected] R=dkim_lookuphost T=dkim_remote_smtp defer (-53): retry time not reached for any host for 'gmail.com'

Hello @Samet Chan,

Can you check to verify if this relates to the issue noted on the thread linked below?

In Progress - [CPANEL-20545] Exim sending email (-53) retry time not reached for any host

Thank you.

Samet Chan · Jul 18, 2018

cPanelMichael said:
Hello @Samet Chan,

Can you check to verify if this relates to the issue noted on the thread linked below?

In Progress - [CPANEL-20545] Exim sending email (-53) retry time not reached for any host

Thank you.

Doesn't work. It's been 30 minutes nothing show command.

Code:

[[email protected] ~]# telnet alt4.gmail-smtp-in.l.google.com 25
Trying 2607:f8b0:400e:c09::1b...
Connected to alt4.gmail-smtp-in.l.google.com.
Escape character is '^]'.
220 mx.google.com ESMTP s9-v6si3340392pfm.85 - gsmtp

I used 465 for SSL only. It was trying to connect. It's nothing show command also.

cPanelMichael · Jul 18, 2018

Hello @Samet Chan,

Can you confirm the specific steps you took before running the command again? Also, can you use telnet to check with other remote mail servers aside from Google to see if the issue is isolated to their mail servers?

Thank you.

Samet Chan · Jul 18, 2018

cPanelMichael said:
Hello @Samet Chan,

Can you confirm the specific steps you took before running the command again? Also, can you use telnet to check with other remote mail servers aside from Google to see if the issue is isolated to their mail servers?

Thank you.

Here,

Code:

[[email protected] ~]# telnet smtp.gmail.com 465
Trying 2a00:1450:400c:c00::6d...
Connected to smtp.gmail.com.
Escape character is '^]'.
Connection closed by foreign host.

cPanelMichael · Jul 18, 2018

Hello @Samet Chan,

Can you confirm the specific steps/commands you took on your server upon reviewing the thread linked in my earlier response? I'm referring to the manual workaround as opposed to the telnet command.

Thank you.

Samet Chan · Jul 18, 2018

cPanelMichael said:
Hello @locki,

The /etc/mailips file should be automatically populated with domain names that are assigned dedicated IP addresses upon enabling the Send mail from account's dedicated IP address option. Are you sure domain names on your system are assigned dedicated IP addresses? If not, it's normal for the file to remain blank.

Thank you.

I have followed your command and step. It doesn't work.

I've checked error mail logs

Code:

2018-07-18 17:56:00 SMTP connection from [IPHIDDEN]:46226 (TCP/IP connection count = 1)
2018-07-18 17:56:00 1ffoo4-0006sh-IC <= [email protected] H=(localhost) [IPHIDDEN]:46226 P=esmtpsa X=TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128 CV=no A=dovecot_login:[email protected] S=4255 [email protected] T="Confirmaci\363n de cuenta en Domain Tu Foro Gaming requerida" for [email protected]
2018-07-18 17:56:00 SMTP connection from (localhost) [IPHIDDEN]:46226 lost (error: Connection reset by peer) D=0s
2018-07-18 17:56:00 cwd=/var/spool/exim 3 args: /usr/sbin/exim -Mc 1ffoo4-0006sh-IC
2018-07-18 17:56:00 1ffoo4-0006sh-IC Sender identification U=g4m3xlxgtx D=domain.com [email protected]
2018-07-18 17:56:00 1ffoo4-0006sh-IC SMTP connection outbound 1531929360 1ffoo4-0006sh-IC domain.com [email protected]
2018-07-18 17:56:01 1ffoo4-0006sh-IC => [email protected] R=dkim_lookuphost T=dkim_remote_smtp H=gmail-smtp-in.l.google.com [173.194.76.26] X=TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128 CV=yes C="250 2.0.0 OK 1531929361 h12-v6si2872215wre.414 - gsmtp"
2018-07-18 17:56:01 1ffoo4-0006sh-IC Completed
2018-07-18 17:56:01 SMTP connection from [IPHIDDEN]:46234 (TCP/IP connection count = 1)
2018-07-18 17:56:01 1ffoo5-0006sr-9r <= [email protected] H=(localhost) [IPHIDDEN]:46234 P=esmtpsa X=TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128 CV=no A=dovecot_login:[email protected] S=9320 [email protected] T="[PS4] How to Install OMSK on 5.55 OFW - New reply to watched thread" for [email protected]
2018-07-18 17:56:01 SMTP connection from (localhost) [IPHIDDEN]:46234 closed by QUIT
2018-07-18 17:56:01 cwd=/var/spool/exim 3 args: /usr/sbin/exim -Mc 1ffoo5-0006sr-9r
2018-07-18 17:56:01 1ffoo5-0006sr-9r Sender identification U=darks0ftw4r3 D=domain.net [email protected]
2018-07-18 17:56:01 1ffoo5-0006sr-9r SMTP connection outbound 1531929361 1ffoo5-0006sr-9r domain.net [email protected]
2018-07-18 17:56:01 1ffoo5-0006sr-9r H=gmail-smtp-in.l.google.com [173.194.76.26]: SMTP error from remote mail server after end of data: 421-4.7.0 This message does not have authentication information or fails to pass\n421-4.7.0 authentication checks. To best protect our users from spam, the\n421-4.7.0 message has been blocked. Please visit\n421-4.7.0  https://support.google.com/mail/answer/81126#authentication for more\n421 4.7.0 information. i70-v6si1698693wmf.171 - gsmtp
2018-07-18 17:56:02 1ffoo5-0006sr-9r H=alt1.gmail-smtp-in.l.google.com [74.125.205.27]: SMTP error from remote mail server after end of data: 421-4.7.0 This message does not have authentication information or fails to pass\n421-4.7.0 authentication checks. To best protect our users from spam, the\n421-4.7.0 message has been blocked. Please visit\n421-4.7.0  https://support.google.com/mail/answer/81126#authentication for more\n421 4.7.0 information. s68-v6si1387245lfs.376 - gsmtp
2018-07-18 17:56:06 1ffoo5-0006sr-9r H=alt2.gmail-smtp-in.l.google.com [74.125.68.27]: SMTP error from remote mail server after end of data: 421-4.7.0 This message does not have authentication information or fails to pass\n421-4.7.0 authentication checks. To best protect our users from spam, the\n421-4.7.0 message has been blocked. Please visit\n421-4.7.0  https://support.google.com/mail/answer/81126#authentication for more\n421 4.7.0 information. 9-v6si3765348pgu.130 - gsmtp
2018-07-18 17:56:09 1ffoo5-0006sr-9r H=alt3.gmail-smtp-in.l.google.com [108.177.125.27]: SMTP error from remote mail server after end of data: 421-4.7.0 This message does not have authentication information or fails to pass\n421-4.7.0 authentication checks. To best protect our users from spam, the\n421-4.7.0 message has been blocked. Please visit\n421-4.7.0  https://support.google.com/mail/answer/81126#authentication for more\n421 4.7.0 information. x10-v6si3496116plv.1 - gsmtp
2018-07-18 17:56:11 1ffoo5-0006sr-9r => [email protected] R=dkim_lookuphost T=dkim_remote_smtp H=alt4.gmail-smtp-in.l.google.com [74.125.195.26] X=TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128 CV=yes C="250 2.0.0 OK 1531929371 m18-v6si3572757pgg.693 - gsmtp"
2018-07-18 17:56:11 1ffoo5-0006sr-9r Completed

cPanelMichael · Jul 18, 2018

Samet Chan said:
I have followed your command and step. It doesn't work.

Thanks for confirming. This indicates it's unrelated to the issue on that thread.

Samet Chan said:
2018-07-18 17:56:01 1ffoo5-0006sr-9r H=gmail-smtp-in.l.google.com [173.194.76.26]: SMTP error from remote mail server after end of data: 421-4.7.0 This message does not have authentication information or fails to pass\n421-4.7.0 authentication checks. To best protect our users from spam, the\n421-4.7.0 message has been blocked. Please visit\n421-4.7.0 https://support.google.com/mail/answer/81126#authentication for more\n421 4.7.0 information. i70-v6si1698693wmf.171 - gsmtp

This log output shows that Google rejected the message because it detected the message as SPAM or the server is not configured the way Google suggests. Can you review the document below and confirm your server and the sending domain name are meeting the requirements?

How to Keep your Email Out of the Spam Folder - cPanel Knowledge Base - cPanel Documentation

Thank you.

Samet Chan · Jul 18, 2018

cPanelMichael said:
Thanks for confirming. This indicates it's unrelated to the issue on that thread.

This log output shows that Google rejected the message because it detected the message as SPAM or the server is not configured the way Google suggests. Can you review the document below and confirm your server and the sending domain name are meeting the requirements?

How to Keep your Email Out of the Spam Folder - cPanel Knowledge Base - cPanel Documentation

Thank you.

It is my fault wrong a thread to replies.

But this is not helpfully me. Could you tell me to step from DMARC and SPF default on my server add to Cloudflare DNS?

cPanelMichael · Jul 18, 2018

Samet Chan said:
Could you tell me to step from DMARC and SPF default on my server add to Cloudflare DNS?

Hello,

Since the DNS is handled through CloudFlare, you'll need to manually add the SPF, DKIM, and DMARC records through the CloudFlare interface. CloudFlare's support team should be able to help you with this if you encounter any problems with their interface.

Here's the option in cPanel to generate the SPF/DKIM records:

Authentication - Version 72 Documentation - cPanel Documentation

Here's the option in cPanel to generate a DMARC record:

Zone Editor - Version 72 Documentation - cPanel Documentation

For the DKIM record, note the information in the following thread:

SOLVED - Error in DKIM core record

For the DMARC record, note the following thread:

Gmail DMARC Policy Issue

Thank you.

Samet Chan · Jul 18, 2018

cPanelMichael said:
Hello,

Since the DNS is handled through CloudFlare, you'll need to manually add the SPF, DKIM, and DMARC records through the CloudFlare interface. CloudFlare's support team should be able to help you with this if you encounter any problems with their interface.

Here's the option in cPanel to generate the SPF/DKIM records:

Authentication - Version 72 Documentation - cPanel Documentation

Here's the option in cPanel to generate a DMARC record:

Zone Editor - Version 72 Documentation - cPanel Documentation

For the DKIM record, note the information in the following thread:

SOLVED - Error in DKIM core record

For the DMARC record, note the following thread:

Gmail DMARC Policy Issue

Thank you.

Could I Enable DKIM/SPF Globally from WHM?

cPanelMichael · Jul 18, 2018

Samet Chan said:
Could I Enable DKIM/SPF Globally from WHM?

Yes:

Enable DKIM SPF Globally - Version 70 Documentation - cPanel Documentation

However, note that you'll still need to manually insert the generated records at CloudFlare for any domain name that uses CloudFlare to manage it's DNS.

Thank you.

Samet Chan · Jul 18, 2018

cPanelMichael said:
Yes:

Enable DKIM SPF Globally - Version 70 Documentation - cPanel Documentation

However, note that you'll still need to manually insert the generated records at CloudFlare for any domain name that uses CloudFlare to manage it's DNS.

Thank you.

Alright, Which is one correct?
[removed keys]

I'm adding this to Cloudflare DNS in TXT.

cPanelMichael · Jul 18, 2018

Hello,

You'll need to manually view the key file at it's /var/cpanel/domain_keys/public/domain.tld location. EX:

Code:

# cat /var/cpanel/domain_keys/public/domain.tld
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzYrRWuN6UJMtiML7RLYP
LjDY4j/iXrU1h++0/C2k+y40aXd3nAQmL/DRDBgeHUQjbfd0eycUfO9AlrMFMA+4
P6teINmef1Vtm+LVixJ2RfY1KVt2j5+dH1LRVhGzI+ieZukLc3AT7ASXK/XP29Wg
zgBgov2C3UHHpmtVbwXj+JSkbw+zBCUFAhAQSY+zPN5I1o4d5tiBqPb/1z8uxWDQ
xrspZYOv5nWsCY3NidWCMoys9I8bND6W5731mTWc/m4/ttMCSqcdiFxtid/tk/5g
zX7Z5s8ijcejbt3YqKLA0wvYPIFb29wkL8CSLOtp2gHo9QB2+NZ/o8i5Dp/Zd8t3
mwIDAQAB
-----END PUBLIC KEY-----

At CloudFlare, you'd enter the key from the above command after the "p=" part of the TXT record. Don't include "-----BEGIN PUBLIC KEY-----" or "-----END PUBLIC KEY-----" in the entry.

Thank you.

Samet Chan · Jul 18, 2018

cPanelMichael said:
Hello,

You'll need to manually view the key file at it's /var/cpanel/domain_keys/public/domain.tld location. EX:

Code:

# cat /var/cpanel/domain_keys/public/domain.tld -----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzYrRWuN6UJMtiML7RLYP LjDY4j/iXrU1h++0/C2k+y40aXd3nAQmL/DRDBgeHUQjbfd0eycUfO9AlrMFMA+4 P6teINmef1Vtm+LVixJ2RfY1KVt2j5+dH1LRVhGzI+ieZukLc3AT7ASXK/XP29Wg zgBgov2C3UHHpmtVbwXj+JSkbw+zBCUFAhAQSY+zPN5I1o4d5tiBqPb/1z8uxWDQ xrspZYOv5nWsCY3NidWCMoys9I8bND6W5731mTWc/m4/ttMCSqcdiFxtid/tk/5g zX7Z5s8ijcejbt3YqKLA0wvYPIFb29wkL8CSLOtp2gHo9QB2+NZ/o8i5Dp/Zd8t3 mwIDAQAB -----END PUBLIC KEY-----

At CloudFlare, you'd enter the key from the above command after the "p=" part of the TXT record. Don't include "-----BEGIN PUBLIC KEY-----" or "-----END PUBLIC KEY-----" in the entry.

Thank you.

I got the error: Invalid TXT record. Record may only contain printable ASCII

Code:

v=DKIM1; k=rsa; p=KEY

Samet Chan · Jul 19, 2018

cPanelMichael said:
Hello,

You'll need to manually view the key file at it's /var/cpanel/domain_keys/public/domain.tld location. EX:

Code:

# cat /var/cpanel/domain_keys/public/domain.tld -----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzYrRWuN6UJMtiML7RLYP LjDY4j/iXrU1h++0/C2k+y40aXd3nAQmL/DRDBgeHUQjbfd0eycUfO9AlrMFMA+4 P6teINmef1Vtm+LVixJ2RfY1KVt2j5+dH1LRVhGzI+ieZukLc3AT7ASXK/XP29Wg zgBgov2C3UHHpmtVbwXj+JSkbw+zBCUFAhAQSY+zPN5I1o4d5tiBqPb/1z8uxWDQ xrspZYOv5nWsCY3NidWCMoys9I8bND6W5731mTWc/m4/ttMCSqcdiFxtid/tk/5g zX7Z5s8ijcejbt3YqKLA0wvYPIFb29wkL8CSLOtp2gHo9QB2+NZ/o8i5Dp/Zd8t3 mwIDAQAB -----END PUBLIC KEY-----

At CloudFlare, you'd enter the key from the above command after the "p=" part of the TXT record. Don't include "-----BEGIN PUBLIC KEY-----" or "-----END PUBLIC KEY-----" in the entry.

Thank you.

Never mind, I got it.

But I could use forum.domain.ltd, without domain.ltd, I would need to use key in forum.domain.ltd or just a domain.ltd?

cPanelMichael · Jul 19, 2018

Samet Chan said:
Never mind, I got it.

But I could use forum.domain.ltd, without domain.ltd, I would need to use key in forum.domain.ltd or just a domain.ltd?

Hello,

You could remove the subdomain and then add it as an addon domain name on the cPanel account so it's own separate local DNS zone is created with it's own DKIM and SPF records. You'd then need to apply those records (viewable via WHM >> Edit DNS Zone) at the DNS provider of the parent domain name.

Thank you.

Thread starter	Similar threads	Forum	Replies	Date
B	SMTP error from remote mail server after end of data: 554 mail server permanently rejected message (#5.3.0)	Email	6	Monday at 11:37 AM
S	SMTP error from remote mail server	Email	1	Sep 28, 2022
M	SMTP error from remote mail server after end of data: 451 4.7.500 Server busy.	Email	2	Jul 24, 2022
H	Form with local SMTP but external mail server	Email	5	Oct 14, 2021
M	This SMTP server is running on a non-standard port. This might be a backdoor set up by attackers to send spam or evencontrol of a targeted machine.	Email	8	Oct 11, 2021

SOLVED SMTP server could not receive issue

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Administrator

Well-Known Member

Administrator

Well-Known Member

Administrator

Well-Known Member

Administrator

Well-Known Member

Administrator

Well-Known Member

Administrator

Well-Known Member

Administrator

Well-Known Member

Well-Known Member

Administrator