my debian mailserver currently does not send and receive any more mails and I am not really finding out whats the problem.
I am running debian 12 (bookworm) (previously upgraded from an older debian version) with postfix (3.7.11), dovecot (2.3.19.1) and rspamd (3.11.1)
The status quo is:
- if rspamd is running it is not sending and receiving anything. (If I try to send, it shows me an error that something is mapped to the "SPAMHAUS_PBL_BLACKLIST") screenshot error-message
- if rspamd is turned off it is working to send internal and external mails, but still it's only possible to receive internal mails. Somehow it is not possible to receive external mails. I don't see any error-messages or anything. the mails are just never received.
If I open rspamds web-UI I can see errors that rspamd cannot connect to "redis: Connection refused", but to be honest I wasn't even aware of that there was a redis instance running in the background. If that was the case before then maybe some update changed some configuration and made it stop working? screenshot rspamd web-ui
After I first saw that SPAMHAUS_PBL_BLACKLIST message, I was checking https://check.spamhaus.org/ to find out if any of the domains or ip-addresses is blocked by spam-haus. According to their website nothing is blocked at the moment and everything is fine from their point of view. After that I thought that maybe rspamd has a problem, so I updated / upgraded the whole system and made sure that rspamd has a relatively new version and restarted the services postfix, dovecot and rspamd. Unfortunately this did not help anything. I am still getting the spamhaus error when rspamd is active and I am sending a message. Also I am still able to send external and internal mails when rspamd is not running, but I am still not receiving any external mails. Furthermore I now also see sometimes a message in the postfix logs that some ip-address is listed by domain zen.spamhaus.org.
I am now asking myself whether or not rspamd even has something to do with this issue or not and how I can find this out? Until now my idea was to read the journalctl-logs of postfix, dovecot, rspamd. But I couldn't find any helpful information in these logs. Do you have any more ideas what could be the next step to analyze this issue? Where can I go to get a error-message for example when sending a message is aborted because of spamhaus or when another message is not received.
I would be very thankful for any kind of help or hint! BR, mezorian
P.S. Attached see the logs of postfix and dovecot screenshot logs postfix screenshot logs postfix@- screenshot logs rspamd screenshot logs dovecot
