How to Install and Configure Postfix as a Send-Only SMTP Server on Ubuntu 16.04

Excelent!

the best gan

Many thanks for this very useful tutorial!

This guide works too for Debian 8 Jessie, with one difference:

The package mailutils does not contain postfix, so the postfix package has to be installed too:

sudo apt-get install postfix

Two remarks:

• I changed the droplet name of the system into my domain name, otherwise postfix will send mail from the original droplet name, which in most cases will be a non-existent domain. So the mydestination = line in /etc/postfix/main.cf will look like

mydestination = $mydomain, localhost.$mydomain, $mydomain

• I found out that

sudo less /var/log/mail.log

gave me valuable information for troubleshooting.

I cant test postfix my nail log shows

ubuntu postfix/cleanup[11972]: E026142C90: message-id=<20160510195553.E026142C90@ubuntu-xenial.Home>
ubuntu postfix/qmgr[11964]: E026142C90: from=<ubuntu@ubuntu-xenial>, size=393, nrcpt=1 (queue active)
ubuntu postfix/smtp[11966]: connect to mx00.gmx.net[212.227.15.10]:25: Connection timed out
ubuntu postfix/smtp[11967]: connect to mail-tester.com[94.23.206.89]:25: Connection timed out
ubuntu postfix/smtp[11967]: EECFF42C8D: to=<web-ScX3Ah@mail-tester.com>, relay=none, delay=994, delays=964/0.24/30/0, dsn=4.4.1, status=deferred (connect to mail-tester.com[94.23.206.89]:25: Connection timed out)
ubuntu postfix/smtp[11973]: connect to mail.mailinator.com[23.239.11.30]:25: Connection timed out
ubuntu postfix/smtp[11966]: connect to mx01.gmx.net[212.227.17.4]:25: Connection timed out
ubuntu postfix/smtp[11966]: B8EF642C91: to=<elh@gmx.us>, relay=none, delay=879, delays=819/0.12/60/0, dsn=4.4.1, status=deferred (connect to mx01.gmx.net[212.227.17.4]:25: Connection timed out)
ubuntu postfix/smtp[11973]: connect to mail2.mailinator.com[45.79.147.26]:25: Connection timed out
ubuntu postfix/smtp[11973]: E026142C90: to=<goff@mailinator.com>, relay=none, delay=61, delays=0.01/0.12/61/0, dsn=4.4.1, status=deferred (connect to mail2.mailinator.com[45.79.147.26]:25: Connection timed out)

I cant test postfix my mail log shows this error : Connection timed out

Exits with non-zero status.

Followed this tutorial to the tee but no matter what postfix always attempts to send the mail out as user@hostname (i.e. someone@machine rather than someone@domain.com). As a result, all mail is bounced with “Sender address rejected: need fully-qualified address”.

/etc/mailname has the correct domain. Droplet was renamed from just a hostname to a FQDN

Still did not solve the problem, even after purging and reinstalling mailutils and postfix.

Any ideas where I may have gone wrong or what I can do to solve this?

I have a problem when you have a server domain.com and a mail.domain.com and you try to install a send only postfix installation on domain.com.

When u set up, even when i set up as system.domain.com for postfix destination, and I try to send a email to somethingoruser@domain.com (which has a MX record pointing to mail.domain.com), it will say it doesn’t have a user.

No idea how to fix this.

I found that even on Ubuntu 16.04 postfix was not installed with mailutils and I had to install that separately.

I also had some trouble with sendmail being on port25 even though I thought I had stopped it, uninstalled it and reinstalled postfix.

fatal: bind 0.0.0.0 port 25: Address already in use

doing a sudo reboot on the server helped solve that. now I need to resolve the “from” address as it’s saying it’s from the droplet name and not from my domain. baby steps.

In the second to last paragraph you say:

If your use case is to receive notifications from your server at a single address, emails being marked as spam is a major issue because you can whitelist them. However, if your use case is to send emails to potential site users (such as confirmation emails for a message board sign-up), you should definitely set up SPF records and DKIM so your server’s emails are more likely to be seen as legitimate.

But I think you meant

If your use case is to receive notifications from your server at a single address, emails being marked as spam isn’t a major issue because you can whitelist them. However, if your use case is to send emails to potential site users (such as confirmation emails for a message board sign-up), you should definitely set up SPF records and DKIM so your server’s emails are more likely to be seen as legitimate.

I followed this tutorial to the letter on Ubuntu 16 but emails are being sent from user@www.domain.com instead of what should be user@domain.com

what to do ?

There’s one real problem with this walk-through, otherwise I’d be using this configuration for server notification and monitoring emails:

Every single email is sent unencrypted, which is part of why many email services kick the emails as spam.

Off the top of my head, I’m not even certain they can be encrypted using this configuration. I’m currently trying out different possible configurations on a VM. I’ll let everyone know how it goes.

In addition to the instructions above, create your own self-signed certs, use LetsEncrypt, or use purchased certificates/keys (make sure you use wildcard or certificates specific to your hostname/FQDN), and edit main.cf to include:

# TLS parameters
smtpd_tls_cert_file=/etc/ssl/certs/fullchain.pem (change to suit your system)
smtpd_tls_key_file=/etc/ssl/private/privkey.pem (change to suit your system)
smtp_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache

smtpd_tls_CAfile=(if your cert and CAfile aren't rolled into a single file)

It cleared the warnings from the emails for me, and shows TLS was used.

Edit: Corrected to show smtp_use_tls=yes, not smtpd_use_tls=yes

I see this for mydestination: $myhostname, severname, localhost.localdomain, , localhost

What do I do?

I’m having some issues following this tutorial. I’ve followed the tutorial successfully through Step 3. But Step 4 doesn’t seem to work. I’m new to Postfix and not an admin so completely possible I am doing this completely wrong.

This works for me. I get an email from doing the following. echo “This is the body of the email” | mail -s “This is the subject line” myemail@gmail.com

This doesn’t work: echo “This is the body of the email” | mail -s “This is the subject line” root

Any clues?

I followed this tutorial completely, but still my emails are not going to my email address.

Although emails are being saved to local Maildir directory.

Can you please help me sending emails to any email address from my server. I am using php to send emails.

If there is any other tutorial to follow to do what I want?

I have a LEMP 16.04 installed with virtual hosts. There are several wordpress websites on this droplet.

Will this setup work for each seperate wordpress installation to send emails successfully? If so, which domain should I choose as System mail name? Does it matter which one I use?

On my installation of Ubuntu 16.04 (not on your servers), the installation of mailutils didn’t produce a postfix configuration screen.

Excellent guide, thank you.

Minor note, I think there was an error in this sentence

If your use case is to receive notifications from your server at a single address, emails being marked as spam is a major issue because you can whitelist them.

I’m assuming you meant “not a major issue”.

Thanks for the great article.

I followed this tutorial to the letter on Ubuntu 16 but emails are being sent from user@www.domain.com instead of what should be user@domain.com

what to do ?

From the comments it seems several people are having problems routing mail sent to their domain to an external mail service rather than locally. Perhaps the tutorial could be updated to show how to do this?

I think the problem is Postfix tries to use the local_transport delivery method, and delivers the mail to the local mail directory instead of resolving the domain to the remote email service.

To fix this, I changed mydestination in /etc/postfix/main.cf to:

mydestination = localhost.$mydomain, localhost

Hello ! I am searching to configure postfix on a machine hosting gitlab for mail notification, forwarding them on an external smtp server (xx.mail.ovh.net, but our mail are in the format xxxxx@oursociety.fr ) . At first I set the standard postfix configuration null client. But it set the external server as a relay host. It does not work with the external smtp server, as they do not allow it. They say we can send directly with postfix, without anymore details. Your solution seems to be the right one. But It is not clear how the mail is forwarded to your external SMTP server ? Don’t you have to set it somewhere ?

My machine is not part of a domain, we have an entry in our DNS to point to it “gitlabmachine”. The hostname is set to the same entry name : gitlabmachine.

So, how do I set postfix to allow gitlab (executed under identity git) to send mail to the external server ?

You say “A valid domain name, like example.com, pointing to your server.” => which one? gitlabmachine or xx.mail.ovh.net ? I set it to “oursociety.fr” System mail name : oursociety.fr mydestination = oursociety.fr

aliases : root: intranet@oursociety.fr admin: intranet@oursociety.fr

But on the test the result is :

Jan 10 18:36:07 intranet postfix/pickup[4396]: F1683EA0E0: uid=1001 from=<admin>
Jan 10 18:36:07 intranet postfix/cleanup[5678]: F1683EA0E0: message-id=<20170110173607.F1683EA0E0@gitlabmachine>
Jan 10 18:36:08 intranet postfix/qmgr[4397]: F1683EA0E0: from=<admin@oursociety.fr>, size=300, nrcpt=1 (queue active)
Jan 10 18:36:08 intranet postfix/local[5680]: F1683EA0E0: to=<selso.liberado@oursociety.fr>, relay=local, delay=0.11, delays=0.07/0/0/0.04, dsn=5.1.1, status=bounced (unknown user: "selso.liberado")
Jan 10 18:36:08 intranet postfix/cleanup[5678]: 11F77EA105: message-id=<20170110173608.11F77EA105@gitlabmachine>
Jan 10 18:36:08 intranet postfix/bounce[5681]: F1683EA0E0: sender non-delivery notification: 11F77EA105
Jan 10 18:36:08 intranet postfix/qmgr[4397]: 11F77EA105: from=<>, size=1989, nrcpt=1 (queue active)
Jan 10 18:36:08 intranet postfix/qmgr[4397]: F1683EA0E0: removed
Jan 10 18:36:08 intranet postfix/local[5680]: 11F77EA105: to=<intranet@oursociety.fr>, orig_to=<admin@oursociety.fr>, relay=local, delay=0.08, delays=0.04/0/0/0.04, dsn=5.1.1, status=bounced (unknown user: "intranet")
Jan 10 18:36:08 intranet postfix/qmgr[4397]: 11F77EA105: removed

Hi guys,

Just want to ask if there is a way to encrypt the email? What do I need to configure or what to install? Thanks.

For send-only MTA, Is there any advantages to using postfix over say nullmailer or ssmtp with Google Apps? Any input will be much appreciated.

First, thank you very much for this wonderful tutorial.

I have a question. Let me try to explain my question through a example: NGINX Server Blocks in available three different live websites:

1. Test-one.com
2. Test-two.com
3. Test-three.com

Droplet name is also different: Test-Dad

How should I install and configure Postfix as a Send-Only SMTP Server?

Thank you!

i followed this but there is only 1 problem. it doesnt forward the emails to my personal email “XXXX@outlook.com” any idea?

Of course I copied the only mispelled command: mailtuils should be mailutils.

Super helpful!

For some reason I can’t get anything sent to my gmail account, all I get is this:

Final-Recipient: rfc822; derekrife@gmail.com Original-Recipient: rfc822;derekrife@gmail.com Action: failed Status: 5.7.1 Remote-MTA: dns; gmail-smtp-in.l.google.com Diagnostic-Code: smtp; 550-5.7.1 [104.131.67.181 1] Our system has detected an unusual rate of 550-5.7.1 unsolicited mail originating from your IP address. To protect our 550-5.7.1 users from spam, mail sent from your IP address has been blocked. 550-5.7.1 Please visit 550-5.7.1 https://support.google.com/mail/?p=UnsolicitedIPError to review our 550 5.7.1 Bulk Email Senders Guidelines. k66si2537580qkf.457 - gsmtp

Anyone got any clues on how to fix this?

I’ve tried, and it works with msn, but not gmail.

Great tutorial! I’m having still a problem to send mail outside of my local network. My university provide me with a local VM on which I run ubuntu 16.04 with postfix. emails are fine from root to other users and users to users but will not send to **@gmail.com because it says “Connection timed out.” I already change postfix.cf file to add proper tls keys, etc, and change all to ipv4 on last line for inet_protocol.

Here is example of maillog entry: Feb 13 15:50:33 myNetwork postfix/smtp[21654]: 18554DFE60: to=traumann@gmail.com, relay=none, delay=150, delays=0.01/0/150/0, dsn=4.4.1, status=deferred (connect to alt4.gmail-smtp-in.l.google.com[64.233.190.26]:25: Connection timed out)

I think issue is related to my domain being a .myschool.local rather than a public facing network, like .myschool.edu But school is not blocking anything. So maybe google not like traffik from …local ?

Any ideas would be great.

Thanks,

traumann

I followed the tutorial and I am able to send the emails to my personal email. But, The email ID is moved to the spam folder. Also, the sender is user@hostname instead I want to make it as user@domain.com. Can someone help me solve those two issues?

Hello,

I have Tested this method and it keeps sending mails to junk. I have tried it on yahoo and gmail, still sends all to junk. What other configuration do i need to do to achieve inbox ? Please someone should help me out on this. Thanks.

Richard.

Hello everyone,

I believe I followed this guide correctly and I have set up an SPF record and configured DKIM. Yet, every email is received in my Spam folder when sent to Gmail adresses. Worse, when sent to other private mail providers, the mail isn’t even received and I get an ‘Undelivered Mail Returned to Sender’ mail with the error ‘This sender address is not valid (in reply to RCPT TO command)’.

Any ideas where I may have gone wrong or what I can do to solve this?

A quick way to set the hostname:

hostnamectl set-hostname 'new-hostname'

(Source)

I followed these instructions, however the From field for the test email is “sammy@hostname.example.com”, not “sammy@example.com”.

Why the need to install mailutils and not just postfix? Installing mailutils also installed MySQL, and I do not want MySQL on two of my three droplets for this project. I only need a means to either send mail or relay it to our GApps to send the mail. (From what I have read, there is no need for MySQL if using Postfix in a send-only situation.)

Aannd for that part, “However, to configure Postfix in a manner that scales and that does not present issues for such a setup involves additional configurations that are beyond the scope of this article.”, I asked @linuxbabe (twitter) and she kindly made a tutorial for us: https://www.linuxbabe.com/mail-server/postfix-send-only-multiple-domains-ubuntu

You need this command: sudo dpkg-reconfigure postfix to open configuration window.

For some reason I can’t get anything sent to my gmail account, all I get is this:

Final-Recipient: rfc822; derekrife@gmail.com Original-Recipient: rfc822;derekrife@gmail.com Action: failed Status: 5.7.1 Remote-MTA: dns; gmail-smtp-in.l.google.com Diagnostic-Code: smtp; 550-5.7.1 [104.131.67.181 1] Our system has detected an unusual rate of 550-5.7.1 unsolicited mail originating from your IP address. To protect our 550-5.7.1 users from spam, mail sent from your IP address has been blocked. 550-5.7.1 Please visit 550-5.7.1 https://support.google.com/mail/?p=UnsolicitedIPError to review our 550 5.7.1 Bulk Email Senders Guidelines. k66si2537580qkf.457 - gsmtp

Anyone got any clues on how to fix this?

I’ve tried, and it works with msn, but not gmail.

Great tutorial! I’m having still a problem to send mail outside of my local network. My university provide me with a local VM on which I run ubuntu 16.04 with postfix. emails are fine from root to other users and users to users but will not send to **@gmail.com because it says “Connection timed out.” I already change postfix.cf file to add proper tls keys, etc, and change all to ipv4 on last line for inet_protocol.

Here is example of maillog entry: Feb 13 15:50:33 myNetwork postfix/smtp[21654]: 18554DFE60: to=traumann@gmail.com, relay=none, delay=150, delays=0.01/0/150/0, dsn=4.4.1, status=deferred (connect to alt4.gmail-smtp-in.l.google.com[64.233.190.26]:25: Connection timed out)

I think issue is related to my domain being a .myschool.local rather than a public facing network, like .myschool.edu But school is not blocking anything. So maybe google not like traffik from …local ?

Any ideas would be great.

Thanks,

traumann

I followed the tutorial and I am able to send the emails to my personal email. But, The email ID is moved to the spam folder. Also, the sender is user@hostname instead I want to make it as user@domain.com. Can someone help me solve those two issues?

Hello,

I have Tested this method and it keeps sending mails to junk. I have tried it on yahoo and gmail, still sends all to junk. What other configuration do i need to do to achieve inbox ? Please someone should help me out on this. Thanks.

Richard.

Hello everyone,

I believe I followed this guide correctly and I have set up an SPF record and configured DKIM. Yet, every email is received in my Spam folder when sent to Gmail adresses. Worse, when sent to other private mail providers, the mail isn’t even received and I get an ‘Undelivered Mail Returned to Sender’ mail with the error ‘This sender address is not valid (in reply to RCPT TO command)’.

Any ideas where I may have gone wrong or what I can do to solve this?

A quick way to set the hostname:

hostnamectl set-hostname 'new-hostname'

(Source)

I followed these instructions, however the From field for the test email is “sammy@hostname.example.com”, not “sammy@example.com”.

Why the need to install mailutils and not just postfix? Installing mailutils also installed MySQL, and I do not want MySQL on two of my three droplets for this project. I only need a means to either send mail or relay it to our GApps to send the mail. (From what I have read, there is no need for MySQL if using Postfix in a send-only situation.)

Aannd for that part, “However, to configure Postfix in a manner that scales and that does not present issues for such a setup involves additional configurations that are beyond the scope of this article.”, I asked @linuxbabe (twitter) and she kindly made a tutorial for us: https://www.linuxbabe.com/mail-server/postfix-send-only-multiple-domains-ubuntu

You need this command: sudo dpkg-reconfigure postfix to open configuration window.

what are you saying. I need smtp credentials for it. Why do I need this procedure. Email to root only. I need to get smtp host

Hola!, que tal? Instalé postfix para solo enviar correos, como lo marca en el tutorial, pero necesito que desde un backend con nodejs poder usar este servicio, pero no me deja, hay alguna configuración que me falta por hacer?