Skip to content

[BUG] Errormessage in fail2ban-log "Failed to execute ban jail 'dovecot' action 'nftables-allports' info 'ActionInfo" #2637

Closed
Closed
[BUG] Errormessage in fail2ban-log "Failed to execute ban jail 'dovecot' action 'nftables-allports' info 'ActionInfo"#2637
Labels
meta/closed due to age or inactivityThis issue / PR has been closed due to inactivitymeta/needs triageThis issue / PR needs checks and verification from maintainersmeta/staleThis issue / PR has become stale and will be closed if there is no further activitypriority/medium
@springm

Description

@springm
springm
opened on Jun 11, 2022

Miscellaneous first checks

  • I checked that all ports are open and not blocked by my ISP / hosting provider.
  • I know that SSL errors are likely the result of a wrong setup on the user side and not caused by DMS itself. I'm confident my setup is correct.

Affected Component(s)

fail2ban inside docker-mailserver

What happened and when does this occur?

In the fail2ban log of docker-mailserver I see lots of messages

2022-06-10 11:13:28,342 fail2ban.actions        [1173]: ERROR   Failed to execute ban jail 'dovecot' action 'nftables-allports' info 'ActionInfo({'ip': '36.137.157.218', 'family': 'inet4', 'fid': <function Actions.ActionInfo.<lambda> at 0x7f9b0dc8cb80>, 'raw-ticket': <function Actions.ActionInfo.<lambda> at 0x7f9b0dc8d280>})': Error starting action Jail('dovecot')/nftables-allports: 'Script error'
2022-06-10 11:13:30,005 fail2ban.actions        [1173]: ERROR   Failed to execute ban jail 'postfix-sasl' action 'nftables-allports' info 'ActionInfo({'ip': '36.137.157.218', 'family': 'inet4', 'fid': <function Actions.ActionInfo.<lambda> at 0x7f9b0dc8cb80>, 'raw-ticket': <function Actions.ActionInfo.<lambda> at 0x7f9b0dc8d280>})': Error starting action Jail('postfix-sasl')/nftables-allports: 'Script error'

The fail2ban jails of dovecot and postfix-sasl are empty, no bans have taken place

What did you expect to happen?

The banned IPs should show up when listing the bans with 'setup.sh fail2ban'

How do we replicate the issue?

1. Install mailserver v11.0.0 via docker/docker compose
2. Try unauthorized access to postfix-sasl or dovecot
3.
...

DMS version

v11.0.0

What operating system is DMS running on?

Linux

What instruction set architecture is DMS running on?

x86_64 / AMD64

What container orchestration tool are you using?

Docker Compose

docker-compose.yml

services:
  cert-renewer-traefik:
    image: youtous/mailserver-traefik:latest
    volumes:
      - /var/run/docker.sock:/var/run/docker.sock
      - ../traefik2/acme.json:/tmp/traefik/acme.json:ro # link traefik
      - ./ssl:/tmp/ssl:rw
    environment:
      - TRAEFIK_VERSION=2
      - CERTS_SOURCE=file
      - DOMAINS=mail.markus-spring.de
      
  mailserver:
    image: docker.io/mailserver/docker-mailserver:latest
    container_name: mailserver-docker-mailserver
    hostname: mail
    domainname: markus-spring.de
    env_file: mailserver.env
    ports:
      - "25:25"    # SMTP  (explicit TLS => STARTTLS)
      - "143:143"  # IMAP4 (explicit TLS => STARTTLS)
      - "465:465"  # ESMTP (implicit TLS)
      - "587:587"  # ESMTP (explicit TLS => STARTTLS)
      - "993:993"  # IMAP4 (implicit TLS)
    volumes:
      - ./docker-data/dms/mail-data/:/var/mail/
      - ./docker-data/dms/mail-state/:/var/mail-state/
      - ./docker-data/dms/mail-logs/:/var/log/mail/
      - ./docker-data/dms/config/:/tmp/docker-mailserver/
      - /etc/localtime:/etc/localtime:ro
      - ./ssl:/var/mail-state/manual-ssl
    restart: always
    stop_grace_period: 1m
    cap_add:
      - NET_ADMIN
      - SYS_PTRACE
    labels:
      - "mailserver-traefik.renew.domain=mail.markus-spring.de" # tag the service 
      - "traefik.enable=true" # use traefik v2 for certificate generation
      - "traefik.port=443" # dummy port, required generating certs with traefik
      - "traefik.http.routers.mail.rule=Host(`mail.markus-spring.de`,`mail.lebenswertes-bad-reichenhall.de`,`mail.aberdoch.de`)" 
      - "traefik.http.routers.mail.entrypoints=websecure"
    environment:
      - SSL_TYPE=manual # enable SSL on the mailserver
      - SSL_CERT_PATH=/var/mail-state/manual-ssl/markus-spring.de/fullchain.pem
      - SSL_KEY_PATH=/var/mail-state/manual-ssl/markus-spring.de/privkey.pem
      - ENABLE_FAIL2BAN=1
      - ENABLE_CLAMAV=1

  rainloop:
    image: hardware/rainloop:latest
    container_name: rainloop
    volumes:
      - ./webmail:/rainloop/data
    depends_on:
      - mailserver
    environment:
        - LOG_TO_STDOUT=true
    labels:
      - traefik.enable=true
      - "traefik.docker.network=proxy"
      - traefik.http.routers.webmail.rule=Host(`webmail.markus-spring.de`)
      - traefik.http.routers.webmail.tls.certresolver=cloudflare
      - traefik.http.routers.webmail.entrypoints=websecure
    networks:
      - proxy
      - default

networks:
  proxy:
    external: true

Relevant log output

Container mailserver-cert-renewer-traefik-1  Created
Container mailserver-docker-mailserver  Created
Container rainloop  Created
Attaching to mailserver-cert-renewer-traefik-1, mailserver-docker-mailserver, rainloop
mailserver-cert-renewer-traefik-1  | [INFO] Running on a regular host.
mailserver-cert-renewer-traefik-1  | [INFO] 1 domain(s) to watch: mail.markus-spring.de
mailserver-cert-renewer-traefik-1  | [INFO] Configured to automatically push existing certificates in containers every 15m (PUSH_PERIOD=15m).
mailserver-cert-renewer-traefik-1  | [INFO] file selected as certificates source
mailserver-cert-renewer-traefik-1  | [INFO] Traefik v2 selected as target
mailserver-cert-renewer-traefik-1  | 
mailserver-cert-renewer-traefik-1  | [INFO] certificate for mail.markus-spring.de not yet generated, skipping push...
mailserver-cert-renewer-traefik-1  | 
rainloop                           | [INFO] Logging to stdout activated
mailserver-docker-mailserver       | [   INF   ]  Welcome to docker-mailserver 11.0.0
mailserver-docker-mailserver       | [   INF   ]  Initializing setup
mailserver-docker-mailserver       | [  DEBUG  ]  Registering functions
mailserver-docker-mailserver       | [   INF   ]  Checking configuration
mailserver-docker-mailserver       | [  DEBUG  ]  Checking that hostname/domainname is provided or overridden
mailserver-docker-mailserver       | [  DEBUG  ]  Domain has been set to markus-spring.de
mailserver-docker-mailserver       | [  DEBUG  ]  Hostname has been set to mail.markus-spring.de
mailserver-docker-mailserver       | [   INF   ]  Configuring mail server
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up default variables
mailserver-docker-mailserver       | [  DEBUG  ]  Setting file and directory permissions
mailserver-docker-mailserver       | [  DEBUG  ]  Setting timezone to 'DE'
mailserver-docker-mailserver       | [ WARNING ]  Cannot find timezone 'DE'
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up Dovecot
mailserver-docker-mailserver       | [  DEBUG  ]  Spam messages will be moved to the Junk folder
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up Dovecot dhparam
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up Dovecot quota
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up Dovecot Local User
mailserver-docker-mailserver       | [  DEBUG  ]  Creating user 'owner' for domain 'markus-spring.de'
mailserver-docker-mailserver       | [  DEBUG  ]  Creating user 'mail' for domain 'markus-spring.de'
mailserver-docker-mailserver       | [  DEBUG  ]  Creating user 'mail' for domain 'lebenswertes-bad-reichenhall.de'
mailserver-docker-mailserver       | [  DEBUG  ]  Creating user 'fgrimagepost' for domain 'aberdoch.de'
mailserver-docker-mailserver       | [  DEBUG  ]  Creating user 'mtb' for domain 'aberdoch.de'
mailserver-docker-mailserver       | [  DEBUG  ]  Creating user 'gis' for domain 'aberdoch.de'
mailserver-docker-mailserver       | [  DEBUG  ]  Creating user 'krempel' for domain 'aberdoch.de'
mailserver-docker-mailserver       | [  DEBUG  ]  Creating user 'wordpress' for domain 'markus-spring.de'
mailserver-docker-mailserver       | [  DEBUG  ]  Alias '[email protected]' is non-local (or mapped to a non-existing account) and will not be added to Dovecot's userdb
mailserver-docker-mailserver       | [  DEBUG  ]  Adding alias '[email protected]' for user '[email protected]' to Dovecot's userdb
mailserver-docker-mailserver       | [  DEBUG  ]  Adding alias '[email protected]' for user '[email protected]' to Dovecot's userdb
mailserver-docker-mailserver       | [  DEBUG  ]  Alias '[email protected]' is non-local (or mapped to a non-existing account) and will not be added to Dovecot's userdb
mailserver-docker-mailserver       | [  DEBUG  ]  Alias '[email protected]' is non-local (or mapped to a non-existing account) and will not be added to Dovecot's userdb
mailserver-docker-mailserver       | [  DEBUG  ]  Alias '[email protected]' is non-local (or mapped to a non-existing account) and will not be added to Dovecot's userdb
mailserver-docker-mailserver       | [  DEBUG  ]  Alias '[email protected]' is non-local (or mapped to a non-existing account) and will not be added to Dovecot's userdb
mailserver-docker-mailserver       | [  DEBUG  ]  Adding alias '[email protected]' for user '[email protected]' to Dovecot's userdb
mailserver-docker-mailserver       | [  DEBUG  ]  Adding alias '[email protected]' for user '[email protected]' to Dovecot's userdb
mailserver-docker-mailserver       | [  DEBUG  ]  Adding alias '[email protected]' for user '[email protected]' to Dovecot's userdb
mailserver-docker-mailserver       | [  DEBUG  ]  Adding alias '[email protected]' for user '[email protected]' to Dovecot's userdb
mailserver-docker-mailserver       | [  DEBUG  ]  Adding alias '[email protected]' for user '[email protected]' to Dovecot's userdb
mailserver-docker-mailserver       | [  DEBUG  ]  Adding alias '[email protected]' for user '[email protected]' to Dovecot's userdb
mailserver-docker-mailserver       | [  DEBUG  ]  Adding alias '[email protected]' for user '[email protected]' to Dovecot's userdb
mailserver-docker-mailserver       | [ WARNING ]  Alias '[email protected]' will not be added to '/etc/dovecot/userdb' twice
mailserver-docker-mailserver       | [  DEBUG  ]  Adding alias '[email protected]' for user '[email protected]' to Dovecot's userdb
mailserver-docker-mailserver       | [ WARNING ]  Alias '[email protected]' will not be added to '/etc/dovecot/userdb' twice
mailserver-docker-mailserver       | [  DEBUG  ]  Adding alias '[email protected]' for user '[email protected]' to Dovecot's userdb
mailserver-docker-mailserver       | [ WARNING ]  Alias '[email protected]' will not be added to '/etc/dovecot/userdb' twice
mailserver-docker-mailserver       | [  DEBUG  ]  Adding alias '@aberdoch.de' for user '[email protected]' to Dovecot's userdb
mailserver-docker-mailserver       | [ WARNING ]  Alias '@aberdoch.de' will not be added to '/etc/dovecot/userdb' twice
mailserver-docker-mailserver       | [  DEBUG  ]  Adding alias '@mail.markus-spring.de' for user '[email protected]' to Dovecot's userdb
mailserver-docker-mailserver       | [  DEBUG  ]  Adding alias '@lebenswertes-bad-reichenhall.de' for user '[email protected]' to Dovecot's userdb
mailserver-docker-mailserver       | [ WARNING ]  Alias '@lebenswertes-bad-reichenhall.de' will not be added to '/etc/dovecot/userdb' twice
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up Fail2Ban
mailserver-docker-mailserver       | [  DEBUG  ]  Disabling postfix DNS block list (zen.spamhaus.org)
mailserver-docker-mailserver       | [  DEBUG  ]  Disabling postscreen DNS block lists
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up DKIM
mailserver-docker-mailserver       | Nameservers 127.0.0.11
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up SSL
mailserver-docker-mailserver       | [  DEBUG  ]  TLS configured with 'modern' ciphers
mailserver-docker-mailserver       | [  DEBUG  ]  Configuring certificates using key /var/mail-state/manual-ssl/markus-spring.de/privkey.pem and cert /var/mail-state/manual-ssl/markus-spring.de/fullchain.pem
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up PERMIT_DOCKER option
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up mailname and creating '/etc/mailname'
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up Amavis
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up DMARC
mailserver-docker-mailserver       | [  DEBUG  ]  Applying hostname and domainname to Postfix
mailserver-docker-mailserver       | [  DEBUG  ]  Applying hostname to Dovecot
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up Postfix SASL Password
mailserver-docker-mailserver       | [  DEBUG  ]  SASL_PASSWD was not provided - '/etc/postfix/sasl_passwd' not created
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up Security Stack
mailserver-docker-mailserver       | [  DEBUG  ]  Enabling and configuring SpamAssassin
mailserver-docker-mailserver       | [  DEBUG  ]  Enabling ClamAV
mailserver-docker-mailserver       | [  DEBUG  ]  Enabling Fail2Ban
mailserver-docker-mailserver       | [  DEBUG  ]  Enabling Amavis
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up Postfix aliases
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up Postfix vhost
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up Postfix dhparam
mailserver-docker-mailserver       | [  DEBUG  ]  Configuring Postscreen
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up Postfix Relay Hosts
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up logrotate
mailserver-docker-mailserver       | [  DEBUG  ]  Enabling Postfix log summary reports with recipient '[email protected]'
mailserver-docker-mailserver       | [  DEBUG  ]  Enabling logwatch reports with recipient '[email protected]'
mailserver-docker-mailserver       | [  DEBUG  ]  Setting up configuration checksum file
mailserver-docker-mailserver       | [  DEBUG  ]  Printing environment variables. Make sure no sensitive data is copied.
mailserver-docker-mailserver       | AMAVIS_LOGLEVEL='0'
mailserver-docker-mailserver       | CLAMAV_MESSAGE_SIZE_LIMIT='25M'
mailserver-docker-mailserver       | DEFAULT_RELAY_HOST=''
mailserver-docker-mailserver       | DOVECOT_INET_PROTOCOLS='all'
mailserver-docker-mailserver       | DOVECOT_MAILBOX_FORMAT='maildir'
mailserver-docker-mailserver       | DOVECOT_TLS='no'
mailserver-docker-mailserver       | ENABLE_AMAVIS='1'
mailserver-docker-mailserver       | ENABLE_CLAMAV='1'
mailserver-docker-mailserver       | ENABLE_DNSBL='0'
mailserver-docker-mailserver       | ENABLE_FAIL2BAN='1'
mailserver-docker-mailserver       | ENABLE_FETCHMAIL='0'
mailserver-docker-mailserver       | ENABLE_LDAP='0'
mailserver-docker-mailserver       | ENABLE_MANAGESIEVE='1'
mailserver-docker-mailserver       | ENABLE_POP3='0'
mailserver-docker-mailserver       | ENABLE_POSTGREY='0'
mailserver-docker-mailserver       | ENABLE_QUOTAS='1'
mailserver-docker-mailserver       | ENABLE_SASLAUTHD='0'
mailserver-docker-mailserver       | ENABLE_SPAMASSASSIN='1'
mailserver-docker-mailserver       | ENABLE_SPAMASSASSIN_KAM='0'
mailserver-docker-mailserver       | ENABLE_SRS='0'
mailserver-docker-mailserver       | ENABLE_UPDATE_CHECK='1'
mailserver-docker-mailserver       | FAIL2BAN_BLOCKTYPE='drop'
mailserver-docker-mailserver       | FETCHMAIL_PARALLEL='0'
mailserver-docker-mailserver       | FETCHMAIL_POLL='300'
mailserver-docker-mailserver       | LDAP_START_TLS='no'
mailserver-docker-mailserver       | LOGROTATE_INTERVAL='weekly'
mailserver-docker-mailserver       | LOGWATCH_INTERVAL='daily'
mailserver-docker-mailserver       | LOGWATCH_RECIPIENT='[email protected]'
mailserver-docker-mailserver       | LOGWATCH_SENDER='[email protected]'
mailserver-docker-mailserver       | LOG_LEVEL='debug'
mailserver-docker-mailserver       | MOVE_SPAM_TO_JUNK='1'
mailserver-docker-mailserver       | NETWORK_INTERFACE='eth0'
mailserver-docker-mailserver       | ONE_DIR='1'
mailserver-docker-mailserver       | OVERRIDE_HOSTNAME=''
mailserver-docker-mailserver       | PERMIT_DOCKER='none'
mailserver-docker-mailserver       | PFLOGSUMM_RECIPIENT='[email protected]'
mailserver-docker-mailserver       | PFLOGSUMM_SENDER='[email protected]'
mailserver-docker-mailserver       | PFLOGSUMM_TRIGGER='logrotate'
mailserver-docker-mailserver       | POSTFIX_INET_PROTOCOLS='all'
mailserver-docker-mailserver       | POSTFIX_MAILBOX_SIZE_LIMIT='0'
mailserver-docker-mailserver       | POSTFIX_MESSAGE_SIZE_LIMIT='10240000'
mailserver-docker-mailserver       | POSTGREY_AUTO_WHITELIST_CLIENTS='5'
mailserver-docker-mailserver       | POSTGREY_DELAY='300'
mailserver-docker-mailserver       | POSTGREY_MAX_AGE='35'
mailserver-docker-mailserver       | POSTGREY_TEXT='Delayed by Postgrey'
mailserver-docker-mailserver       | POSTMASTER_ADDRESS='[email protected]'
mailserver-docker-mailserver       | POSTSCREEN_ACTION='enforce'
mailserver-docker-mailserver       | RELAY_HOST=''
mailserver-docker-mailserver       | REPORT_RECIPIENT='[email protected]'
mailserver-docker-mailserver       | REPORT_SENDER='[email protected]'
mailserver-docker-mailserver       | SA_KILL='6.31'
mailserver-docker-mailserver       | SA_SPAM_SUBJECT='***SPAM*****'
mailserver-docker-mailserver       | SA_TAG2='6.31'
mailserver-docker-mailserver       | SA_TAG='2.0'
mailserver-docker-mailserver       | SMTP_ONLY='0'
mailserver-docker-mailserver       | SPAMASSASSIN_SPAM_TO_INBOX='1'
mailserver-docker-mailserver       | SPOOF_PROTECTION='1'
mailserver-docker-mailserver       | SRS_SENDER_CLASSES='envelope_sender'
mailserver-docker-mailserver       | SSL_TYPE='manual'
mailserver-docker-mailserver       | SUPERVISOR_LOGLEVEL='warn'
mailserver-docker-mailserver       | TLS_LEVEL='modern'
mailserver-docker-mailserver       | TZ='DE'
mailserver-docker-mailserver       | UPDATE_CHECK_INTERVAL='1d'
mailserver-docker-mailserver       | VIRUSMAILS_DELETE_DELAY='7'
mailserver-docker-mailserver       | [   INF   ]  Post-configuration checks
mailserver-docker-mailserver       | [  DEBUG  ]  Checking /var/mail permissions
mailserver-docker-mailserver       | [   INF   ]  Starting miscellaneous tasks
mailserver-docker-mailserver       | [  DEBUG  ]  Consolidating all state onto /var/mail-state
mailserver-docker-mailserver       | [   INF   ]  Starting daemons
mailserver-docker-mailserver       | [  DEBUG  ]  Starting cron
mailserver-docker-mailserver       | [  DEBUG  ]  Starting rsyslog
mailserver-docker-mailserver       | [  DEBUG  ]  Starting dovecot
mailserver-docker-mailserver       | [  DEBUG  ]  Starting update-check
mailserver-docker-mailserver       | [  DEBUG  ]  Starting opendkim
mailserver-docker-mailserver       | [  DEBUG  ]  Starting opendmarc
mailserver-docker-mailserver       | [  DEBUG  ]  Starting postfix
mailserver-docker-mailserver       | [  DEBUG  ]  Starting fail2ban
mailserver-docker-mailserver       | [  DEBUG  ]  Starting clamav
mailserver-docker-mailserver       | [  DEBUG  ]  Starting changedetector
mailserver-docker-mailserver       | [  DEBUG  ]  Starting amavis
mailserver-docker-mailserver       | [   INF   ]  mail.markus-spring.de is up and running
mailserver-docker-mailserver       | Jun 11 12:42:30 mail amavis[1449]: starting. /usr/sbin/amavisd-new at mail.markus-spring.de amavisd-new-2.11.1 (20181009), Unicode aware, LC_CTYPE="C.UTF-8"
mailserver-docker-mailserver       | Jun 11 12:42:30 mail amavis[1449]: perl=5.032001, user=, EUID: 112 (112);  group=, EGID: 114 114 (114 114)
mailserver-docker-mailserver       | Jun 11 12:42:31 mail amavis[1449]: Net::Server: Group Not Defined.  Defaulting to EGID '114 114'
mailserver-docker-mailserver       | Jun 11 12:42:31 mail amavis[1449]: Net::Server: User Not Defined.  Defaulting to EUID '112'
mailserver-docker-mailserver       | Jun 11 12:42:31 mail amavis[1449]: No ext program for   .zoo, tried: zoo
mailserver-docker-mailserver       | Jun 11 12:42:31 mail amavis[1449]: No ext program for   .doc, tried: ripole
mailserver-docker-mailserver       | Jun 11 12:42:31 mail amavis[1449]: No decoder for       .F   
mailserver-docker-mailserver       | Jun 11 12:42:31 mail amavis[1449]: No decoder for       .doc 
mailserver-docker-mailserver       | Jun 11 12:42:31 mail amavis[1449]: No decoder for       .zoo 
mailserver-docker-mailserver       | Jun 11 12:42:31 mail amavis[1449]: Using primary internal av scanner code for ClamAV-clamd
mailserver-docker-mailserver       | Jun 11 12:42:31 mail amavis[1449]: Found secondary av scanner ClamAV-clamscan at /usr/bin/clamscan
mailserver-docker-mailserver       | Jun 11 12:42:33 mail postfix/master[2389]: daemon started -- version 3.5.6, configuration /etc/postfix

Other relevant information

The last logwatch mail said:


 ################### Logwatch 7.5.5 (01/22/21) #################### 
        Processing Initiated: Sat Jun 11 08:29:01 2022
        Date Range Processed: yesterday
                              ( 2022-Jun-10 )
                              Period is day.
        Detail Level of Output: 0
        Type of Output/Format: mail / text
        Logfiles for Host: mail.markus-spring.de
 ################################################################## 
 
 --------------------- Amavisd-new Begin ------------------------ 

        6   Total messages scanned ------------------  100.00%
  339.777K  Total bytes scanned                        347,932
 ========   ==================================================
 
        6   Passed ----------------------------------  100.00%
        6     Clean passed                             100.00%
 ========   ==================================================
 
        6   Ham -------------------------------------  100.00%
        6     Clean passed                             100.00%
 ========   ==================================================
 
 
 ---------------------- Amavisd-new End ------------------------- 

 
 --------------------- clam-update Begin ------------------------ 

 
 Local version: 0.103.5 Recommended version: 0.103.6
 Your ClamAV installation is OUTDATED!
 
 ---------------------- clam-update End ------------------------- 

 
 --------------------- Dovecot Begin ------------------------ 

 
 Dovecot Deliveries: 4
 Dovecot IMAP and POP3 Successful Logins: 190
 
 Dovecot disconnects: 128 Total
 
 Unknown users blocked: 6 Total
 
 
 **Unmatched Entries**
    dovecot: auth: passwd-file([email protected]): unknown user : 2 Time(s)
    dovecot: auth: passwd-file([email protected]): unknown user : 8 Time(s)
    dovecot: auth: passwd-file([email protected]): unknown user : 4 Time(s)
 
 ---------------------- Dovecot End ------------------------- 

 
 --------------------- fail2ban-messages Begin ------------------------ 

 
 Banned services with Fail2Ban:                             Bans:Unbans
    custom:                                                 [  1:0  ]
    dovecot:                                                [  1:1  ]
    postfix:                                                [  0:0  ]
    postfix-sasl:                                           [  1:1  ]
 
 ** ERRORS **
      7f9b0d7c3960 -- exec: nft add table inet f2b-table: 1 Time(s)
      7f9b0d7c3960 -- stderr: '                                                  ...: 1 Time(s)
      7f9b0d7c3960 -- stderr: 'Error: Could not process rule: Numerical result ou...: 1 Time(s)
      7f9b0d7c3960 -- stderr: 'Error: No such file or directory': 1 Time(s)
      7f9b0d7c3960 -- stderr: '^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^...: 1 Time(s)
      7f9b0d7c3960 -- stderr: 'add rule inet f2b-table f2b-chain meta l4proto { t...: 1 Time(s)
      7f9b0d7c3960 -- stderr: 'add set inet f2b-table addr-set-postfix-sasl { typ...: 1 Time(s)
      7f9b0d7c3d50 -- exec: nft add table inet f2b-table: 1 Time(s)
      7f9b0d7c3d50 -- stderr: '                                                  ...: 1 Time(s)
      7f9b0d7c3d50 -- stderr: 'Error: Could not process rule: Numerical result ou...: 1 Time(s)
      7f9b0d7c3d50 -- stderr: 'Error: No such file or directory': 1 Time(s)
      7f9b0d7c3d50 -- stderr: '^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^...: 1 Time(s)
      7f9b0d7c3d50 -- stderr: 'add rule inet f2b-table f2b-chain meta l4proto { t...: 1 Time(s)
      7f9b0d7c3d50 -- stderr: 'add set inet f2b-table addr-set-dovecot { type ipv...: 1 Time(s)
      Failed to execute ban jail 'dovecot' action 'nftables-allports' info 'Actio...: 1 Time(s)
      Failed to execute ban jail 'postfix-sasl' action 'nftables-allports' info '...: 1 Time(s)
 
 ---------------------- fail2ban-messages End ------------------------- 

 
 --------------------- Postfix Begin ------------------------ 

        6   SASL authentication failed                       6
        8   Miscellaneous warnings                           8
 
  694.623K  Bytes accepted                             711,294
  505.250K  Bytes sent via SMTP                        517,376
  189.373K  Bytes sent via LMTP                        193,918
 ========   ==================================================
 
       14   Accepted                                     1.23%
     1124   Rejected                                    98.77%
 --------   --------------------------------------------------
     1138   Total                                      100.00%
 ========   ==================================================
 
     1114   5xx Reject relay denied                     99.11%
        8   5xx Reject unknown user                      0.71%
        2   5xx Reject recipient address                 0.18%
 --------   --------------------------------------------------
     1124   Total 5xx Rejects                          100.00%
 ========   ==================================================
 
      430   Connections                                    430
       26   Connections lost (inbound)                      26
      432   Disconnections                                 432
       14   Removed from queue                              14
       10   Sent via SMTP                                   10
        4   Sent via LMTP                                    4
     1668   Postscreen                                   1,668
       14   Policy SPF                                      14
 
        2   Timeouts (inbound)                               2
        8   Hostname verification errors (FCRDNS)            8
      386   TLS connections (server)                       386
        4   TLS connections (client)                         4
 
 
 
 **Unmatched Entries**
        2   Jun 10 17:09:00 mail policyd-spf[8310]: 550 5.7.23 Message rejected due to: SPF fail - not authorized.
 
 ---------------------- Postfix End ------------------------- 

 
 --------------------- Disk Space Begin ------------------------ 

 Filesystem         Size  Used Avail Use% Mounted on
 overlay            493G   54G  419G  12% /
 /dev/ploop37930p1  493G   54G  419G  12% /usr/share/zoneinfo/Etc/UTC
 
 
 ---------------------- Disk Space End ------------------------- 

 
 ###################### Logwatch End #########################

What level of experience do you have with Docker and mail servers?

  • I am inexperienced with docker
  • I am inexperienced with mail servers
  • I am uncomfortable with the CLI

Code of conduct

Improvements to this form?

No response

Metadata

Metadata

Assignees

No one assigned

    Labels

    meta/closed due to age or inactivityThis issue / PR has been closed due to inactivitymeta/needs triageThis issue / PR needs checks and verification from maintainersmeta/staleThis issue / PR has become stale and will be closed if there is no further activitypriority/medium

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions