search

mailcow / mailcow-dockerized

mailcow: dockerized - 🐮 + 🐋 = 💕
https://mailcow.email
GNU General Public License v3.0
8.34k stars 1.13k forks source link

imap login aborted login from 172.22.1.4 also banning iOS client #2533

Closed Happyfeet01 closed 5 years ago

Happyfeet01 commented 5 years ago

Describe the bug, try to make it reproducible The iOS Email Client whas connected over IMAP and after deletion with Exchange to the Mailserver. It works, but the Log spamming with aborted logins and the Netfilter bans me.

System information and quick debugging General logs:

`

15.4.2019, 10:44:51 info managesieve-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=172.22.1.4, lip=172.22.1.250
15.4.2019, 10:44:51 info imap-login: Aborted login (no auth attempts in 0 secs): user=<>, rip=172.22.1.4, lip=172.22.1.250
15.4.2019, 10:44:51 info imap-login: Aborted login (no auth attempts in 0 secs): user=<>, rip=172.22.1.4, lip=172.22.1.250, TLS, TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)
15.4.2019, 10:44:51 info lmtp(8604): Disconnect from 172.22.1.4: Client has quit the connection (state=READY)
15.4.2019, 10:44:51 info lmtp(8604): Connect from 172.22.1.4

`

Further information (where applicable):

`Chain INPUT (policy DROP 57 packets, 4798 bytes) pkts bytes target prot opt in out source destination 773K 76M MAILCOW all -- 0.0.0.0/0 0.0.0.0/0 1735M 169G ufw-before-logging-input all -- 0.0.0.0/0 0.0.0.0/0 1735M 169G ufw-before-input all -- 0.0.0.0/0 0.0.0.0/0 3901K 312M ufw-after-input all -- 0.0.0.0/0 0.0.0.0/0 3870K 311M ufw-after-logging-input all -- 0.0.0.0/0 0.0.0.0/0 3870K 311M ufw-reject-input all -- 0.0.0.0/0 0.0.0.0/0 3870K 311M ufw-track-input all -- 0.0.0.0/0 0.0.0.0/0

Chain FORWARD (policy DROP 1 packets, 40 bytes) pkts bytes target prot opt in out source destination 44724 182M MAILCOW all -- 0.0.0.0/0 0.0.0.0/0 50509 183M DOCKER-USER all -- 0.0.0.0/0 0.0.0.0/0 50512 183M DOCKER-ISOLATION-STAGE-1 all -- 0.0.0.0/0 0.0.0.0/0 21270 180M ACCEPT all -- br-mailcow 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 677 42611 DOCKER all -- br-mailcow 0.0.0.0/0 0.0.0.0/0 5659 330K ACCEPT all -- br-mailcow !br-mailcow 0.0.0.0/0 0.0.0.0/0 659 41867 ACCEPT all -- br-mailcow br-mailcow 0.0.0.0/0 0.0.0.0/0 24M 3286M ACCEPT all -- docker0 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 4 200 DOCKER all -- docker0 0.0.0.0/0 0.0.0.0/0 43M 4617M ACCEPT all -- docker0 !docker0 0.0.0.0/0 0.0.0.0/0 0 0 ACCEPT all -- docker0 docker0 0.0.0.0/0 0.0.0.0/0 366K 62M ACCEPT all -- br-9ed8b98d4129 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 1631 97444 DOCKER all -- br-9ed8b98d4129 0.0.0.0/0 0.0.0.0/0 9090 516K ACCEPT all -- br-9ed8b98d4129 !br-9ed8b98d4129 0.0.0.0/0 0.0.0.0/0 1609 96540 ACCEPT all -- br-9ed8b98d4129 br-9ed8b98d4129 0.0.0.0/0 0.0.0.0/0 15M 2550M ACCEPT all -- br-79ff0f6e7e61 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 64979 3899K DOCKER all -- br-79ff0f6e7e61 0.0.0.0/0 0.0.0.0/0 132 12929 ACCEPT all -- br-79ff0f6e7e61 !br-79ff0f6e7e61 0.0.0.0/0 0.0.0.0/0 64948 3897K ACCEPT all -- br-79ff0f6e7e61 br-79ff0f6e7e61 0.0.0.0/0 0.0.0.0/0 684K 150M ACCEPT all -- br-4c4b56e5184c 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 8820 527K DOCKER all -- br-4c4b56e5184c 0.0.0.0/0 0.0.0.0/0 1734 277K ACCEPT all -- br-4c4b56e5184c !br-4c4b56e5184c 0.0.0.0/0 0.0.0.0/0 8630 518K ACCEPT all -- br-4c4b56e5184c br-4c4b56e5184c 0.0.0.0/0 0.0.0.0/0 824 435K ACCEPT all -- br-7f11e03648bb 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 82 3992 DOCKER all -- br-7f11e03648bb 0.0.0.0/0 0.0.0.0/0 829 69934 ACCEPT all -- br-7f11e03648bb !br-7f11e03648bb 0.0.0.0/0 0.0.0.0/0 0 0 ACCEPT all -- br-7f11e03648bb br-7f11e03648bb 0.0.0.0/0 0.0.0.0/0 0 0 ACCEPT all -- br-f4901794b3e4 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 20 840 DOCKER all -- br-f4901794b3e4 0.0.0.0/0 0.0.0.0/0 0 0 ACCEPT all -- br-f4901794b3e4 !br-f4901794b3e4 0.0.0.0/0 0.0.0.0/0 0 0 ACCEPT all -- br-f4901794b3e4 br-f4901794b3e4 0.0.0.0/0 0.0.0.0/0 31390 4049K ACCEPT all -- br-894fabcc1a15 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 0 0 DOCKER all -- br-894fabcc1a15 0.0.0.0/0 0.0.0.0/0 31390 1695K ACCEPT all -- br-894fabcc1a15 !br-894fabcc1a15 0.0.0.0/0 0.0.0.0/0 0 0 ACCEPT all -- br-894fabcc1a15 br-894fabcc1a15 0.0.0.0/0 0.0.0.0/0 3086K 247M ACCEPT all -- br-1a148f330a2f 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 309K 19M DOCKER all -- br-1a148f330a2f 0.0.0.0/0 0.0.0.0/0 9 360 ACCEPT all -- br-1a148f330a2f !br-1a148f330a2f 0.0.0.0/0 0.0.0.0/0 309K 19M ACCEPT all -- br-1a148f330a2f br-1a148f330a2f 0.0.0.0/0 0.0.0.0/0 65520 3282K ufw-before-logging-forward all -- 0.0.0.0/0 0.0.0.0/0 65520 3282K ufw-before-forward all -- 0.0.0.0/0 0.0.0.0/0 65137 3268K ufw-after-forward all -- 0.0.0.0/0 0.0.0.0/0 65137 3268K ufw-after-logging-forward all -- 0.0.0.0/0 0.0.0.0/0 65137 3268K ufw-reject-forward all -- 0.0.0.0/0 0.0.0.0/0 65137 3268K ufw-track-forward all -- 0.0.0.0/0 0.0.0.0/0

Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source destination 1732M 166G ufw-before-logging-output all -- 0.0.0.0/0 0.0.0.0/0 1732M 166G ufw-before-output all -- 0.0.0.0/0 0.0.0.0/0 323K 23M ufw-after-output all -- 0.0.0.0/0 0.0.0.0/0 323K 23M ufw-after-logging-output all -- 0.0.0.0/0 0.0.0.0/0 323K 23M ufw-reject-output all -- 0.0.0.0/0 0.0.0.0/0 323K 23M ufw-track-output all -- 0.0.0.0/0 0.0.0.0/0

Chain DOCKER (9 references) pkts bytes target prot opt in out source destination 31 1636 ACCEPT tcp -- !br-79ff0f6e7e61 br-79ff0f6e7e61 0.0.0.0/0 172.22.2.223 tcp dpt:5601 82 3992 ACCEPT tcp -- !br-7f11e03648bb br-7f11e03648bb 0.0.0.0/0 172.24.0.2 tcp dpt:80 0 0 ACCEPT tcp -- !docker0 docker0 0.0.0.0/0 172.17.0.2 tcp dpt:9980 0 0 ACCEPT tcp -- !br-79ff0f6e7e61 br-79ff0f6e7e61 0.0.0.0/0 172.22.2.224 tcp dpt:9300 0 0 ACCEPT tcp -- !br-79ff0f6e7e61 br-79ff0f6e7e61 0.0.0.0/0 172.22.2.224 tcp dpt:9200 20 840 ACCEPT udp -- !br-f4901794b3e4 br-f4901794b3e4 0.0.0.0/0 172.18.0.3 udp dpt:1194 1 40 ACCEPT tcp -- !docker0 docker0 0.0.0.0/0 172.17.0.3 tcp dpt:80 3 160 ACCEPT tcp -- !docker0 docker0 0.0.0.0/0 172.17.0.3 tcp dpt:6800 5 204 ACCEPT tcp -- !br-9ed8b98d4129 br-9ed8b98d4129 0.0.0.0/0 172.23.0.4 tcp dpt:80 16 660 ACCEPT tcp -- !br-9ed8b98d4129 br-9ed8b98d4129 0.0.0.0/0 172.23.0.4 tcp dpt:443 1 40 ACCEPT tcp -- !br-9ed8b98d4129 br-9ed8b98d4129 0.0.0.0/0 172.23.0.4 tcp dpt:1936 21 1060 ACCEPT tcp -- !br-4c4b56e5184c br-4c4b56e5184c 0.0.0.0/0 172.29.0.5 tcp dpt:80 5 200 ACCEPT tcp -- !br-mailcow br-mailcow 0.0.0.0/0 172.22.1.3 tcp dpt:587 7 280 ACCEPT tcp -- !br-mailcow br-mailcow 0.0.0.0/0 172.22.1.3 tcp dpt:465 6 264 ACCEPT tcp -- !br-mailcow br-mailcow 0.0.0.0/0 172.22.1.3 tcp dpt:25 0 0 ACCEPT tcp -- !br-mailcow br-mailcow 0.0.0.0/0 172.22.1.250 tcp dpt:12345 0 0 ACCEPT tcp -- !br-mailcow br-mailcow 0.0.0.0/0 172.22.1.250 tcp dpt:4190 0 0 ACCEPT tcp -- !br-mailcow br-mailcow 0.0.0.0/0 172.22.1.250 tcp dpt:995 0 0 ACCEPT tcp -- !br-mailcow br-mailcow 0.0.0.0/0 172.22.1.250 tcp dpt:993 0 0 ACCEPT tcp -- !br-mailcow br-mailcow 0.0.0.0/0 172.22.1.250 tcp dpt:143 0 0 ACCEPT tcp -- !br-mailcow br-mailcow 0.0.0.0/0 172.22.1.250 tcp dpt:110 0 0 ACCEPT tcp -- !br-mailcow br-mailcow 0.0.0.0/0 172.22.1.5 tcp dpt:8443 0 0 ACCEPT tcp -- !br-mailcow br-mailcow 0.0.0.0/0 172.22.1.5 tcp dpt:8080 0 0 ACCEPT tcp -- !br-mailcow br-mailcow 0.0.0.0/0 172.22.1.12 tcp dpt:3306 0 0 ACCEPT tcp -- !br-1a148f330a2f br-1a148f330a2f 0.0.0.0/0 172.21.0.2 tcp dpt:80

Chain DOCKER-ISOLATION-STAGE-1 (1 references) pkts bytes target prot opt in out source destination 5659 330K DOCKER-ISOLATION-STAGE-2 all -- br-mailcow !br-mailcow 0.0.0.0/0 0.0.0.0/0
43M 4617M DOCKER-ISOLATION-STAGE-2 all -- docker0 !docker0 0.0.0.0/0 0.0.0.0/0 9090 516K DOCKER-ISOLATION-STAGE-2 all -- br-9ed8b98d4129 !br-9ed8b98d4129 0.0.0.0/0 0.0.0.0/0 132 12929 DOCKER-ISOLATION-STAGE-2 all -- br-79ff0f6e7e61 !br-79ff0f6e7e61 0.0.0.0/0 0.0.0.0/0 1734 277K DOCKER-ISOLATION-STAGE-2 all -- br-4c4b56e5184c !br-4c4b56e5184c 0.0.0.0/0 0.0.0.0/0 829 69934 DOCKER-ISOLATION-STAGE-2 all -- br-7f11e03648bb !br-7f11e03648bb 0.0.0.0/0 0.0.0.0/0 0 0 DOCKER-ISOLATION-STAGE-2 all -- br-f4901794b3e4 !br-f4901794b3e4 0.0.0.0/0 0.0.0.0/0 31390 1695K DOCKER-ISOLATION-STAGE-2 all -- br-894fabcc1a15 !br-894fabcc1a15 0.0.0.0/0 0.0.0.0/0 9 360 DOCKER-ISOLATION-STAGE-2 all -- br-1a148f330a2f !br-1a148f330a2f 0.0.0.0/0 0.0.0.0/0 202M 125G RETURN all -- 0.0.0.0/0 0.0.0.0/0

Chain DOCKER-ISOLATION-STAGE-2 (9 references) pkts bytes target prot opt in out source destination 0 0 DROP all -- br-mailcow 0.0.0.0/0 0.0.0.0/0 0 0 DROP all -- docker0 0.0.0.0/0 0.0.0.0/0 10 600 DROP all -- br-9ed8b98d4129 0.0.0.0/0 0.0.0.0/0 0 0 DROP all -- br-79ff0f6e7e61 0.0.0.0/0 0.0.0.0/0 0 0 DROP all -- br-4c4b56e5184c 0.0.0.0/0 0.0.0.0/0 0 0 DROP all -- br-7f11e03648bb 0.0.0.0/0 0.0.0.0/0 5 300 DROP all -- br-f4901794b3e4 0.0.0.0/0 0.0.0.0/0 237 16188 DROP all -- br-894fabcc1a15 0.0.0.0/0 0.0.0.0/0 0 0 DROP all -- br-1a148f330a2f 0.0.0.0/0 0.0.0.0/0 43M 4701M RETURN all -- * 0.0.0.0/0 0.0.0.0/0

Chain DOCKER-USER (1 references) pkts bytes target prot opt in out source destination 202M 125G RETURN all -- 0.0.0.0/0 0.0.0.0/0

Chain MAILCOW (2 references) pkts bytes target prot opt in out source destination

Chain ufw-after-forward (1 references) pkts bytes target prot opt in out source destination

Chain ufw-after-input (1 references) pkts bytes target prot opt in out source destination 28 2184 ufw-skip-to-policy-input udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:137 0 0 ufw-skip-to-policy-input udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:138 149 6740 ufw-skip-to-policy-input tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:139 31529 1580K ufw-skip-to-policy-input tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:445 0 0 ufw-skip-to-policy-input udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:67 0 0 ufw-skip-to-policy-input udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:68 0 0 ufw-skip-to-policy-input all -- 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST

Chain ufw-after-logging-forward (1 references) pkts bytes target prot opt in out source destination 64631 3196K LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "

Chain ufw-after-logging-input (1 references) pkts bytes target prot opt in out source destination 804K 64M LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "

Chain ufw-after-logging-output (1 references) pkts bytes target prot opt in out source destination

Chain ufw-after-output (1 references) pkts bytes target prot opt in out source destination

Chain ufw-before-forward (1 references) pkts bytes target prot opt in out source destination 0 0 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 15 1449 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 3 0 0 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 4 2 184 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 11 0 0 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 12 366 12284 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 65137 3268K ufw-user-forward all -- 0.0.0.0/0 0.0.0.0/0

Chain ufw-before-input (1 references) pkts bytes target prot opt in out source destination 1724M 161G ACCEPT all -- lo 0.0.0.0/0 0.0.0.0/0 6876K 7377M ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 59971 3348K ufw-logging-deny all -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID 59971 3348K DROP all -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID 0 0 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 3 0 0 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 4 0 0 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 11 0 0 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 12 8102 345K ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 12 3912 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp spt:67 dpt:68 3966K 316M ufw-not-local all -- 0.0.0.0/0 0.0.0.0/0 202 28786 ACCEPT udp -- 0.0.0.0/0 224.0.0.251 udp dpt:5353 0 0 ACCEPT udp -- 0.0.0.0/0 239.255.255.250 udp dpt:1900 3965K 316M ufw-user-input all -- * 0.0.0.0/0 0.0.0.0/0

Chain ufw-before-logging-forward (1 references) pkts bytes target prot opt in out source destination

Chain ufw-before-logging-input (1 references) pkts bytes target prot opt in out source destination

Chain ufw-before-logging-output (1 references) pkts bytes target prot opt in out source destination

Chain ufw-before-output (1 references) pkts bytes target prot opt in out source destination 1724M 161G ACCEPT all -- lo 0.0.0.0/0 0.0.0.0/0 7294K 5329M ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 323K 23M ufw-user-output all -- * 0.0.0.0/0 0.0.0.0/0

Chain ufw-logging-allow (0 references) pkts bytes target prot opt in out source destination 0 0 LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW ALLOW] "

Chain ufw-logging-deny (2 references) pkts bytes target prot opt in out source destination 56764 3216K RETURN all -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID limit: avg 3/min burst 10 672 29378 LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "

Chain ufw-not-local (1 references) pkts bytes target prot opt in out source destination 3965K 316M RETURN all -- 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type LOCAL 202 28786 RETURN all -- 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type MULTICAST 0 0 RETURN all -- 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST 0 0 ufw-logging-deny all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 0 0 DROP all -- 0.0.0.0/0 0.0.0.0/0

Chain ufw-reject-forward (1 references) pkts bytes target prot opt in out source destination

Chain ufw-reject-input (1 references) pkts bytes target prot opt in out source destination

Chain ufw-reject-output (1 references) pkts bytes target prot opt in out source destination

Chain ufw-skip-to-policy-forward (0 references) pkts bytes target prot opt in out source destination 0 0 DROP all -- 0.0.0.0/0 0.0.0.0/0

Chain ufw-skip-to-policy-input (7 references) pkts bytes target prot opt in out source destination 31706 1589K DROP all -- 0.0.0.0/0 0.0.0.0/0

Chain ufw-skip-to-policy-output (0 references) pkts bytes target prot opt in out source destination 0 0 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0

Chain ufw-track-forward (1 references) pkts bytes target prot opt in out source destination

Chain ufw-track-input (1 references) pkts bytes target prot opt in out source destination

Chain ufw-track-output (1 references) pkts bytes target prot opt in out source destination 38001 2288K ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 ctstate NEW 285K 21M ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 ctstate NEW

Chain ufw-user-forward (1 references) pkts bytes target prot opt in out source destination

Chain ufw-user-input (1 references) pkts bytes target prot opt in out source destination 4 160 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:6680 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:6680 0 0 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:6880 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:6880 0 0 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:6800 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:6800 0 0 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:9980 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:9980 11990 572K ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 / 'dapp_Nginx%20HTTP' / 35540 1933K ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 / 'dapp_Nginx%20HTTPS' / 1 40 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:4444 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:4444 0 0 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5601 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:5601 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:1194 10337 417K ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 multiport dports 20,21,10000:10100 33 2132 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:65438 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:65438 4035 162K ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:53 67 4283 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:53 96 5088 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:143 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:143 240 14144 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:993 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:993 12 720 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:110 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:110 11 660 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:995 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:995 21 1080 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:587 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:587 20 1040 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:465 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:465 1249 66304 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8080 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:8080 143 7036 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8443 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:8443 0 0 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:3012 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:3012 0 0 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:4444 0 0 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 0 0 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 0 0 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5601 0 0 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:4433 0 0 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8833 31 1244 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:3000 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:3000 22 952 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5432 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:5432 20 852 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8001 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:8001 196 10032 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:25 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:25 11 660 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:4190 0 0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:4190 0 0 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8888 1 35 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:8888

Chain ufw-user-limit (0 references) pkts bytes target prot opt in out source destination 0 0 LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 LOG flags 0 level 4 prefix "[UFW LIMIT BLOCK] " 0 0 REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable

Chain ufw-user-limit-accept (0 references) pkts bytes target prot opt in out source destination 0 0 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0

Chain ufw-user-logging-forward (0 references) pkts bytes target prot opt in out source destination

Chain ufw-user-logging-input (0 references) pkts bytes target prot opt in out source destination

Chain ufw-user-logging-output (0 references) pkts bytes target prot opt in out source destination

Chain ufw-user-output (1 references) pkts bytes target prot opt in out source destination `

no Timeout

andryyy commented 5 years ago

"netfilter-mailcow" does not ban on imap-login: Aborted login (no auth attempts in 0 secs): user=<>, rip=172.22.1.4, lip=172.22.1.250 and it does also not ban private IPs.

If it bans you, please post netfilter-mailcow logs (when it actually bans your ip) and dovecot-mailcow logs for the same time.

We also don't support ufw or firewalld setups. :/ It is not enough to just disable it. You will need to rebuild the Docker rules by restarting the daemon after ufw was completly disabled. Make sure ufw removed ALL chains, so you are only left with INPUT, FORWARD and OUTPUT.

Happyfeet01 commented 5 years ago

Okay,

since the latest update from today and changing to Activesync on the device nor problems anymore. i have a look on this post the logs when it happen.

andryyy commented 5 years ago

Older netfilter images would count this as failed login. But it would still not ban a private IP. Strange. :(

Am 15.04.2019 um 11:19 schrieb Happyfeet01 notifications@github.com:

Okay,

since the latest update from today and changing to Activesync on the device nor problems anymore. i have a look on this post the logs when it happen.

— You are receiving this because you commented. Reply to this email directly, view it on GitHub, or mute the thread.

Happyfeet01 commented 5 years ago

Yes that is really strange. it happens only on my iphone with manual setup. I can send emails and recieve but netfilter blocks with aborted login. But actually it works.

andryyy commented 5 years ago

The regex does not exist in netfilter-mailcow, and it is a private IP. It does not block that for sure.

You need to post logs if you think it does. :) netfilter-mailcow logs. With dovecot-mailcow logs from the same time. I don't see any ban in the logs previously provided.

kientv commented 1 year ago

I got same issue after changing Volumes location to new device.

docker inspect -f '{{.Name}} - {{range .NetworkSettings.Networks}}{{.IPAddress}}{{end}}' $(sudo docker ps -aq) /mailcowdockerized-rspamd-mailcow-1 - 172.22.1.12 /mailcowdockerized-netfilter-mailcow-1 - /mailcowdockerized-postfix-mailcow-1 - 172.22.1.253 /mailcowdockerized-ofelia-mailcow-1 - 172.22.1.11 /mailcowdockerized-dovecot-mailcow-1 - 172.22.1.250 /mailcowdockerized-mysql-mailcow-1 - 172.22.1.9 /mailcowdockerized-solr-mailcow-1 - 172.22.1.6 /mailcowdockerized-clamd-mailcow-1 - 172.22.1.8 /mailcowdockerized-acme-mailcow-1 - 172.22.1.10 /mailcowdockerized-nginx-mailcow-1 - 172.22.1.13 /mailcowdockerized-php-fpm-mailcow-1 - 172.22.1.7 /mailcowdockerized-redis-mailcow-1 - 172.22.1.249 /mailcowdockerized-olefy-mailcow-1 - 172.22.1.2 /mailcowdockerized-sogo-mailcow-1 - 172.22.1.248 /mailcowdockerized-memcached-mailcow-1 - 172.22.1.3 /mailcowdockerized-unbound-mailcow-1 - 172.22.1.254 /mailcowdockerized-watchdog-mailcow-1 - 172.22.1.4 /mailcowdockerized-dockerapi-mailcow-1 - 172.22.1.5