Brandon Lamb
2010-Apr-14 05:23 UTC
[Dovecot] Dovecot 2.0b4 configuration issue, listen config option?
Hi, In my 1.2 setup I have pop3 running on ip x.x.x.2 and imap on x.x.x.7 In 2.0 how do I say listen x.x.x.2:110 x.x.x.7:143 so that pop3 is not listening on the .7 ip? I tried putting a listen = ip in the listener section but it complained. I cant figure it out and cant seem to find any 2.0 specific documentation, trying to search in the wiki directory of /usr/local/share/doc/dovecot/wiki but so far no help. I realize I can firewall that off but I dont want to rely on that. Is this no longer possible?
Andreas Schulze
2010-Apr-14 05:36 UTC
[Dovecot] Dovecot 2.0b4 configuration issue, listen config option?
Am 13.04.2010 22:23 schrieb Brandon Lamb:> Hi, > > In my 1.2 setup I have pop3 running on ip x.x.x.2 and imap on x.x.x.7 > > In 2.0 how do I say listen x.x.x.2:110 x.x.x.7:143 so that pop3 is not > listening on the .7 ip? I tried putting a listen = ip in the listener > section but it complained. I cant figure it out and cant seem to find > any 2.0 specific documentation, trying to search in the wiki directory > of /usr/local/share/doc/dovecot/wiki but so far no help. > > I realize I can firewall that off but I dont want to rely on that. Is > this no longer possible?that works for me: service imap-login { inet_listener imap { address = imap01.t6-isa.de } inet_listener imaps { address = imap01.t6-isa.de } } service pop3-login { inet_listener pop3 { address = pop01.t6-isa.de } inet_listener pop3s { address = pop01.t6-isa.de } } an in case you like different certs: protocol imap { ssl = yes ssl_cert = </etc/ssl/imap01.t6-isa.de/cert+root.pem ssl_key = </etc/ssl/private/imap01.t6-isa.de-key.pem } protocol pop3 { ssl = yes ssl_cert = </etc/ssl/pop01.t6-isa.de/cert+root.pem ssl_key = </etc/ssl/private/pop01.t6-isa.de-key.pem } -- Andreas Schulze Internetdienste | P532 DATEV eG 90329 N?rnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196 E-Mail info @datev.de | Internet www.datev.de Sitz: 90429 N?rnberg, Paumgartnerstr. 6-14 | Registergericht N?rnberg, GenReg Nr.70 Vorstand Prof. Dieter Kempf (Vorsitzender) Dipl.-Kfm. Wolfgang Stegmann (stellvertretender Vorsitzender) Dipl.-Kfm. Michael Leistenschneider J?rg Rabe v. Pappenheim Dipl.-Vw. Eckhard Schwarzer Vorsitzender des Aufsichtsrates: Reinhard Verholen -------------- next part -------------- A non-text attachment was scrubbed... Name: GnuPG-Signatur.asc Type: application/pgp-signature Size: 315 bytes Desc: digitale Signatur dieser Nachricht von Andreas Schulze URL: <http://dovecot.org/pipermail/dovecot/attachments/20100414/96d7e275/attachment-0002.bin>
Brandon Lamb
2010-Apr-14 06:31 UTC
[Dovecot] Dovecot 2.0b4 configuration issue, listen config option?
On Tue, Apr 13, 2010 at 10:36 PM, Andreas Schulze <andreas.schulze at datev.de> wrote:> Am 13.04.2010 22:23 schrieb Brandon Lamb: >> Hi, >> >> In my 1.2 setup I have pop3 running on ip x.x.x.2 and imap on x.x.x.7 >> >> In 2.0 how do I say listen x.x.x.2:110 x.x.x.7:143 so that pop3 is not >> listening on the .7 ip? I tried putting a listen = ip in the listener >> section but it complained. I cant figure it out and cant seem to find >> any 2.0 specific documentation, trying to search in the wiki directory >> of /usr/local/share/doc/dovecot/wiki but so far no help. >> >> I realize I can firewall that off but I dont want to rely on that. Is >> this no longer possible? > > that works for me: > > service imap-login { > ?inet_listener imap { > ? ?address = imap01.t6-isa.de > ?} > ?inet_listener imaps { > ? ?address = imap01.t6-isa.de > ?} > } > > service pop3-login { > ?inet_listener pop3 { > ? ?address = pop01.t6-isa.de > ?} > ?inet_listener pop3s { > ? ?address = pop01.t6-isa.de > ?} > } > an in case you like different certs: > > protocol imap { > ?ssl = yes > ?ssl_cert = </etc/ssl/imap01.t6-isa.de/cert+root.pem > ?ssl_key = </etc/ssl/private/imap01.t6-isa.de-key.pem > } > > protocol pop3 { > ?ssl = yes > ?ssl_cert = </etc/ssl/pop01.t6-isa.de/cert+root.pem > ?ssl_key = </etc/ssl/private/pop01.t6-isa.de-key.pem > } > > > > -- > Andreas Schulze > Internetdienste | P532 > > DATEV eG > 90329 N?rnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196 > E-Mail info @datev.de | Internet www.datev.de > Sitz: 90429 N?rnberg, Paumgartnerstr. 6-14 | Registergericht N?rnberg, GenReg Nr.70 > Vorstand > Prof. Dieter Kempf (Vorsitzender) > Dipl.-Kfm. Wolfgang Stegmann (stellvertretender Vorsitzender) > Dipl.-Kfm. Michael Leistenschneider > J?rg Rabe v. Pappenheim > Dipl.-Vw. Eckhard Schwarzer > Vorsitzender des Aufsichtsrates: Reinhard Verholen > > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.9 (GNU/Linux) > > iJwEAQECAAYFAkvFVFgACgkQGXQ4Obkc43nWJwP9HOZ/A3q6SKIJKQL23we7KwVG > hwmxiT6ayhy73s6oE5VKCSwSdNH452FPbQsB+Qg3lEvdmX7MhKDbNIc2N2qEGCPS > CmED/q7V6ppQPaPeBw4tdfOMlCJ0EEsmYWFrIyakyQiRcDbLDsK/3D5VnAdLLxCS > a5tXfsTxT1ZqZKvPv8w> =yx2R > -----END PGP SIGNATURE-----Ohhhh address, very good thank you!!
Timo Sirainen
2010-Apr-14 12:27 UTC
[Dovecot] Dovecot 2.0b4 configuration issue, listen config option?
On Tue, 2010-04-13 at 22:23 -0700, Brandon Lamb wrote:> Hi, > > In my 1.2 setup I have pop3 running on ip x.x.x.2 and imap on x.x.x.7 > > In 2.0 how do I say listen x.x.x.2:110 x.x.x.7:143 so that pop3 is not > listening on the .7 ip?Did you try simply doing it the exact same way as with v1.2? It should have logged a few "obsolete setting" warnings, suggested how to change the config to new format, and finally just worked (and doveconf would have outputted the new format). If it didn't do that, send me your config and I'll fix it. -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: This is a digitally signed message part URL: <http://dovecot.org/pipermail/dovecot/attachments/20100414/33fb2fb9/attachment-0002.bin>
Brandon Lamb
2010-Apr-14 16:36 UTC
[Dovecot] Dovecot 2.0b4 configuration issue, listen config option?
On Wed, Apr 14, 2010 at 5:27 AM, Timo Sirainen <tss at iki.fi> wrote:> On Tue, 2010-04-13 at 22:23 -0700, Brandon Lamb wrote: >> Hi, >> >> In my 1.2 setup I have pop3 running on ip x.x.x.2 and imap on x.x.x.7 >> >> In 2.0 how do I say listen x.x.x.2:110 x.x.x.7:143 so that pop3 is not >> listening on the .7 ip? > > Did you try simply doing it the exact same way as with v1.2? It should > have logged a few "obsolete setting" warnings, suggested how to change > the config to new format, and finally just worked (and doveconf would > have outputted the new format). If it didn't do that, send me your > config and I'll fix it.No I have been trying to not use the old config options, figure I might as well learn how to use the new stuff if this is the new thing.
Andreas Schulze
2010-Apr-16 12:02 UTC
[Dovecot] Dovecot 2.0b4 configuration issue, listen config option?
Am 16.04.2010 13:43 schrieb Andreas Schulze:> yes, this makes dovecot starting wihout errors, > but *without* ssl listenport too :-(protocols = imap pop3 service imap-login { inet_listener imap { address = imap01.t6-isa.de } inet_listener imaps { address = imap01.t6-isa.de } } service pop3-login { inet_listener pop3 { address = pop01.t6-isa.de } inet_listener pop3s { address = pop01.t6-isa.de } } protocol imap { # suggested by Timo ssl = yes ssl_cert = </etc/ssl/imap01.t6-isa.de/cert+root.pem ssl_key = </etc/ssl/private/imap01.t6-isa.de-key.pem } protocol pop3 { # suggested by Timo ssl = yes ssl_cert = </etc/ssl/pop01.t6-isa.de/cert+root.pem ssl_key = </etc/ssl/private/pop01.t6-isa.de-key.pem } ################################################# # case 1: no error, but no listener ssl = no #ssl_cert = </etc/ssl/pop01.t6-isa.de/cert+root.pem #ssl_key = </etc/ssl/private/pop01.t6-isa.de-key.pem # case 2: Fatal: Error in configuration file /etc/dovecot/dovecot.conf: ssl enabled, but ssl_cert not set ssl = yes #ssl_cert = </etc/ssl/pop01.t6-isa.de/cert+root.pem #ssl_key = </etc/ssl/private/pop01.t6-isa.de-key.pem # case 3: all works fine, but ssl_cert + ssl_key twice in the config ssl = yes ssl_cert = </etc/ssl/pop01.t6-isa.de/cert+root.pem ssl_key = </etc/ssl/private/pop01.t6-isa.de-key.pem Andreas -- Andreas Schulze Internetdienste | P532 DATEV eG 90329 N?rnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196 E-Mail info @datev.de | Internet www.datev.de Sitz: 90429 N?rnberg, Paumgartnerstr. 6-14 | Registergericht N?rnberg, GenReg Nr.70 Vorstand Prof. Dieter Kempf (Vorsitzender) Dipl.-Kfm. Wolfgang Stegmann (stellvertretender Vorsitzender) Dipl.-Kfm. Michael Leistenschneider J?rg Rabe v. Pappenheim Dipl.-Vw. Eckhard Schwarzer Vorsitzender des Aufsichtsrates: Reinhard Verholen