Exim4 : "Connection timed out" whatever the forwarding smtp server

AJN asked:

Exim is configured on a newly provisioned VM from a public cloud provider with public IPs (scaleway.net)

Purpose:

Be able to send mails from CLI (or scripts) to public destination recipients (gmail,yahoo,…)

Results:

Exim4 log file /var/log/exim4/mainlog shows “Connection timeout” with all tested servers (gmail, free.fr, online.net)

Configuration details:

lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description:    Ubuntu 16.04.5 LTS
Release:    16.04
Codename:   xenial
  • No firewalls configured on the server and no rules from the cloud provider.
  • The resolved smtp servers IP addresses (from exim log file) are pingable.

Tested with different smtp servers:
(gmail, free.fr, online.net)

cat /etc/exim4/update-exim4.conf.conf

# /etc/exim4/update-exim4.conf.conf
#
# Edit this file and /etc/mailname by hand and execute update-exim4.conf
# yourself or use 'dpkg-reconfigure exim4-config'
#
# Please note that this is _not_ a dpkg-conffile and that automatic changes
# to this file might happen. The code handling this will honor your local
# changes, so this is usually fine, but will break local schemes that mess
# around with multiple versions of the file.
#
# update-exim4.conf uses this file to determine variable values to generate
# exim configuration macros for the configuration file.
#
# Most settings found in here do have corresponding questions in the
# Debconf configuration, but not all of them.
#
# This is a Debian specific file

dc_eximconfig_configtype='smarthost'
dc_other_hostnames=''
dc_local_interfaces='127.0.0.1 ; ::1'
dc_readhost=''
dc_relay_domains=''
dc_minimaldns='false'
dc_relay_nets=''
dc_smarthost='smtp.online.net::587'
CFILEMODE='644'
dc_use_split_config='false'
dc_hide_mailname='false'
dc_mailname_in_oh='true'
dc_localdelivery='mail_spool

Accounts and passwords correctly configured for each test with smtp server:

cat /etc/exim4/passwd.client

#gmail-smtp.1.google.com:[email protected]:pass1
#smtp.online.net:[email protected]:pass2
smtp.free.fr:[email protected]:pass2

[email protected]:~# tail -f /var/log/exim4/mainlog

[email protected]:~# tail -f /var/log/exim4/mainlog
2018-10-27 17:32:47 1gGSDM-0002ib-5Y == [email protected] R=smarthost T=remote_smtp_smarthost defer (-53): retry time not reached for any host
2018-10-27 17:32:47 1gGSKT-0002sr-C6 == [email protected] R=smarthost T=remote_smtp_smarthost defer (-53): retry time not reached for any host
2018-10-27 17:32:47 1gGSF6-0002ij-UA == [email protected] R=smarthost T=remote_smtp_smarthost defer (-53): retry time not reached for any host
2018-10-27 17:32:47 1gGSJs-0002no-EM == [email protected] R=smarthost T=remote_smtp_smarthost defer (-53): retry time not reached for any host
2018-10-27 17:32:47 1gGSHC-0002is-0H == [email protected] R=smarthost T=remote_smtp_smarthost defer (-53): retry time not reached for any host
2018-10-27 17:32:47 End queue run: pid=12074
2018-10-27 17:32:53 1gGSQA-00038q-A1 H=smtpauth-dc2.online.net [62.210.16.40] Connection timed out
2018-10-27 17:32:53 1gGSQA-00038q-A1 == [email protected] R=smarthost T=remote_smtp_smarthost defer (110): Connection timed out

2018-10-27 17:47:12 1gGSg4-00039P-CW <= [email protected] U=root P=local S=369
2018-10-27 17:47:12 1gGSg4-00039P-CW == [email protected] R=smarthost T=remote_smtp_smarthost defer (-53): retry time not reached for any host


2018-10-27 18:02:34 1gGSst-0003JZ-5k H=smtp.free.fr [212.27.48.4] Connection timed out
2018-10-27 18:02:34 1gGSst-0003JZ-5k == [email protected] R=smarthost T=remote_smtp_smarthost defer (110): Connection timed out
2018-10-27 18:03:09 1gGSvV-0003KT-9k <= [email protected] U=root P=local S=369
2018-10-27 18:03:09 1gGSvV-0003KT-9k == [email protected] R=smarthost T=remote_smtp_smarthost defer (-53): retry time not reached for any host

Am I missing something in the configs?

My answer:


Scaleway blocks outgoing SMTP by default. You need to unblock it from within your control panel. Access to this option requires a validated account; if you can’t enable it, then open a ticket with Scaleway for further instructions.


View the full question and any other answers on Server Fault.

Creative Commons License
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License.