Easy Hosting Control Panel (EHCP) :: Force Edition

EHCP Force Support => Technical Help => Topic started by: spicer on September 02, 2022, 05:39:24 pm

Title: After activate Letsencrypt on postfix connection to smtp failed
Post by: spicer on September 02, 2022, 05:39:24 pm

I install ssl for postfix with this tutorial:
https://ehcpforce.tk/faq/index.php?action=artikel&cat=2&id=12&artlang=en
Then I edit/add the following lines in /etc/postfix/main.cf

Code: [Select]

smtpd_use_tls=yes
smtpd_tls_auth_only = yes
smtpd_tls_cert_file = /etc/letsencrypt/live/mydomain.com/fullchain.pem
smtpd_tls_key_file = /etc/letsencrypt/live/mydomain.com/privkey.pem
#Disable Poodle
smtp_tls_security_level = may
smtpd_tls_mandatory_protocols=!SSLv2,!SSLv3
smtp_tls_mandatory_protocols=!SSLv2,!SSLv3
smtpd_tls_protocols=!SSLv2,!SSLv3
smtp_tls_protocols=!SSLv2,!SSLv3
#Changes to SSL Ciphers
tls_preempt_cipherlist = yes
smtpd_tls_mandatory_ciphers = high
tls_high_cipherlist = ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384
When I send a mail then in the mail.log:
NOQUEUE: reject: RCPT from xxx.xx.xxx.xx.ftth.as8758.net[xxx.xx.xxx.xx]: 454 4.7.1 <spicer@yyyy.ch>: Relay access denied;
And Roundcube webmail can not connect to the smtp.
Why?

Title: Re: After activate Letsencrypt on postfix connection to smtp failed
Post by: earnolmartin on October 05, 2022, 10:31:01 am

I'm not sure, but you shouldn't have to edit anything in the postfix configuration files.  Just use the panel advanced settings to setup what is needed.