Author Topic: After activate Letsencrypt on postfix connection to smtp failed  (Read 331 times)

spicer

  • Jr. Member
  • **
  • Posts: 71
    • View Profile
    • ltspiceusers.ch
After activate Letsencrypt on postfix connection to smtp failed
« on: September 02, 2022, 05:39:24 pm »
I install ssl for postfix with this tutorial:
https://ehcpforce.tk/faq/index.php?action=artikel&cat=2&id=12&artlang=en
Then I edit/add the following lines in /etc/postfix/main.cf
Code: [Select]
smtpd_use_tls=yes
smtpd_tls_auth_only = yes
smtpd_tls_cert_file = /etc/letsencrypt/live/mydomain.com/fullchain.pem
smtpd_tls_key_file = /etc/letsencrypt/live/mydomain.com/privkey.pem
#Disable Poodle
smtp_tls_security_level = may
smtpd_tls_mandatory_protocols=!SSLv2,!SSLv3
smtp_tls_mandatory_protocols=!SSLv2,!SSLv3
smtpd_tls_protocols=!SSLv2,!SSLv3
smtp_tls_protocols=!SSLv2,!SSLv3
#Changes to SSL Ciphers
tls_preempt_cipherlist = yes
smtpd_tls_mandatory_ciphers = high
tls_high_cipherlist = ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384

When I send a mail then in the mail.log:
NOQUEUE: reject: RCPT from xxx.xx.xxx.xx.ftth.as8758.net[xxx.xx.xxx.xx]: 454 4.7.1 <spicer@yyyy.ch>: Relay access denied;
And Roundcube webmail can not connect to the smtp.
Why?
« Last Edit: September 02, 2022, 06:07:58 pm by spicer »
Translator for german EHCPforce

earnolmartin

  • Administrator
  • Sr. Member
  • *****
  • Posts: 302
    • View Profile
Re: After activate Letsencrypt on postfix connection to smtp failed
« Reply #1 on: October 05, 2022, 10:31:01 am »
I'm not sure, but you shouldn't have to edit anything in the postfix configuration files.  Just use the panel advanced settings to setup what is needed.