Author Topic: After activate Letsencrypt on postfix connection to smtp failed  (Read 172 times)

spicer

  • Jr. Member
  • **
  • Posts: 50
    • View Profile
    • ltspiceusers.ch
After activate Letsencrypt on postfix connection to smtp failed
« on: September 02, 2022, 05:39:24 pm »
I install ssl for postfix with this tutorial:
https://ehcpforce.tk/faq/index.php?action=artikel&cat=2&id=12&artlang=en
Then I edit/add the following lines in /etc/postfix/main.cf
Code: [Select]
smtpd_use_tls=yes
smtpd_tls_auth_only = yes
smtpd_tls_cert_file = /etc/letsencrypt/live/mydomain.com/fullchain.pem
smtpd_tls_key_file = /etc/letsencrypt/live/mydomain.com/privkey.pem
#Disable Poodle
smtp_tls_security_level = may
smtpd_tls_mandatory_protocols=!SSLv2,!SSLv3
smtp_tls_mandatory_protocols=!SSLv2,!SSLv3
smtpd_tls_protocols=!SSLv2,!SSLv3
smtp_tls_protocols=!SSLv2,!SSLv3
#Changes to SSL Ciphers
tls_preempt_cipherlist = yes
smtpd_tls_mandatory_ciphers = high
tls_high_cipherlist = ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384

When I send a mail then in the mail.log:
NOQUEUE: reject: RCPT from xxx.xx.xxx.xx.ftth.as8758.net[xxx.xx.xxx.xx]: 454 4.7.1 <spicer@yyyy.ch>: Relay access denied;
And Roundcube webmail can not connect to the smtp.
Why?
« Last Edit: September 02, 2022, 06:07:58 pm by spicer »
Wenn es mehrere Möglichkeiten gibt, eine Aufgabe zu erledigen, und eine davon in einer Katastrophe endet oder sonstwie unerwünschte Konsequenzen nach sich zieht, dann wird es jemand genau so machen. Alles, was schiefgehen kann, wird auch schiefgehen.
(Murphys Gesetz)

earnolmartin

  • Administrator
  • Sr. Member
  • *****
  • Posts: 279
    • View Profile
Re: After activate Letsencrypt on postfix connection to smtp failed
« Reply #1 on: October 05, 2022, 10:31:01 am »
I'm not sure, but you shouldn't have to edit anything in the postfix configuration files.  Just use the panel advanced settings to setup what is needed.