Oeepppss
You're absolutely right. I am ashamed that I didn't think that DANE was
perhaps the problem
Short term solution was to delete the TLSA record from the DNS.
After deleting the TLSA record the mails are getting in.
Thank you!
Gr.
Jack Raats
Op 23-11-2023 om 05:28 schreef Viktor Dukhovni via Postfix-users:
On Thu, Nov 23, 2023 at 04:32:02AM +0100, Jack Raats via Postfix-users wrote:
Can anyone help me to address the following problem.
I'm receiving messages from the dovecot and postfix mailinglist. I can get
mail from gmail etc. but not from the freebsd mailing lists.
I get the following in maillog
Nov 23 04:23:43 nl postfix/smtpd[2135]: connect from
mx2.freebsd.org[2610:1c1:1:606c::19:2]
Nov 23 04:23:44 nl postfix/smtpd[2135]: Anonymous TLS connection
established from mx2.freebsd.org[2610:1c1:1:606c::19:2]: TLSv1.3 with
cipher TLS_AES_256_GCM>
Nov 23 04:23:44 nl postfix/smtpd[2135]: disconnect from
mx2.freebsd.org[2610:1c1:1:606c::19:2] ehlo=1 starttls=1 quit=1 commands=3
Not surprising, given:
https://stats.dnssec-tools.org/explore/?netnl.net
I sent a note on Nov 1th to: <mart...@netnl.nl>
Subject: netnl.net: SMTP server DNS (DANE TLSA record) issue
Perhaps that's wasn't a good choice of contact address. I can only
try... I really don't understand users who deploy DANE (or any other
security technology) without implementing monitoring. Magical thinking
that nothing could possibly go wrong?
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
