Hi,
I am trying to setup SSL connections.
I have it setup as the instructions say:
smtpd_tls_CAfile = /etc/postfix/sslbundle.crt
smtpd_tls_cert_file = /etc/postfix/server.crt
smtpd_tls_key_file = /etc/postfix/server.key
smtpd_tls_received_header = yes
smtpd_tls_session_cache_database =
btree:/var/lib/postfix/smtpd_tls_session_cache
tls_random_source = dev:/dev/urandom
smtpd_tls_security_level = may
smtpd_use_tls = yes
smtpd_tls_auth_only = yes
smtpd_tls_loglevel = 3
If I telnet I get:
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
showing STARTTLS is in there.
But when I setup my email client to use ssl for outgoing, I just get an
error.
If I add
-o smtpd_tls_wrappermode=yes
To the master.cf file for smtp, then it works, but the server will not
receive any incoming mail since it is trying to use ssl.
The only way I can make it work is to setup the master.cf file with the
smtps file for port 465 with the -o smtpd_tls_wrappermode=yes (as the
default master.cf file has) and change my email client to use ssl with port
465 as the outgoing server.
Then I can receive email normally and use ssl to send out the email from the
client.
Is this the normal way? I can't use port 25 for optional ssl connections?
(as in users trying to send mail use ssl, but incoming mail from other
servers don't have to use ssl)
Thanks for any help
Chris
