On Wed, 2011-03-09 at 12:23 -0500, Victor Duchovni wrote: > On Wed, Mar 09, 2011 at 01:36:46PM +0100, Raven wrote: > > > How can I apply this to $relayhost without having to list all local > > domains in the transport map (as they are already listed in > > $virtual_mailbox_domains)? > > Why are you using virtual_mailbox_domains for addresses that are relayed > to another host? > As for TLS, the security policy and certficate verification are tied to > the nexthop destination, not the recipient domain, if the two differ, > it is the nexthop destination that is used. This is documented, please > read the documentation carefully. >
I've had it up and running for some time now and it seems to be working fine. I'm just wondering, how do I make postfix (client) trust the server's certificate? It's self generated, but I'd still like it to be trusted: Mar 19 15:33:18 dellsrv3 postfix/smtp[29357]: Untrusted TLS connection established to relay.example.org[xxx.xxx.xxx.xxx]:587: TLSv1 with cipher ADH-AES256-SHA (256/256 bits) -RV
