Postfix SSL client config

Fri, 29 Mar 2013 05:17:23 -0700 

Hi,

I'm trying to set up a simple email relay host, with my home
linux box sending to smtp.indra.com.
I'm running Postfix 2.9.6-1~12.1 on Xubuntu 3.5.0.26,
and I need to use SSL to talk to indra.

I think SSL works on port 465 because I can use openssl to connect:

openssl s_client -crlf -connect smtp.indra.com:465
AUTH LOGIN
334 VXNlcm5hbWU6     # base64 prompt for "Userid:"
(send my base64 userid)
334 UGFzc3dvcmQ6     # base64 prompt for "Password:"
(send my base64 password)
235 2.0.0 OK Authenticated

I tried to do this in postfix, by using
  main.cf:
    relayhost = smtp.indra.com:465
    smtp_sasl_auth_enable = yes
    smtp_sasl_mechanism_filter = login
    smtp_sasl_password_maps = hash:/etc/postfix/sasl/passwd
  sasl/passwd:
    [smtp.indra.com]:465 lastName:myPasswd
  postmap sasl/passwd
  service postfix restart

I get in /var/log/mail.log:

  Mar 28 14:22:02 helix postfix/smtp[10392]: CLIENT wrappermode (port
smtps/465) is unimplemented
  Mar 28 14:22:02 helix postfix/smtp[10392]: instead, send to (port
submission/587) with STARTTLS

When I change to the port from 465 to 587 in the above 2 files
and restart postfix, I get in /var/log/mail.log:

Mar 29 06:09:33 helix postfix/pickup[5513]: A06D318122B: uid=5555
from=<firstname.lastn...@mathcom.com>
Mar 29 06:09:33 helix postfix/cleanup[5726]: A06D318122B:
message-id=<20130329120933.ga5...@mathcom.com>
Mar 29 06:09:33 helix postfix/qmgr[10564]: A06D318122B:
from=<firstname.lastn...@mathcom.com>, size=611, nrcpt=1 (queue active)
Mar 29 06:09:40 helix postfix/smtp[5728]: A06D318122B:
to=<lastn...@indra.com>, relay=smtp.indra.com[209.169.0.20]:587,
delay=7.2, delays=0.09/0/6.9/0.14, dsn=4.7.1, status=SOFTBOUNCE (host
smtp.indra.com[209.169.0.20] said: 550 5.7.1 <lastn...@indra.com>...
Access denied (in reply to RCPT TO command))


# postqueue -p
-Queue ID- --Size-- ----Arrival Time---- -Sender/Recipient-------
A06D318122B      611 Fri Mar 29 06:09:33  firstname.lastn...@mathcom.com
(host smtp.indra.com[209.169.0.20] said: 550 5.7.1 <lastn...@indra.com>...
Access denied (in reply to RCPT TO command))
                                         lastn...@indra.com

Any thoughts?

Many thanks,

Steve

Reply via email to