Hi all
I'm stuck with enabling SSL/TLS on an existing setup. I got a postfix mail server (host=smtp) configured for some domains that relay all messages for these domains to a second mail server (hmailserver, host = mail). This setup works fine when I use smtp:25 to forward mail from postfix to hmailserver. main.cf transport_maps = hash:/etc/postfix/transport transport yyyy.com smtp:[mail.xxxx.com]:25 Now I would like to encrypt communication between postfix -> hmailserver. The remote mailserver is configured to accept SSL/TLS on port 587. This is proven to work since user mail clients successfully directly connect to hmailserver using the related port with SSL/TLS. I therefore changed transport to: yyyy.com smtp:[mail.xxxx.com]:587 and added smtp_tls_security_level = may to main.cf. Now is can see the mails getting forwared to mail.xxxx.com:587 but still plain smtp is used (tcpdump shows no SSL handshake being initiated). It seems smtp_tls_security_level has no effect at all. I experimented with different settings for smtp_tls_security_level with no effect at all. I also tried to enforce the use of ssl using smtp_tls_policy_maps = hash:/etc/postfix/tls_policy, but again this seems to have no effect. Although I read a bunch of blog posts and had a look into the postfix documentation, I just got no idea, what the correct configuration option would be. So I would really appreciate a little help J Thanks a lot -Frank
