Poliman - Serwis:
> I have server created based on Perfect Server tutorial for Ubuntu 16.04.
> Is it possible to assign to postfix/dovecot as many lets encrypt ssl certs
> as possible? I have 20 domains on the server but postfix uses ispserver.crt
> and ispserver.key certs generated by letsencrypt:
>
> lrwxrwxrwx 1 root root 48 Mar 13 07:42 smtpd.cert ->
> /usr/local/ispconfig/interface/ssl/ispserver.crt
> lrwxrwxrwx 1 root root 48 Mar 13 07:42 smtpd.key ->
> /usr/local/ispconfig/interface/ssl/ispserver.key
>
> which are from:
>
> lrwxrwxrwx 1 root root 50 Nov 3 2017 ispserver.crt ->
> /etc/letsencrypt/live/s1.example.net/fullchain.pem
> lrwxrwxrwx 1 root root 48 Nov 3 2017 ispserver.key ->
> /etc/letsencrypt/live/s1.example.net/privkey.pem
>
>
> For each domain except server fqdn I have certificate mismatch in mail
> client. Sending emails works but I would like to fix certs mismatch.
Postfix does not yet support SNI, so you would need to update master.,cf
with one smtpd definition per IP address with its own smtpd_tls_*cert_file
and smtpd_tls_*key_file.
But why? SMTP is not HTTP. With SMTP, the MX records for different
domains can contain the same SMTP server hostname.
Wietse
