Hi,
Cannot receive email from ansmtp.ariba.com[216.109.104.12]
The following error is in the log.
----------- start --------------
Feb 14 18:26:22 mail postfix/smtpd[210806]: SSL_accept:SSLv3/TLS write
server done
Feb 14 18:26:22 mail postfix/smtpd[210806]: SSL_accept:error in
SSLv3/TLS write server done
Feb 14 18:26:22 mail postfix/smtpd[210806]: SSL_accept error from
ansmtp.ariba.com[216.109.104.12]: Connection reset by peer
Feb 14 18:26:22 mail postfix/smtpd[210806]: lost connection after
STARTTLS from ansmtp.ariba.com[216.109.104.12]
------------ end ---------------
Assuming the error is on their end and so decided to use
smtp_tls_policy_maps to set tls_security_level for that domain to none.
---------- start -------------------
smtpd_tls_security_level = may
smtp_tls_policy_maps = hash:/etc/postfix/tls_policy
tls_policy
.ariba.com none match=.ariba.com:ariba.com
--------- end ---------------------
Did postmap tls_policy and got tls_policy.db
Postfix: 3.5.8 (rocky linux 8.5)
Even when .ariba.com is set to none, TLS is still initiated.
If smtpd_tls_security_level = none then TLS is not used. But then all
domains will not use TLS.
Was the setting correct? Is there any other settings that need to be done.
P.V.Anthony
