Hi,
the certbot and apache stuff is not postfix related.
Did you check, that these two files are there:
> smtpd_tls_cert_file=/etc/letsencrypt/live/mydomain.net/fullchain.pem
> <http://mydomain.net/fullchain.pem>
> smtpd_tls_key_file=/etc/letsencrypt/live/mydomain.net/privkey.pem
> <http://mydomain.net/privkey.pem>
In my setup i have also a third line for the ca-certificate:
smtpd_tls_CAfile = /etc/postfix/ssl/mycert-ca.pem
As you see I placed the certificates into /etc/postfix/ because my
postfix is running chroot. You can check this in your master.cf, should
be default behavior in Debian.
master.cf is also the right place to enable submission, i.e. bind to
port 587.
Groetjes
Claus
--
Claus R. Wickinghoff, Dipl.-Ing.
using Linux since 1994 and still happy... :-)
