Re: tls_policy

On 30 Apr 2015, at 08:46, Birta Levente wrote: > Looked at the mailing list archive I resolved with smtp_tls_policy_maps = > hash:/etc/postfix/tls_policy: > > tls_policy: > irs.ro may protocols=TLSv1 ciphers=medium exclude=3DES:MD5 Instead of forcing "TLSv1"

Re: tls_policy

On Thu, Apr 30, 2015 at 09:25:48AM +0300, Birta Levente wrote: > >Perhaps some sort of middle-box is interfering with TLS on your > >end. Also, what version of OpenSSL are you using? Well "your end" can be anywhere between you and the Microsoft email hosting mail servers. > I make a test on ano

Re: tls_policy

On 30/04/2015 09:36, DTNX Postmaster wrote: On 30 Apr 2015, at 08:25, Birta Levente wrote: On 29/04/2015 20:56, Viktor Dukhovni wrote: On Wed, Apr 29, 2015 at 03:53:00PM +0300, Birta Levente wrote: I see many SSL_connect error for different domains which mail service hosted at microsoft:

Re: tls_policy

On 30 Apr 2015, at 08:25, Birta Levente wrote: > On 29/04/2015 20:56, Viktor Dukhovni wrote: >> On Wed, Apr 29, 2015 at 03:53:00PM +0300, Birta Levente wrote: >> >>> I see many SSL_connect error for different domains which mail service hosted >>> at microsoft: >>> >>> Apr 28 10:32:12 srv1 postf

Re: tls_policy

On 29/04/2015 20:56, Viktor Dukhovni wrote: On Wed, Apr 29, 2015 at 03:53:00PM +0300, Birta Levente wrote: I see many SSL_connect error for different domains which mail service hosted at microsoft: Apr 28 10:32:12 srv1 postfix/smtp[18296]: SSL_connect error to irs-ro.mail.eo.outlook.com[213.19

Re: Cannot Start TLS: handshake failure

On Wed, Apr 29, 2015 at 05:57:36PM -0700, Tom Johnson wrote: > I have a basic postfix setup that's been working fine for a long time, > but recently, I've been seeing errors with a number of sites: > >"Cannot start TLS: handshake failure" > > Here are some specific sites where I'm seeing th

Re: Is this a result of reject_unknown_sender_domain ?

On Wed, Apr 29, 2015 at 09:33:29PM -0400, James B. Byrne wrote: > >> > Looks as if your resolver is appending the search path to unknown > >> > domains. > >> > >> Yes, I sort of gathered that. The questions I have are: > >> > >> Is it a defect? > >> Is it a Postfix issue? > >> Is it due to config

Re: Is this a result of reject_unknown_sender_domain ?

On Wed, April 29, 2015 20:47, Viktor Dukhovni wrote: > On Wed, Apr 29, 2015 at 06:56:44PM -0400, James B. Byrne wrote: > >> > Looks as if your resolver is appending the search path to unknown >> > domains. >> > >> >> Yes, I sort of gathered that. The questions I have are: >> >> Is it a defect? >>

Re: Is this a result of reject_unknown_sender_domain ?

On Wed, April 29, 2015 20:47, Viktor Dukhovni wrote: > On Wed, Apr 29, 2015 at 06:56:44PM -0400, James B. Byrne wrote: > >> > Looks as if your resolver is appending the search path to unknown >> > domains. >> > >> >> Yes, I sort of gathered that. The questions I have are: >> >> Is it a defect? >>

Cannot Start TLS: handshake failure

I have a basic postfix setup that's been working fine for a long time, but recently, I've been seeing errors with a number of sites: "Cannot start TLS: handshake failure" Here are some specific sites where I'm seeing this issue: SSL_connect error to 23.25.38.217 [23.25.38.217] SSL_

Re: Is this a result of reject_unknown_sender_domain ?

On Wed, Apr 29, 2015 at 06:56:44PM -0400, James B. Byrne wrote: > > Looks as if your resolver is appending the search path to unknown > > domains. > > > > Yes, I sort of gathered that. The questions I have are: > > Is it a defect? > Is it a Postfix issue? > Is it due to configuration or misconf

Re: Question wrt partial migration from old postfix to newer one on two servers

On Thu, Apr 30, 2015 at 10:43:44AM +1100, J?r?me Alet wrote: > > If you change the requirements, you can indeed deploy alternative > > solutions. > > Correct. > > If our requirements can't find a simple solution, maybe our requirements > need to be simplified. Rewriting is ultimately simpler an

Re: Question wrt partial migration from old postfix to newer one on two servers

On Wed, Apr 29, 2015 at 11:39:33PM +, Viktor Dukhovni wrote: > > If you change the requirements, you can indeed deploy alternative > solutions. Correct. If our requirements can't find a simple solution, maybe our requirements need to be simplified. Thanks again. -- Jérôme Alet - - Directio

Re: Question wrt partial migration from old postfix to newer one on two servers

On Thu, Apr 30, 2015 at 10:20:08AM +1100, J?r?me Alet wrote: > In Backend2's main.cf : > > --- CUT --- > fallback_transport = relay:[Server1-IP] > local_recipient_maps = > --- CUT --- > > In Backend2's virtual-ldap.cf (used in virtual_maps), I've modified the > LDAP filter to only return migrate

Re: Question wrt partial migration from old postfix to newer one on two servers

Hi again, On Thu, Apr 30, 2015 at 08:05:25AM +1100, Jérôme Alet wrote: > > On Wed, Apr 29, 2015 at 06:12:45PM +, Viktor Dukhovni wrote: > > > > See http://www.postfix.org/ADDRESS_REWRITING_README.html > > I'll read this again then, and try to better understand it. Thanks to a second reading o

Re: Spammer getting through despite RBL use

On Thu, Apr 30, 2015 at 08:03:42AM +0900, pe...@ixp.jp wrote: > On Apr/27.15:52:21, Viktor Dukhovni wrote: > > On Mon, Apr 27, 2015 at 03:12:04PM +, Peter Berghold wrote: > > > Apr 27 10:58:50 chicweb0 postfix/smtpd[13505]: 7DC243FC1CC: client= > > > oldmule.templefindwindow.com[23.89.2.18] >

Re: Is this a result of reject_unknown_sender_domain ?

On Wed, April 29, 2015 17:12, Noel Jones wrote: > > Looks as if your resolver is appending the search path to unknown > domains. > Yes, I sort of gathered that. The questions I have are: Is it a defect? Is it a Postfix issue? Is it due to configuration or misconfiguration? -- *** e-

Re: Postfix forward mail to other server but leaving a copy...

Am 29.04.2015 um 22:17 schrieb gilbertoferreira: Hi guys I need some help... After search for many foruns and websites through Google, I can't find out how to solve it... I have two mail servers: 1 - Pure postfix 2 - Zimbra Mail Server So, I am already have the Pure postfix server transport

Re: Is this a result of reject_unknown_sender_domain ?

On 4/29/2015 3:21 PM, James B. Byrne wrote: > I am seeing these in my maillog: > > /var/log/maillog > > Apr 29 15:17:15 inet08 postfix-p25/smtpd[18108]: NOQUEUE: reject: RCPT > from unknown[95.62.201.133]: 450 4.7.1 > : Helo command rejected: > Host not found; from=<> to= proto=SMTP > helo= This

Re: Question wrt partial migration from old postfix to newer one on two servers

Hi, On Wed, Apr 29, 2015 at 06:12:45PM +, Viktor Dukhovni wrote: > On Wed, Apr 29, 2015 at 05:45:24PM +1100, jerome alet wrote: > > > Sorry but I think it will be difficult to add more to my previous message. > > I don't understand what is missing in it. > > What is missing is detailed config

Re: Postfix forward mail to other server but leaving a copy...

Hi again... Just a complementary information: both servers has the same domain... -- View this message in context: http://postfix.1071664.n5.nabble.com/Postfix-forward-mail-to-other-server-but-leaving-a-copy-tp76521p76523.html Sent from the Postfix Users mailing list archive at Nabble.com.

Is this a result of reject_unknown_sender_domain ?

I am seeing these in my maillog: /var/log/maillog Apr 29 15:17:15 inet08 postfix-p25/smtpd[18108]: NOQUEUE: reject: RCPT from unknown[95.62.201.133]: 450 4.7.1 : Helo command rejected: Host not found; from=<> to= proto=SMTP helo= And these in my dns query log: /var/log/dnsquery.log static-133

Postfix forward mail to other server but leaving a copy...

Hi guys I need some help... After search for many foruns and websites through Google, I can't find out how to solve it... I have two mail servers: 1 - Pure postfix 2 - Zimbra Mail Server So, I am already have the Pure postfix server transport the mail messages to Zimbra Mail server, via transp

Re: What causes: User unknown in virtual mailbox table.

(resending to list) El 29/04/15 a las 19:34, Robert Chalmers escribió: Ok, my /etc/postfix/mysql-virtual-mailbox-maps.cf has: user = mailman password = xxx hosts = 127.0.0.1 dbname = mailserver query = SELECT 1 FROM virtual_users WHERE email='%s' [...] Using your syntax, I’m a little

Re: Question wrt partial migration from old postfix to newer one on two servers

On Wed, Apr 29, 2015 at 05:45:24PM +1100, jerome alet wrote: > > And yet you still have not provided a complete set of requirements > > and configuration details, while at the same time asking for > > implementation guidance that is highly dependent on how the moving > > parts fit together in your

Re: tls_policy

On Wed, Apr 29, 2015 at 03:53:00PM +0300, Birta Levente wrote: > I see many SSL_connect error for different domains which mail service hosted > at microsoft: > > Apr 28 10:32:12 srv1 postfix/smtp[18296]: SSL_connect error to > irs-ro.mail.eo.outlook.com[213.199.154.87]:25: lost connection > Apr 2

Re: What causes: User unknown in virtual mailbox table.

El 29/04/15 a las 16:25, Robert Chalmers escribió: I have the following error when trying to send mail to a virtual domain on the server. I’m afraid I can not find the source of this error. postfix/smtpd[901]: NOQUEUE: reject: RCPT from mail-yk0-f175.google.com

What causes: User unknown in virtual mailbox table.

I have the following error when trying to send mail to a virtual domain on the server. I’m afraid I can not find the source of this error. postfix/smtpd[901]: NOQUEUE: reject: RCPT from mail-yk0-f175.google.com[209.85.160.175]: 550 5.1.1 : Recipient address rejected: User unknown in virtual

Re: Conversation with x.x.x.x[x.x.x.x] timed out while sending end of data

Thank you, Wietse ja Bill for your advice and tips (and patience); we were able to resolve the issue. In fact, it was still ASA-related.

Re: tls_policy

On 29/04/2015 16:06, DTNX Postmaster wrote: On 29 Apr 2015, at 14:53, Birta Levente wrote: Hello I see many SSL_connect error for different domains which mail service hosted at microsoft: Apr 28 10:32:12 srv1 postfix/smtp[18296]: SSL_connect error to irs-ro.mail.eo.outlook.com[213.199.154.

Re: tls_policy

On 29 Apr 2015, at 14:53, Birta Levente wrote: > Hello > > I see many SSL_connect error for different domains which mail service hosted > at microsoft: > > Apr 28 10:32:12 srv1 postfix/smtp[18296]: SSL_connect error to > irs-ro.mail.eo.outlook.com[213.199.154.87]:25: lost connection > Apr 28

tls_policy

Hello I see many SSL_connect error for different domains which mail service hosted at microsoft: Apr 28 10:32:12 srv1 postfix/smtp[18296]: SSL_connect error to irs-ro.mail.eo.outlook.com[213.199.154.87]:25: lost connection Apr 28 10:32:12 srv1 postfix/smtp[18296]: 3lbZRv0VXQz1lvjB: to=, rel