Am 22.02.24 um 15:58 schrieb Wietse Venema via Postfix-users:
michaelof--- via Postfix-users:
2024-02-22T13:56:15.715392+01:00 vserver postfix/submission/smtpd[150038]: connect
from <FAILED: sender-dns-name[IPv4]>
2024-02-22T13:56:15.715607+01:00 vserver postfix/submission/smtpd[150038]: improper
command pipelining after CONNECT from <FAILED: sender-dns-name[IPv4]>:
\026\003\001\001
\001\000\001\034\003\003o\365\274\337\000\246\346\341\276\270\237\233\021p\314S\312\371\3149\231\202d\201?\241\332\357\214\330\313\301
\255\357\251\234m\024\225\250Yx\344oa\207\342p\354\0261B\347\223m\224Q\td\276n:#\n\000>\023\002\023\003\023\001\300,\3000\000\237\314\251\314\250\314\252\300+\300/
2024-02-22T13:56:15.715853+01:00 vserver postfix/submission/smtpd[150038]: disconnect
from <FAILED: sender-dns-name[IPv4]> commands=0/0
Configure the client to onnect to port 465 instead of 578.
With Postfix, uncomment the smtps(submissions) service in the Postfix
master.cf file. It should have the same "-o" options lines as the
submission service, plus a line that says "-o smtpd_tls_wrappermode=yes".
Then execute the command "postfix reload".
You may need to open port 465 with a firewall rule.
Wietse
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
Thank you so much for answering, Wietse!
Followed your recommendations, master.cf for submission and smtps now looks as
follows:
submission inet n - - - - smtpd
-o syslog_name=postfix/submission
-o smtpd_tls_security_level=encrypt
-o smtpd_sasl_auth_enable=yes
-o smtpd_sasl_type=dovecot
-o smtpd_sasl_path=private/auth
-o smtpd_sasl_security_options=noanonymous
-o smtpd_sender_login_maps=mysql:/etc/postfix/mysql-email2email.cf
-o smtpd_sender_restrictions=reject_sender_login_mismatch
-o smtpd_sasl_local_domain=$myhostname
-o smtpd_client_restrictions=permit_sasl_authenticated,reject
-o
smtpd_recipient_restrictions=reject_non_fqdn_recipient,reject_unknown_recipient_domain,permit_sasl_authenticated,reject
smtps inet n - n - - smtpd
-o syslog_name=postfix/smtps
-o smtpd_tls_wrappermode=yes
-o smtpd_tls_security_level=encrypt
-o smtpd_sasl_auth_enable=yes
-o smtpd_sasl_type=dovecot
-o smtpd_sasl_path=private/auth
-o smtpd_sasl_security_options=noanonymous
-o smtpd_sender_login_maps=mysql:/etc/postfix/mysql-email2email.cf
-o smtpd_sender_restrictions=reject_sender_login_mismatch
-o smtpd_sasl_local_domain=$myhostname
-o smtpd_client_restrictions=permit_sasl_authenticated,reject
-o
smtpd_recipient_restrictions=reject_non_fqdn_recipient,reject_unknown_recipient_domain,permit_sasl_authenticated,reject
Opened smtps service in firewalld.
Changed email user config for testing in Thunderbird from port 578 to 465, and from
"STARTTLS" to "SSL/TLS". Sending from Thunderbird works at once.
Sending from NVR still fails, new msgs in log:
2024-02-22T17:49:57.074140+01:00 vserver postfix/smtps/smtpd[165894]: connect from
<FAILED: sender-dns-name[IPv4]>
2024-02-22T17:49:57.177663+01:00 vserver postfix/smtps/smtpd[165894]: warning:
<FAILED: sender-dns-name[IPv4]> : SASL LOGIN authentication failed: Invalid
authentication mechanism
2024-02-22T17:49:57.215718+01:00 vserver postfix/smtps/smtpd[165894]: NOQUEUE: reject: RCPT from <FAILED:
sender-dns-name[IPv4]> : 554 5.7.1 <<FAILED: sender-dns-name[IPv4]> >: Client host rejected: Access
denied; from=<sender email address> to=<rcpt email address> proto=ESMTP helo=<dvrdvs>
2024-02-22T17:49:57.225190+01:00 vserver postfix/smtps/smtpd[165894]: lost connection
after RCPT from <FAILED: sender-dns-name[IPv4]>
2024-02-22T17:49:57.225497+01:00 vserver postfix/smtps/smtpd[165894]: disconnect from
<FAILED: sender-dns-name[IPv4]> ehlo=1 auth=0/1 mail=1 rcpt=0/1 commands=2/4
Any idea what's wrong or missing?
Thanks in advance,
Michael
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org