On 17/06/24 17:16, Peter via Postfix-users wrote:
Without seeing logs and actual config settings I can only guess. One thing to keep in mind is that there's two types of TLS connection, implicit TLS and explicit TLS. Implicit TLS connects to a port dedicated to TLS connections, for submission this is the submissions (note the "s" on the end) port 465 (formerly called smtps) and is now the recommended service to submit mail to. This is also controlled by the "wrappermode" setting in master.cf for the service. Explicit TLS connects first in plain text then uses the STARTTLS command to establish a TLS session, this is how the submission (note no "s" on the end) service on port 587 works. If you have wrappermode incorrectly set in postfix, or you have the wrong setting in roundcube then roundcube may be trying to connect with implicit TLS when postfix is expecting explicit TLS or vice-versa, either one will cause a failure at or shortly after connection time.
Just to help clarify, roundcube uses a prefix of "ssl://" to indicate implicit TLS and "tls://" to indicate explicit TLS (using STARTTLS) so for the submission service (587, no wrappermode in the master.cf config) you should be using "tls://" in roundcube for the smtp_server setting and set the smtp_port to 587. For the submissions service (465, wrappermode set in master.cf) you should be using "ssl://" for smtp_server and 465 for smtp_port.
Peter _______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
