hello all We have a RHEL 7 based server running monitoring software consisting of Groundwork Monitoring Software, which includes Nagios , Nedi, and other tools. This server is set up with TLS enabled and it uses a script to send email to any SMTP server that we choose. I have an SMTP server set up with Postfix version 2.10.1. Whenever I try to send mail from the monitoring server to this postfix based SMTP server, using TLS, I get the following strange errors in the maillog of the postfix server:
330448 Dec 7 20:39:21 mailer postfix/smtpd[12238]: connect from unknown[X.X.X.50] 330449 Dec 7 20:39:21 mailer postfix/smtpd[12238]: C9E03120BCF: client=unknown[X.X.X.50] 330450 Dec 7 20:39:21 mailer postfix/smtpd[12242]: connect from unknown[X.X.X.75] 330451 Dec 7 20:39:21 mailer postfix/smtpd[12242]: setting up TLS connection from unknown[ X.X.X.75] 330452 Dec 7 20:39:21 mailer postfix/smtpd[12242]: unknown[X.X.X.75]: TLS cipher list "aNULL:-aNULL:ALL:+RC4:@STRENGTH" 330453 Dec 7 20:39:21 mailer postfix/smtpd[12238]: disconnect from unknown[X.X.X.50] 330454 Dec 7 20:39:21 mailer postfix/smtpd[12242]: SSL_accept:before/accept initialization 330455 Dec 7 20:39:21 mailer postfix/smtpd[12242]: SSL_accept:SSLv3 read client hello A 330456 Dec 7 20:39:21 mailer postfix/smtpd[12242]: SSL_accept:SSLv3 write server hello A 330457 Dec 7 20:39:21 mailer postfix/smtpd[12242]: SSL_accept:SSLv3 write certificate A 330458 Dec 7 20:39:21 mailer postfix/smtpd[12242]: SSL_accept:SSLv3 write key exchange A 330459 Dec 7 20:39:21 mailer postfix/smtpd[12242]: SSL_accept:SSLv3 write server done A 330460 Dec 7 20:39:21 mailer postfix/smtpd[12242]: SSL_accept:SSLv3 flush data 330461 Dec 7 20:39:21 mailer postfix/smtpd[12242]: SSL_accept:SSLv3 read client certificate A 330462 Dec 7 20:39:21 mailer postfix/smtpd[12242]: SSL3 alert read:fatal:unknown CA 330463 Dec 7 20:39:21 mailer postfix/smtpd[12242]: SSL_accept:failed in SSLv3 read client key exchange A 330464 Dec 7 20:39:21 mailer postfix/smtpd[12242]: SSL_accept error from unknown[X.X.X.75]: 0 330465 Dec 7 20:39:21 mailer postfix/smtpd[12242]: warning: TLS library problem: 12242:error:14094418:SSL routines:ssl3_read_bytes:tlsv1 alert unknown ca:s3_pkt.c:1493:SSL alert number 48: 330466 Dec 7 20:39:21 mailer postfix/smtpd[12242]: lost connection after STARTTLS from unknown[X.X.X.75] 330467 Dec 7 20:39:21 mailer postfix/smtpd[12242]: disconnect from unknown[X.X.X.75] I have substituted our IP addresses with X's for security purposes. Any suggestions on how to fix this issue? It's preventing us from sending mail from the monitoring server to the SMTP Server. The ONLY way I can send the mail is to EXPLICITLY tell the send email script to not use TLS when sending the mail to the SMTP server. Thanks Sean
