On 31.01.21 09:56, Daniel Armando Rodriguez wrote:
Indeed, it was running chrooted but resolv.conf has the same content
=== # postconf -nf smtp_tls_protocols = TLSv1.2, !TLSv1.1, !TLSv1, !SSLv2, !SSLv3
this is superflous and not a good idea. Many servers support TLS1.0 max. !SSLv2, !SSLv3 should be enough for now.
After adjusting values the recommended way not getting connect to correo.dominio.com.ar[]:25: Connection timed out
% host -t any correo.dominio.com.ar Host correo.dominio.com.ar not found: 3(NXDOMAIN) correo.dominio.com.ar does not exist, so you can't send mail there. It is also reason why it was not resolved.
and Jan 31 09:43:42 domiinio postfix/smtp[13099]: Untrusted TLS connection established to alt2.gmail-smtp-in.l.google.com[172.217.218.26]:25: TLSv1.2 with cipher ECDHE-ECDSA-CHACHA20-POLY1305 (256/256 bits) Jan 31 09:43:42 dominio postfix/smtp[13099]: E6AA880124FF7: to=< u...@gmail.com>, relay=alt2.gmail-smtp-in.l.google.com[172.217.218.26]:25, delay=40220, delays=40215/0/4.5/0, dsn=4.7.5, status=deferred (Server certificate not trusted)
This is caused by your setting:
smtp_tls_security_level = verify
smtp, by default, is plaintext, and encryption is not fully standard, so you disable sending mail to part of internet. -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Silvester Stallone: Father of the RISC concept.
