Okay, Viktor! I executed these commands and got this result:
$ dnsname=mailserver.mail.lan
$ rm certkey.pem
rm: Unable to delete 'certkey.pem': No such file or directory
user@mailserver:~$ openssl req -new -nodes -newkey rsa:2048 -keyout /dev/stdout
\
-config <(printf 'distinguished_name=dn\n[dn]\nprompt=yes\n') -x509
-subj / -days 3653 \
-addext "basicConstraints = critical,CA:FALSE" \
-addext "extendedKeyUsage = serverAuth" \
-addext "subjectAltName = DNS:$dnsname" >> certkey.pem
Generating a RSA private key
......+++++
..............................+++++
writing new private key to '/dev/stdout'
-----
But the 465/SSL mail is still not accepted.
The PF logs still have the same lines:
Apr 16 17:55:46 mailserver postfix/smtps/smtpd[1512]: connect from
unknown[192.168.8.144]
Apr 16 17:55:46 mailserver postfix/smtps/smtpd[1512]: SSL_accept error from
unknown[192.168.8.144]: Connection reset by peer
Apr 16 17:55:46 mailserver postfix/smtps/smtpd[1512]: lost connection after
CONNECT from unknown[192.168.8.144]
Apr 16 17:55:46 mailserver postfix/smtps/smtpd[1512]: disconnect from
unknown[192.168.8.144] commands=0/0
What else do I need to do?
--
<[email protected]>
_______________________________________________
Postfix-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
