Bonjour Markus,
Things are working but without SSL.
I will have a look and come back to you.
Thx
Le mercredi 8 février 2017 à 00:31:08, vous écriviez :
> Dear Thierry,
> (I'm omitting the remainder of your post because the below has a
> separate root cause from what has been assumed.)
Dear Thierry,
(I'm omitting the remainder of your post because the below has a
separate root cause from what has been assumed.)
>[...]
> This morning logs:
>
> Feb 07 05:50:13 doveadm: Error: Corrupted SSL parameters file in
state_dir: ssl-parameters.dat - disabling SSL 360
> Feb 07 05:50:13
Bonjour Markus,
> - Have you checked that port 12345 as specified below is open/forwarded
> and actually /used/ by dovecot (e.g., use "netstat -tulpn|grep dovecot")?
Yes of course:
tcp0 0 0.0.0.0:12345 0.0.0.0:* LISTEN
22025/dovecot
tcp6 0
Dear Thierry,
- Have you checked that port 12345 as specified below is open/forwarded
and actually /used/ by dovecot (e.g., use "netstat -tulpn|grep dovecot")?
- Did you retrace your steps and have you verified that synchronisation
works with ssl disabled?
- Did you verify your certificate files
Hi Aki,
I do not have any error message but (on both server):
doveadm replicator status '*'
doveadm(root): Fatal: net_connect_unix(/var/run/dovecot/replicator-doveadm)
failed: Connection refused
Thx
Le vendredi 3 février 2017 à 17:09:52, vous écriviez :
> Please keep responses in list. rm
Please keep responses in list. rm -f
/var/lib/dovecot/ssl-parameters.dat, i think it was in that dir.
On 2017-02-03 17:00, Thierry wrote:
Hi,
I have removed the '<' :
ssl_client_ca_file = /etc/ssl/certs/GandiCA2.pem
But now:
doveadm: Error: Corrupted SSL parameters file in state_dir:
Yes. The ssl_client_ca_file is not actually expecting <, just file name.
Aki
On 2017-02-03 15:13, Thierry wrote:
Hi,
I have made change:
ssl_protocols = !SSLv2 !SSLv3
ssl = required
verbose_ssl = no
ssl_key =
Hello,
On 02/03/2017 08:51 AM, Thierry wrote:
Hello,
Still working with my
Hi,
I have made change:
ssl_protocols = !SSLv2 !SSLv3
ssl = required
verbose_ssl = no
ssl_key = Hello,
> On 02/03/2017 08:51 AM, Thierry wrote:
>> Hello,
>>
>> Still working with my dsync pb.
>> I have done a clone (vmware) of my email server.
>> Today I have two strictly identical
Bonjour Mike,
I have made the change from 'ssl_ca =' tp 'ssl_client_ca_file =' but
now I do have:
Error: sync: Couldn't initialize SSL context: Can't load CA certs from
directory : error:02001024:system library:fopen:File name too long
thx
Le vendredi 3 février 2017 à 11:34:43, vous
Hello,
On 02/03/2017 08:51 AM, Thierry wrote:
Hello,
Still working with my dsync pb.
I have done a clone (vmware) of my email server.
Today I have two strictly identical emails servers (server1
(main) and server2 (bck) (except IP, hostname and mail_replica).
The ssl config on my
10 matches
Mail list logo