Hello,
I would like to know if it's possible to use multiple certificates/keys with
opensmtpd
domain.com has MX mx.domain.comacme.com has MX mx.acme.com
When a clients (remote mta such as gmail) connects to my server, my opensmtpd
should send the according certificate.Something like virtual hosts
On 05/13/17 17:55, Mik J wrote:
Hello,
I would like to know if it's possible to use multiple
certificates/keys with opensmtpd
domain.com has MX mx.domain.com
acme.com has MX mx.acme.com
When a clients (remote mta such as gmail) connects to my server, my
opensmtpd should send the according
Thank you Edgar,You wrote multiple IP adresses. Does it mean that 1 IP address
= 1 certificate ?Can't be do 1 IP address = x certificates ?
Le Dimanche 14 mai 2017 1h46, Edgar Pettijohn a
écrit :
On 05/13/17 17:55, Mik J wrote:
Hello,
I would like to know if it's possibl
Le 14/05/2017 à 09:59, Mik J a écrit :
> Thank you Edgar,
> You wrote multiple IP adresses. Does it mean that 1 IP address = 1
> certificate ?
> Can't be do 1 IP address = x certificates ?
No, you can do 1 IP = x certs, thanks to SNI. I do that, my conf:
pki domain1.com certificate "/etc/smtpd/t
On 05/14/17 07:20, Bruno Pagani wrote:
Le 14/05/2017 à 09:59, Mik J a écrit :
Thank you Edgar,
You wrote multiple IP adresses. Does it mean that 1 IP address = 1
certificate ?
Can't be do 1 IP address = x certificates ?
No, you can do 1 IP = x certs, thanks to SNI. I do that, my conf:
p
Le 14/05/2017 à 15:45, Edgar Pettijohn a écrit :
> On 05/14/17 07:20, Bruno Pagani wrote:
>>
>> Le 14/05/2017 à 09:59, Mik J a écrit :
>>
>>> Thank you Edgar,
>>> You wrote multiple IP adresses. Does it mean that 1 IP address = 1
>>> certificate ?
>>> Can't be do 1 IP address = x certificates ?
>>
Hello Bruno, Edgar,
Thank you for sharing
You wrote domain1.com and domain2.com but you don't use them there afterpki
domain1.com certificate "/etc/smtpd/tls/domain1.com.crt"
pki domain1.com key "/etc/smtpd/tls/domain1.com.key"
pki domain2.com certificate "/etc/smtpd/tls/domain2.com.crt"
pki do
Hi,
Le 15/05/2017 à 15:46, Mik J a écrit :
> Hello Bruno, Edgar,
>
> Thank you for sharing
>
> You wrote domain1.com and domain2.com but you don't use them there after
> pki domain1.com certificate "/etc/smtpd/tls/domain1.com.crt"
> pki domain1.com key "/etc/smtpd/tls/domain1.com.key"
> pki domain
Hello Bruno,Thank you for these explanations.
Le Lundi 15 mai 2017 16h11, Bruno Pagani a
écrit :
Hi,
Le 15/05/2017 à 15:46, Mik J a écrit :
Hello Bruno, Edgar,
Thank you for sharing
You wrote domain1.com and domain2.com but you don't use them there after pki
domain1.co
Hello Bruno, Edgar,
I'm coming back regarding this topic because I didn't make it work.
Depending on the fqdn I need opensmtpd to reply with the right certificate.
My configurationpki domain1.com certificate "/etc/smtpd/tls/domain1.com.crt"
pki domain1.com key "/etc/smtpd/tls/domain1.com.key"
Le 27/06/2017 à 22:56, Mik J a écrit :
> Hello Bruno, Edgar,
>
> I'm coming back regarding this topic because I didn't make it work.
>
> Depending on the fqdn I need opensmtpd to reply with the right
> certificate.
>
>
>
> My configuration
> pki domain1.com certificate "/etc/smtpd/tls/domain1.com.c
Hello Bruno,
You are right I used a similar command without -servernameWith this option it
seems to work correctly.
Now, I will debug why Gmail has a problem with one certificate and not the
other.
Thank you
Le Mercredi 28 juin 2017 9h47, Bruno Pagani a
écrit :
Le 27/06/2017 à 22:56
12 matches
Mail list logo
