1 Topic by depcadastre

  • depcadastre
  • Member
  • Offline
  • Registered: 2015-09-28
  • Posts: 54

Topic: Enable SMTPS service

==== Required information ====
- iRedMail version (check /etc/iredmail-release): 0.9.4
- Linux/BSD distribution name and version: Debian 8.2
- Store mail accounts in which backend (LDAP/MySQL/PGSQL):MySQL
- Web server (Apache or Nginx):Apache
- Manage mail accounts with iRedAdmin-Pro?No
- Related log if you're reporting an issue:
====
Hi. I tried to set up SMTPS over SSL, port 465 according to the instruction of ttp://www.iredmail.org/docs/enable.smtps.html, but it is impossible to set up Outlook 2013.

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 30,787

Re: Enable SMTPS service

*) Any error message in Outlook 2013?
*) Any related error in Postfix log file? FYI: http://www.iredmail.org/docs/file.locat … ml#postfix

3 Reply by depcadastre

  • depcadastre
  • Member
  • Offline
  • Registered: 2015-09-28
  • Posts: 54

Re: Enable SMTPS service

Error Outlook 2013:
Sending the test electronic message: It is impossible to be connected to the server of outgoing mail (SMTP). If you receive this message again, address to the administrator of the server or service provider of the Internet.

Log Postfix:
Feb 10 10:44:53 mx postfix/master[1286]: terminating on signal 15
Feb 10 10:44:59 mx postfix/master[1686]: daemon started -- version 2.11.3, configuration /etc/postfix
Feb 10 10:45:19 mx postfix/postscreen[1696]: CONNECT from [10.3.0.1]:64225 to [10.3.0.2]:25
Feb 10 10:45:19 mx postfix/postscreen[1696]: PASS OLD [10.3.0.1]:64225
Feb 10 10:45:19 mx postfix/smtpd[1697]: connect from unknown[10.3.0.1]
Feb 10 10:45:19 mx postfix/smtpd[1697]: D0ACD580073: client=unknown[10.3.0.1], sasl_method=LOGIN, sasl_username=postmaster@domain.com
Feb 10 10:45:19 mx postfix/cleanup[1712]: D0ACD580073: message-id=<>
Feb 10 10:45:19 mx postfix/qmgr[1688]: D0ACD580073: from=<postmaster@domain.com>, size=666, nrcpt=1 (queue active)
Feb 10 10:45:19 mx postfix/smtpd[1697]: disconnect from unknown[10.3.0.1]
Feb 10 10:45:32 mx postfix/smtpd[1722]: connect from mx.domain.com[127.0.0.1]
Feb 10 10:45:32 mx postfix/smtpd[1722]: 213FC580074: client=mx.domain.com[127.0.0.1]
Feb 10 10:45:32 mx postfix/cleanup[1712]: 213FC580074: message-id=<20160210074532.213FC580074@mx.domain.com>
Feb 10 10:45:32 mx postfix/smtpd[1722]: disconnect from mx.domain.com[127.0.0.1]
Feb 10 10:45:32 mx postfix/qmgr[1688]: 213FC580074: from=<postmaster@domain.com>, size=2119, nrcpt=1 (queue active)
Feb 10 10:45:32 mx amavis[1384]: (01384-01) Passed CLEAN {RelayedInternal}, MYNETS LOCAL [10.3.0.1]:64225 <postmaster@domain.com> -> <postmaster@domain.com>, Queue-ID: D0ACD580073, mail_id: P6MKG2MlBXjA, Hits: 3.49, size: 665, queued_$
Feb 10 10:45:32 mx postfix/smtp[1717]: D0ACD580073: to=<postmaster@domain.com>, relay=127.0.0.1[127.0.0.1]:10024, delay=13, delays=0.2/0/0/12, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as $
Feb 10 10:45:32 mx postfix/qmgr[1688]: D0ACD580073: removed
Feb 10 10:45:32 mx postfix/pipe[1723]: 213FC580074: to=<postmaster@domain.com>, relay=dovecot, delay=0.41, delays=0.04/0.02/0/0.35, dsn=2.0.0, status=sent (delivered via dovecot service)
Feb 10 10:45:32 mx postfix/qmgr[1688]: 213FC580074: removed
Feb 10 10:46:31 mx postfix/master[1686]: terminating on signal 15
Feb 10 10:46:34 mx postfix/master[1911]: daemon started -- version 2.11.3, configuration /etc/postfix
Feb 10 10:47:57 mx postfix/postscreen[1941]: CONNECT from [10.3.0.1]:64230 to [10.3.0.2]:25
Feb 10 10:47:57 mx postfix/postscreen[1941]: PASS OLD [10.3.0.1]:64230
Feb 10 10:47:57 mx postfix/smtpd[1942]: connect from unknown[10.3.0.1]
Feb 10 10:48:12 mx postfix/smtpd[1942]: lost connection after UNKNOWN from unknown[10.3.0.1]
Feb 10 10:48:12 mx postfix/smtpd[1942]: disconnect from unknown[10.3.0.1]
Feb 10 10:50:50 mx postfix/master[1911]: terminating on signal 15
Feb 10 10:50:55 mx postfix/master[2145]: daemon started -- version 2.11.3, configuration /etc/postfix
Feb 10 11:15:12 mx postfix/postscreen[2273]: CONNECT from [10.3.0.1]:63438 to [10.3.0.2]:25
Feb 10 11:15:12 mx postfix/postscreen[2273]: PASS OLD [10.3.0.1]:63438
Feb 10 11:15:12 mx postfix/smtpd[2274]: connect from unknown[10.3.0.1]
Feb 10 11:15:12 mx postfix/smtpd[2274]: 1A4A5580073: client=unknown[10.3.0.1], sasl_method=LOGIN, sasl_username=postmaster@domain.com
Feb 10 11:15:12 mx postfix/cleanup[2280]: 1A4A5580073: message-id=<>
Feb 10 11:15:12 mx postfix/qmgr[2147]: 1A4A5580073: from=<postmaster@domain.com>, size=666, nrcpt=1 (queue active)
Feb 10 11:15:12 mx postfix/smtpd[2274]: disconnect from unknown[10.3.0.1]
Feb 10 11:15:24 mx postfix/smtpd[2291]: connect from mx.domain.com[127.0.0.1]
Feb 10 11:15:24 mx postfix/smtpd[2291]: 510CD580074: client=mx.domain.com[127.0.0.1]
Feb 10 11:15:24 mx postfix/cleanup[2280]: 510CD580074: message-id=<20160210081524.510CD580074@mx.domain.com>
Feb 10 11:15:24 mx postfix/smtpd[2291]: disconnect from mx.domain.com[127.0.0.1]
Feb 10 11:15:24 mx postfix/qmgr[2147]: 510CD580074: from=<postmaster@domain.com>, size=2119, nrcpt=1 (queue active)
Feb 10 11:15:24 mx amavis[1385]: (01385-01) Passed CLEAN {RelayedInternal}, MYNETS LOCAL [10.3.0.1]:63438 <postmaster@domain.com> -> <postmaster@domain.com>, Queue-ID: 1A4A5580073, mail_id: 18EWwBjZz9gA, Hits: 3.49, size: 665, queued_$
Feb 10 11:15:24 mx postfix/smtp[2284]: 1A4A5580073: to=<postmaster@domain.com>, relay=127.0.0.1[127.0.0.1]:10024, delay=12, delays=0.08/0/0/12, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as$
Feb 10 11:15:24 mx postfix/qmgr[2147]: 1A4A5580073: removed
Feb 10 11:15:24 mx postfix/pipe[2292]: 510CD580074: to=<postmaster@domain.com>, relay=dovecot, delay=0.19, delays=0.05/0.01/0/0.14, dsn=2.0.0, status=sent (delivered via dovecot service)
Feb 10 11:15:24 mx postfix/qmgr[2147]: 510CD580074: removed
Feb 10 11:18:32 mx postfix/anvil[2277]: statistics: max connection rate 1/60s for (smtpd:10.3.0.1) at Feb 10 11:15:12
Feb 10 11:18:32 mx postfix/anvil[2277]: statistics: max connection count 1 for (smtpd:10.3.0.1) at Feb 10 11:15:12
Feb 10 11:18:32 mx postfix/anvil[2277]: statistics: max cache size 1 at Feb 10 11:15:12
Feb 10 11:18:34 mx postfix/master[2145]: terminating on signal 15
Feb 10 11:18:37 mx postfix/master[2490]: daemon started -- version 2.11.3, configuration /etc/postfix

4 Reply by depcadastre (edited by depcadastre 2016-02-10 16:50:10)

  • depcadastre
  • Member
  • Offline
  • Registered: 2015-09-28
  • Posts: 54

Re: Enable SMTPS service

I didn't find any suspicious errors in logs. Telnet is connected on the 25th port, on the 465th,587th port isn't present.

5 Reply by depcadastre

  • depcadastre
  • Member
  • Offline
  • Registered: 2015-09-28
  • Posts: 54

Re: Enable SMTPS service

conf file master.cf
# service type  private unpriv  chroot  wakeup  maxproc command + args
#               (yes)   (yes)   (yes)   (never) (100)
# ==========================================================================
#smtp      inet  n       -       -       -       -       smtpd
smtp      inet  n       -       -       -       1       postscreen
smtpd     pass  -       -       -       -       -       smtpd
dnsblog   unix  -       -       -       -       0       dnsblog
tlsproxy  unix  -       -       -       -       0       tlsproxy
#submission inet n       -       -       -       -       smtpd
#  -o syslog_name=postfix/submission
#  -o smtpd_tls_security_level=encrypt
#  -o smtpd_sasl_auth_enable=yes
#  -o smtpd_reject_unlisted_recipient=no
#  -o smtpd_client_restrictions=$mua_client_restrictions
#  -o smtpd_helo_restrictions=$mua_helo_restrictions
#  -o smtpd_sender_restrictions=$mua_sender_restrictions
#  -o smtpd_recipient_restrictions=
#  -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
#  -o milter_macro_daemon_name=ORIGINATING
465     inet  n       -       -       -       -       smtpd
  -o syslog_name=postfix/smtps
  -o smtpd_tls_wrappermode=yes
  -o smtpd_sasl_auth_enable=yes
  -o smtpd_reject_unlisted_recipient=no
#  -o smtpd_client_restrictions=$mua_client_restrictions
#  -o smtpd_helo_restrictions=$mua_helo_restrictions
#  -o smtpd_sender_restrictions=$mua_sender_restrictions
#  -o smtpd_recipient_restrictions=
  -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
  -o milter_macro_daemon_name=ORIGINATING
#628       inet  n       -       -       -       -       qmqpd
pickup    unix  n       -       -       60      1       pickup
cleanup   unix  n       -       -       -       0       cleanup
qmgr      unix  n       -       n       300     1       qmgr
#qmgr     unix  n       -       n       300     1       oqmgr
tlsmgr    unix  -       -       -       1000?   1       tlsmgr
rewrite   unix  -       -       -       -       -       trivial-rewrite
bounce    unix  -       -       -       -       0       bounce
defer     unix  -       -       -       -       0       bounce
trace     unix  -       -       -       -       0       bounce
verify    unix  -       -       -       -       1       verify
flush     unix  n       -       -       1000?   0       flush
proxymap  unix  -       -       n       -       -       proxymap
proxywrite unix -       -       n       -       1       proxymap
smtp      unix  -       -       -       -       -       smtp
relay     unix  -       -       -       -       -       smtp
#       -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq     unix  n       -       -       -       -       showq
error     unix  -       -       -       -       -       error
retry     unix  -       -       -       -       -       error
discard   unix  -       -       -       -       -       discard
local     unix  -       n       n       -       -       local
virtual   unix  -       n       n       -       -       virtual
lmtp      unix  -       -       -       -       -       lmtp
anvil     unix  -       -       -       -       1       anvil
scache    unix  -       -       -       -       1       scache
#

6 Reply by depcadastre (edited by depcadastre 2016-02-10 17:55:32)

  • depcadastre
  • Member
  • Offline
  • Registered: 2015-09-28
  • Posts: 54

Re: Enable SMTPS service

Strange, on the 587th port works, and on 465 isn't present.If to be connected through telnet, connection is, but doesn't output any information.
Feb 10 12:52:51 mx postfix/smtps/smtpd[1510]: connect from unknown[10.3.0.1]
Feb 10 12:53:51 mx postfix/smtps/smtpd[1510]: SSL_accept error from unknown[10.3.0.1]: lost connection
Feb 10 12:53:51 mx postfix/smtps/smtpd[1510]: lost connection after CONNECT from unknown[10.3.0.1]
Feb 10 12:53:51 mx postfix/smtps/smtpd[1510]: disconnect from unknown[10.3.0.1]

7 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 30,787

Re: Enable SMTPS service

Please try the connection with Thunderbird instead.

8 Reply by depcadastre (edited by depcadastre 2016-02-10 19:34:31)

  • depcadastre
  • Member
  • Offline
  • Registered: 2015-09-28
  • Posts: 54

Re: Enable SMTPS service

Works with Mozilla Thunderbird.

9 Reply by depcadastre

  • depcadastre
  • Member
  • Offline
  • Registered: 2015-09-28
  • Posts: 54

Re: Enable SMTPS service

I correctly understand, the 587th port - TLS, 465 - SSL. In outlook the server of incoming mail works only with TLS, with SSL doesn't work. Can therefore on the 465th port doesn't work because the server uses TLS?

10 Reply by depcadastre

  • depcadastre
  • Member
  • Offline
  • Registered: 2015-09-28
  • Posts: 54

Re: Enable SMTPS service

Hi. Respond, please.

11 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 30,787

Re: Enable SMTPS service

Did you try to setup Thunderbird with port 465?