1 (edited by dcihon 2021-07-16 22:31:56)

Topic: problem with new cert install from zero ssl

==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
iRedMail version (check /etc/iredmail-release): 1.1
- Deployed with iRedMail Easy or the downloadable installer? Downloadable
- Linux/BSD distribution name and version: Debian 10
- Store mail accounts in which backend (LDAP/MySQL/PGSQL):  MySQL
- Web server (Apache or Nginx): Nginx
- Manage mail accounts with iRedAdmin-Pro? NO
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.

I have installed a new cert from Zero SSL and I am getting errors in my postmaster emails it seems like with every email that is sent to my server.
The error I am seeing is this:
out: 454 4.7.0 TLS not available due to local problem.

I know I have done something wrong but I don't know what.

Also my roundcube doesn't start. Not sure if this is the same problem.

Mail seems to be coming in fine but I keep getting these emails to postmaster.  I have not tried to send any mail yet.

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2

Re: problem with new cert install from zero ssl

Seems you didn't configure Postfix to use correct cert and private key files. Please double check.
Also, check postfix log file when first connection comes in, i expect Postfix logs some error about the cert.

3

Re: problem with new cert install from zero ssl

This is what I see after restarting postfix and looking at the mail.log file.

Jul 29 09:13:38 mx postfix/dnsblog[1271]: addr 2.58.148.110 listed by domain zen.spamhaus.org as 127.0.0.3
Jul 29 09:13:44 mx postfix/postscreen[1269]: DNSBL rank 3 for [2.58.148.110]:33527
Jul 29 09:13:44 mx postfix/postscreen[1269]: DISCONNECT [2.58.148.110]:33527
Jul 29 09:15:30 mx postfix/postfix-script[1597]: stopping the Postfix mail system
Jul 29 09:15:30 mx postfix/postfix-script[1606]: waiting for the Postfix mail system to terminate
Jul 29 09:15:30 mx postfix/master[13985]: terminating on signal 15
Jul 29 09:15:32 mx postfix/postqueue[2016]: fatal: Queue report unavailable - mail system is down
Jul 29 09:15:33 mx postfix/postfix-script[2296]: warning: symlink leaves directory: /etc/postfix/./makedefs.out
Jul 29 09:15:33 mx postfix/postfix-script[2498]: starting the Postfix mail system
Jul 29 09:15:33 mx postfix/master[2500]: daemon started -- version 3.4.14, configuration /etc/postfix

4

Re: problem with new cert install from zero ssl

Check postfix log file when first connection comes in, i expect Postfix logs some error about the cert.