Aug 5, 2024: iRedMail-1.7.1 has been released.

**lug** · 2018-01-29 18:35:32

lug
Member
Offline

Registered: 2016-12-07
Posts: 147

Topic: How to allow TLS on port 25 (recieve emails from other mail servers)

==== Required information ====
- iRedMail version (check /etc/iredmail-release):
- Linux/BSD distribution name and version:
- Store mail accounts in which backend (LDAP/MySQL/PGSQL):
- Web server (Apache or Nginx):
- Manage mail accounts with iRedAdmin-Pro?
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
====

Hello,

is it possible to let the iredmail server recieve emails on port 25 via tls?
without authentication, because the mails come from other mail servers, but I also don't want on open relay, so just accept mails for the mailserver itself.

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

**filipe.mota** · 2018-01-31 00:47:38

filipe.mota
Member
Offline

Registered: 2016-04-20
Posts: 16

Re: How to allow TLS on port 25 (recieve emails from other mail servers)

If are you use Webmin to manage your sever, you can change this option on Server -> Postfix -> SMTP Authentication And Encryption.

**ZhangHuangbin** · 2018-01-31 16:30:42

ZhangHuangbin
iRedMail Developers
Offline

Registered: 2009-05-06
Posts: 31,163

Re: How to allow TLS on port 25 (recieve emails from other mail servers)

Why not use port 587 with TLS? Leave port 25 for incoming emails (from other mail servers), not end users.

**lug** · 2018-01-31 17:08:52

lug
Member
Offline

Registered: 2016-12-07
Posts: 147

Re: How to allow TLS on port 25 (recieve emails from other mail servers)

Yes, normal users use Port 587, but incoming mails from other mail servers should be transmitted encrypted on port 25 also, if that is even possible.

**ZhangHuangbin** · 2018-01-31 21:58:14

ZhangHuangbin
iRedMail Developers
Offline

Registered: 2009-05-06
Posts: 31,163

Re: How to allow TLS on port 25 (recieve emails from other mail servers)

Make sure you have "smtpd_tls_security_level = may" in Postfix /etc/postfix/main.cf, then Postfix will announce STARTTLS support to other mail servers when they connect.

Aug 5, 2024: iRedMail-1.7.1 has been released.

How to allow TLS on port 25 (recieve emails from other mail servers)

Posts: 5

1 Topic by lug 2018-01-29 18:35:32

Topic: How to allow TLS on port 25 (recieve emails from other mail servers)

2 Reply by filipe.mota 2018-01-31 00:47:38

Re: How to allow TLS on port 25 (recieve emails from other mail servers)

3 Reply by ZhangHuangbin 2018-01-31 16:30:42

Re: How to allow TLS on port 25 (recieve emails from other mail servers)

4 Reply by lug 2018-01-31 17:08:52

Re: How to allow TLS on port 25 (recieve emails from other mail servers)

5 Reply by ZhangHuangbin 2018-01-31 21:58:14

Re: How to allow TLS on port 25 (recieve emails from other mail servers)

Posts: 5