On Sun, June 7, 2009 9:04 am, W B Hacker wrote: > Check your on-box docs for the Exim installed. They probably point you to > a > Debian+Exim site and support list. That place will have more specific > information that doesn't often show up here on the 'generic' Exim list. >
Ok, a little more progress....I think. I did go back to the debian readme's etc to figure out it's little dependencies and after reading it again, it's becoming a little clearer. > Your output should not look *quite* like that - we are using > tls_on_connect on > 587 - (akin to SSLv3 - different set-up handshakes than TLS). > > But you get the idea - your implementation has not turned-on the > 'submission' > port at 587 *at all*. The output I get in /var/log/exim4/mainlog now when restarting exim is: 2009-06-08 07:12:40 exim 4.69 daemon started: pid=29891, -q30m, listening for SMTP on port 25 (IPv6 and IPv4) and for SMTPS on port 587 (IPv6 and IPv4) port 465 (IPv6 and IPv4) 465 is in there since I am supporting MS Outlook users *sigh* Here is how I got it going based on my debian install. I know there is a debian specific list, but in an effort to provide followup to the existing thread for future users, I'll toss it in here. 1. Add the following to /etc/default/exim4 SMTPLISTENEROPTIONS='-oX 587:465:25 -oP /var/run/exim4/exim.pid' 2. I created /etc/exim4/conf.d/main/000_localmacros , based on the readme's, and have the following in there at this point: smtp_enforce_sync = false tls_on_connect_ports=465:587 MAIN_TLS_ENABLE = true Once I got the additional ports online, I started getting the following error, so I added the smtp_enforce_sync line: 2009-06-08 06:42:18 SMTP protocol synchronization error (input sent without waiting for greeting): rejected connection from H=[32.175.198.119] input="\026\003\001" After that, I started getting the error 2009-06-08 07:14:31 TLS error on connection from [32.175.198.119] (gnutls_handshake): A TLS packet with unexpected length was received. I changed my device (iPhone) to use port 587 but it was using "MDF Challenge-Responce." I changed that to "Password" and now no longer get the error. However, since this last change to "Password" the phone no longer presents the error "Unable to send mail." It just goes through the connection process and leaves the mail in the outbox. The following error continues to occur each time I try and send 2009-06-08 07:14:38 no IP address found for host mobile-032-175-198-119.mycingular.net (during SMTP connection from [32.175.198.119]) I know this was talked about early on and Bill mentioned the following: "- NOT ENFORCE forward/reverse lookup on port 587, where your own user base attaches to submit mail. These will almost always be coming from a LAN, dial-up, *dsl broadband, hence will almost NEVER have a valid PTR RR or match forward/reverse lookup." I've not found the proper syntax to add to an acl to prevent this, yet. In the end, the original scenario still stands, though I think I've made "some" progress. Any additional thoughts? Of course, thanks again for the help. Peace, Troy -- ## List details at http://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
