Hey,like I wrote in my follow-up mail I already figured out that ssl termination won't work.
This is my configuration now:
frontend ft_smtps
bind xxx.xxx.42.4:465
timeout client 1m
log global
option tcplog
default_backend bk_postfix_smtps
backend bk_postfix_smtps
option tcp-check
log global
option tcplog
timeout server 1m
timeout connect 5s
server mailbackend mail:10464 send-proxy
I didn't add the "check" for now because that would just spam the log. I
tried it and haproxy reports the backend as up. However, it still
doesn't work.
This is the postfix log:Aug 31 09:52:47 vmmailproxy2 postfix-from-user/smtpd[2416]: warning: dict_nis_init: NIS domain name not set - NIS lookups disabled Aug 31 09:52:47 vmmailproxy2 postfix-from-user/smtpd[2416]: connect from atrbg13.informatik.tu-muenchen.de[xxx.xxx.42.153] Aug 31 09:52:49 vmmailproxy2 postfix-from-user/smtpd[2416]: SSL_accept error from mailclient[xxx.xxx.42.153]: lost connection Aug 31 09:52:49 vmmailproxy2 postfix-from-user/smtpd[2416]: lost connection after CONNECT from mailclient[xxx.xxx.42.153] Aug 31 09:52:49 vmmailproxy2 postfix-from-user/smtpd[2416]: disconnect from mailclient[xxx.xxx.42.153]
This is the haproxy log:Aug 31 09:49:15 haproxy haproxy[7727]: message repeated 3 times: [ xxx.xxx.42.153:36621 [31/Aug/2015:09:48:58.409] ft_smtps bk_postfix_smtps/mailbackend 1/0/17268 0 -- 0/0/0/0/0 0/0] Aug 31 09:52:49 vmrbg48 haproxy[7748]: xxx.xxx.42.153:36624 [31/Aug/2015:09:52:47.030] ft_smtps bk_postfix_smtps/mailbackend 1/1/2480 0 -- 0/0/0/0/0 0/0
Best, Luke
smime.p7s
Description: S/MIME Cryptographic Signature
