> > - Troubleshooting
>
> - Quick and Dirty configuration
>
> - Client in brief.
>
> DNS and SMTP agent settings.
> tls policy table for exceptions:
> - non-dane for emergencies (assuming not an MITM attack).
> - dane-only
>
> - Server in brief.
>
> Cert chain.
> TLSA RR content.
> TLSA RR content during key rotation (of EE or TA cert).
Please follow this quick-start guide with a section that shows what
one can expect to see when Postfix uses TLSA (logging, headers,
other symptoms). This approach has worked well in the FORWARD_README
document.
Wietse
