Re: [Assp-user] STARTTLS - connection randomly timeout (outlook imap error)
Just my 1 1/2 cents: I'm not sure why you needed to (or would want to) disable ssl on port 25, but setting Disable SSL on listenports: 25 will make it so that outside smtp servers communicate with you without encryption. Outside centers always deliver on port 25, and won't try 587 or any other port. On Wed, Jul 28, 2021 at 5:49 PM Mark D Montgomery II via Assp-user < assp-user@lists.sourceforge.net> wrote: > I fought with this for quite a while the other day after upgrading my > VPS from Debian 9 to 10. > It seems something must have changed with SSL handling at another > level (maybe something with a Postfix update?). > > What I ended up with: > > Network Setup: > SMTP Listen Port: 25 > SMTP Destination: 125 > SMTP Secure Listen Port: 465 > SSL Destination: 1465 > Second SMTP Listen Port: 587 > Second SMTP Destination: 1587 > Force SMTP AUTH on Second SMTP Listen Port: On > > > SSL/TLS: > How to Handle STARTTLS Request: do TLS > Disable SSL on listenports: 25 > Force TLS to Proxy on this Ports: 587 > > Client Side: > Connections to port 465: SSL/TLS > Connections to port 587: STARTTLS > > > > - Message from "Ing. Lukáš Pečínka" - > Date: Wed, 28 Jul 2021 12:10:46 +0200 > From: "Ing. Lukáš Pečínka" > Reply-To: For Users of ASSP > Subject: [Assp-user] STARTTLS - connection randomly timeout (outlook > imap error) >To: assp-user@lists.sourceforge.net > > > > Hello, > > > > I have some problem. I started ASSP with STARTTLS. Some users have > > problem with connection timeout (180s). Same with MS Outlook. Test > > message never pass and never connect on server. If I switch assp to > > TLS proxy everything works fine. After 2 days I don't know what to > > do or what I did bad. Could someone help me? Thank you. > > > > Is something to tweak? Some Timeout or connection rise/lower? > > > > I tested starttls connection in terminal via openssl - everything is > good. > > > > Listen SMTP port 25 > > > > SMTP destination 125 > > > > SMTP secure listen port 465 > > > > SSL Destination 225 > > > > second SMTP listen port 587 > > > > TLS Do TLS > > > > > > Thanks a lot > > > > -- > > S pozdravem a přáním pěkného dne | Best regards > > > > Lucas > > > > > > > > ___ > > Assp-user mailing list > > Assp-user@lists.sourceforge.net > > https://lists.sourceforge.net/lists/listinfo/assp-user > > > - End message from "Ing. Lukáš Pečínka" - > > > > -- > Mark D Montgomery II > techi...@techiem2.net > https://www.techiem2.net (Blog) > https://www.techiem2.tv (Photo Gallery/Journal) > > > > ___ > Assp-user mailing list > Assp-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/assp-user > ___ Assp-user mailing list Assp-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-user
Re: [Assp-user] STARTTLS - connection randomly timeout (outlook imap error)
I'll try changing it back and see what happens. I don't remember if I just changed it while testing or if things actually didn't work with ssl on for it. - Message from K Post - Date: Thu, 29 Jul 2021 20:39:29 -0400 From: K Post Reply-To: For Users of ASSP Subject: Re: [Assp-user] STARTTLS - connection randomly timeout (outlook imap error) To: For Users of ASSP Just my 1 1/2 cents: I'm not sure why you needed to (or would want to) disable ssl on port 25, but setting Disable SSL on listenports: 25 will make it so that outside smtp servers communicate with you without encryption. Outside centers always deliver on port 25, and won't try 587 or any other port. On Wed, Jul 28, 2021 at 5:49 PM Mark D Montgomery II via Assp-user < assp-user@lists.sourceforge.net> wrote: I fought with this for quite a while the other day after upgrading my VPS from Debian 9 to 10. It seems something must have changed with SSL handling at another level (maybe something with a Postfix update?). What I ended up with: Network Setup: SMTP Listen Port: 25 SMTP Destination: 125 SMTP Secure Listen Port: 465 SSL Destination: 1465 Second SMTP Listen Port: 587 Second SMTP Destination: 1587 Force SMTP AUTH on Second SMTP Listen Port: On SSL/TLS: How to Handle STARTTLS Request: do TLS Disable SSL on listenports: 25 Force TLS to Proxy on this Ports: 587 Client Side: Connections to port 465: SSL/TLS Connections to port 587: STARTTLS - Message from "Ing. Lukáš Pečínka" - Date: Wed, 28 Jul 2021 12:10:46 +0200 From: "Ing. Lukáš Pečínka" Reply-To: For Users of ASSP Subject: [Assp-user] STARTTLS - connection randomly timeout (outlook imap error) To: assp-user@lists.sourceforge.net > Hello, > > I have some problem. I started ASSP with STARTTLS. Some users have > problem with connection timeout (180s). Same with MS Outlook. Test > message never pass and never connect on server. If I switch assp to > TLS proxy everything works fine. After 2 days I don't know what to > do or what I did bad. Could someone help me? Thank you. > > Is something to tweak? Some Timeout or connection rise/lower? > > I tested starttls connection in terminal via openssl - everything is good. > > Listen SMTP port 25 > > SMTP destination 125 > > SMTP secure listen port 465 > > SSL Destination 225 > > second SMTP listen port 587 > > TLS Do TLS > > > Thanks a lot > > -- > S pozdravem a přáním pěkného dne | Best regards > > Lucas > > > > ___ > Assp-user mailing list > Assp-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/assp-user - End message from "Ing. Lukáš Pečínka" - -- Mark D Montgomery II techi...@techiem2.net https://www.techiem2.net (Blog) https://www.techiem2.tv (Photo Gallery/Journal) ___ Assp-user mailing list Assp-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-user - End message from K Post - -- Mark D Montgomery II techi...@techiem2.net https://www.techiem2.net (Blog) https://www.techiem2.tv (Photo Gallery/Journal) ___ Assp-user mailing list Assp-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-user
Re: [Assp-user] STARTTLS - connection randomly timeout (outlook imap error)
Yeah, with the Disable SSL setting blank and also with 25 added to the Force TLS proxy setting incoming connections just time out (unsure if it's all the time or just most of the time). Jul-29-21 21:19:31 [Worker_3] [TLS-in] [TLS-out] 209.85.218.52 TLS-Connection idle for 180 secs - timeout Jul-29-21 21:19:31 [Worker_3] [TLS-in] [TLS-out] 209.85.218.52 [SMTP Status] 451 Connection timeout, try later I'll have to test more thoroughly when I have time. - Message from K Post - Date: Thu, 29 Jul 2021 20:39:29 -0400 From: K Post Reply-To: For Users of ASSP Subject: Re: [Assp-user] STARTTLS - connection randomly timeout (outlook imap error) To: For Users of ASSP Just my 1 1/2 cents: I'm not sure why you needed to (or would want to) disable ssl on port 25, but setting Disable SSL on listenports: 25 will make it so that outside smtp servers communicate with you without encryption. Outside centers always deliver on port 25, and won't try 587 or any other port. On Wed, Jul 28, 2021 at 5:49 PM Mark D Montgomery II via Assp-user < assp-user@lists.sourceforge.net> wrote: I fought with this for quite a while the other day after upgrading my VPS from Debian 9 to 10. It seems something must have changed with SSL handling at another level (maybe something with a Postfix update?). What I ended up with: Network Setup: SMTP Listen Port: 25 SMTP Destination: 125 SMTP Secure Listen Port: 465 SSL Destination: 1465 Second SMTP Listen Port: 587 Second SMTP Destination: 1587 Force SMTP AUTH on Second SMTP Listen Port: On SSL/TLS: How to Handle STARTTLS Request: do TLS Disable SSL on listenports: 25 Force TLS to Proxy on this Ports: 587 Client Side: Connections to port 465: SSL/TLS Connections to port 587: STARTTLS - Message from "Ing. Lukáš Pečínka" - Date: Wed, 28 Jul 2021 12:10:46 +0200 From: "Ing. Lukáš Pečínka" Reply-To: For Users of ASSP Subject: [Assp-user] STARTTLS - connection randomly timeout (outlook imap error) To: assp-user@lists.sourceforge.net > Hello, > > I have some problem. I started ASSP with STARTTLS. Some users have > problem with connection timeout (180s). Same with MS Outlook. Test > message never pass and never connect on server. If I switch assp to > TLS proxy everything works fine. After 2 days I don't know what to > do or what I did bad. Could someone help me? Thank you. > > Is something to tweak? Some Timeout or connection rise/lower? > > I tested starttls connection in terminal via openssl - everything is good. > > Listen SMTP port 25 > > SMTP destination 125 > > SMTP secure listen port 465 > > SSL Destination 225 > > second SMTP listen port 587 > > TLS Do TLS > > > Thanks a lot > > -- > S pozdravem a přáním pěkného dne | Best regards > > Lucas > > > > ___ > Assp-user mailing list > Assp-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/assp-user - End message from "Ing. Lukáš Pečínka" - -- Mark D Montgomery II techi...@techiem2.net https://www.techiem2.net (Blog) https://www.techiem2.tv (Photo Gallery/Journal) ___ Assp-user mailing list Assp-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-user - End message from K Post - -- Mark D Montgomery II techi...@techiem2.net https://www.techiem2.net (Blog) https://www.techiem2.tv (Photo Gallery/Journal) ___ Assp-user mailing list Assp-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-user