smtpd_tls_auth_only exclude 127.0.0.1

Posted by Pol Hallen on Server Fault See other posts from Server Fault or by Pol Hallen
Published on 2013-07-05T19:45:38Z Indexed on 2013/10/25 21:58 UTC
Read the original article Hit count: 320

Filed under:
|

I configurated postfix to force uses TLS. When an external client try to send an email using this server there is not any problems. But using webmail (127.0.0.1) postfix wants TLS:

delivery temporarily suspended: TLS is required, but was not offered by host 127.0.0.1[127.0.0.1])

Which changes I need to do to master.cf?

smtp_use_tls = yes
smtp_tls_security_level = encrypt
smtpd_use_tls = yes
smtpd_tls_auth_only = yes
smtpd_tls_key_file = /etc/postfix/ssl/xxx.key
smtpd_tls_cert_file = /etc/postfix/ssl/xxx.crt
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
smtpd_tls_session_cache_database = btree:${queue_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${queue_directory}/smtp_scache

© Server Fault or respective owner

Related posts about postfix

Related posts about tls