This forum uses cookies
This forum makes use of cookies to store your login information if you are registered, and your last visit if you are not. Cookies are small text documents stored on your computer; the cookies set by this forum can only be used on this website and pose no security risk. Cookies on this forum also track the specific topics you have read and when you last read them. Please confirm whether you accept or reject these cookies being set.

A cookie will be stored in your browser regardless of choice to prevent you being asked this question again. You will be able to change your cookie settings at any time using the link in the footer.

SMTPTLS port 587 Close after fresh Install
#1
[Not Solved] SMTPTLS port 587 Close after fresh Install
Is there a solution to this, I have observed that after installing some SSL certificates from the module, port 443 no longer appears closed, but this remains closed, is there a solution and on the other hand, SSL certificates also affect the sending of emails, or that is not implemented yet


Attached Files Thumbnail(s)
   
Reply
Thanks given by:
#2
[Not Solved] RE: SMTPTLS port 587 Close after fresh Install
(06-05-2024, 08:47 PM)franmm25 Wrote: Is there a solution to this, I have observed that after installing some SSL certificates from the module, port 443 no longer appears closed, but this remains closed, is there a solution and on the other hand, SSL certificates also affect the sending of emails, or that is not implemented yet

franmm25,

This port will remain closed until you manually setup postfix/dovecot with TLS cert. This is not a bug or issue.
-Jettaman-

NEW: Sentora v.2.0.1 has been released!!!

Sentora's quick recovery depends on community support and donations. We need to stand as one and help Sentora into the future.

Donate HERE and do your part. We thank you for your support.
Reply
Thanks given by:
#3
[Not Solved] RE: SMTPTLS port 587 Close after fresh Install
I make this changes

=================
Dovecot (dovecot.cnf)
=================
# SSL configuration - Begin
#ssl
= yes
ssl_cert = </etc/letsencrypt/live/test.com/fullchain.pem
ssl_key = </etc/letsencrypt/live/test.com/privkey.pem
# Disable SSLV3 - Poodle
ssl_protocols = !SSLv2 !SSLv3
# SSL configuration - End

=================
Postfix (main.cf)
=================

smtp_use_tls = yes
smtpd_use_tls = yes
smtp_tls_note_starttls_offer = yes

smtpd_tls_security_level = may
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
smtp_tls_session_cache_database = btree:$data_directory/smtp_tls_session_cache

smtpd_tls_cert_file = /etc/letsencrypt/live/test.com/fullchain.pem
smtpd_tls_key_file = /etc/letsencrypt/live/test.com/privkey.pem


But continue with the port 587 closed, restar the services without problem, but i don´t know if its necessary more changes, regards
Reply
Thanks given by:
#4
[Not Solved] RE: SMTPTLS port 587 Close after fresh Install
Run this test and other tests with 100% results all OK with TLS:

https://www.checktls.com/TestReceiver.

But port 587 continues to show as closed. I don't understand this situation. Can you help with this configuration?, Regards.
Reply
Thanks given by:
#5
[Not Solved] RE: SMTPTLS port 587 Close after fresh Install
I think there is a problem with the SSL certificates generated by the SSL module. In my case, to fix the situation, I needed to change the following:

For Postfix:

Quote:Edit main.cf and master.cf

In main.cf:


Quote:smtp_use_tls = yes
smtpd_use_tls = yes
smtp_tls_note_starttls_offer = yes

smtpd_tls_security_level = may
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
smtp_tls_session_cache_database = btree:$data_directory/smtp_tls_session_cache

smtpd_tls_cert_file = /etc/letsencrypt/live/domain.com/fullchain.pem
smtpd_tls_key_file = /etc/letsencrypt/live/domain.com/privkey.pem


The SSL certificates created inside

Quote:/var/sentora/hostdata/zadmin/ssl/sencrypt/letsencrypt/domain.com

Not work with Postfix. I needed to install `certbot` on Ubuntu to create and regenerate SSL certificates in the specified path, adding "domain.com (your domain" and "mail.domain.com".

Note that Apache needs to be stopped during the installation.

To fix port 587, add these two lines inside `master.cf` if you want to use both ports simultaneously, or select the port you want:

Quote:smtp inet n - n - - smtpd
587 inet n - y - - smtpd


Also, you need to configure Dovecot with the same paths as in Postfix, need edit dovecot2.conf :

Quote:ssl = yes
ssl_cert = </etc/letsencrypt/live/domain.com/fullchain.pem
ssl_key = </etc/letsencrypt/live/domain.com/privkey.pem


When I ran the test on https://www.checktls.com/TestReceiver, everything worked 100%.

I don’t know if this is the best approach for Sentora, but support told me it is the best way to fix this issue. At the moment, I haven't found another solution, and this works perfectly. Ideally, everything should be activated automatically from Sentora, in my opinion.

Additionally, I have noticed that sometimes the SSL module fails to renew certificates, and other times it doesn’t. I think it is necessary to address these issues.

Regards.
Reply
Thanks given by:
#6
[Not Solved] RE: SMTPTLS port 587 Close after fresh Install
That is how I did it for postfix also, but mine is using my main domain.com certs. I'l have to look into how I did it.
-TGates - Project Council

SEARCH the Forums or read the DOCUMENTATION before posting!
Support Sentora and Donate: HERE

Find my support or modules useful? Donate to TGates HERE
Developers and code testers needed!
Contact TGates for more information
Reply
Thanks given by:
#7
[Not Solved] RE: SMTPTLS port 587 Close after fresh Install
Hey! I see you're struggling with port 587 after SSL installation. Make sure your Postfix and Dovecot configs are spot on. You might need to add the right SSL certificates to both config files. Don’t forget to restart the services after making changes. Let me know how it goes!
Reply
Thanks given by:


Possibly Related Threads…
Thread Author Replies Views Last Post
Sentoa v 2 install script. kevwebbie 2 34 11 hours ago
Last Post: TGates
Installed fresh on ubuntu 20 and dns not working cezars 5 357 11-28-2024, 01:24 PM
Last Post: Me.B
\debian 12 install sript? kevwebbie 1 635 08-20-2024, 07:45 AM
Last Post: TGates

Forum Jump:


Users browsing this thread: 1 Guest(s)