STARTTLS not working ?

This is the Mailtraq Peer Support forum. Get assistance using and managing Mailtraq, and help others solve problems too.

STARTTLS not working ?

Postby RobertvanderHulst » Fri Mar 27th, 2015 5:09am

I have enabled SSL in explicit mode recently and since that day I am seeing the following pattern a lot in my logfiles.
I also get complaints that some mails are not coming in. What could be the cause ?

Code: Select all
+ 00002156 mail-pd0-f172.google.com (209.85.192.172) [25-3-2015 0:04]
00000001 00002156 25-03-2015 00:04:13 EHLO mail-pd0-f172.google.com  --->  250-example.nl  250-STARTTLS  250-SIZE  250 XFROMIP 
00000001 00002156 25-03-2015 00:04:13 STARTTLS  --->  220 begin ssl handshake 
00000001 00002156 25-03-2015 00:04:14 Disconnected before HELO (209.85.192.172)
00000001 00002156 25-03-2015 00:04:14   ---> 
00000001 00002156 25-03-2015 00:04:14 SMTP Client Disconnected (209.85.192.172): No MAIL FROM
- 00002156



Robert van der Hulst

PS: I have disabled SSL for now to allow these messages

Mailtraq Version: 2.17.7.3560
Robert van der Hulst
User avatar
RobertvanderHulst
 
Posts: 89
Joined: Sat Sep 10th, 2005 10:54am
Location: Epe, Netherlands

Re: STARTTLS not working ?

Postby RobertvanderHulst » Tue Apr 07th, 2015 6:21am

Nobody knows why this happens ?

Robert
Robert van der Hulst
User avatar
RobertvanderHulst
 
Posts: 89
Joined: Sat Sep 10th, 2005 10:54am
Location: Epe, Netherlands

Re: STARTTLS not working ?

Postby Redkite » Fri Apr 10th, 2015 4:43am

I have had hundreds of these since implementing SSl
00000001 00000C5E 09/04/2015 23:27:30 EHLO mail-qk0-f178.google.com ---> 250-mydomain.com 250-STARTTLS 250-SIZE 250 XFROMIP
00000001 00000C5E 09/04/2015 23:27:30 STARTTLS ---> 220 begin ssl handshake
00000001 00000C5E 09/04/2015 23:27:30 Disconnected before HELO (209.85.220.178)

Did disabling the ssl stop the problem.

What about the two types of SSL Explicit and Implicit. Although i think you should only use implicit on 465.
On port 25 i have disabled it and i also use 587 for remote workers with explicit tuned on.

I also have a problem specifically with GMail not being able to send us emails which i have posted about.

Regards

neil
Redkite
Expert User
 
Posts: 104
Joined: Mon Aug 01st, 2011 4:51am

Re: STARTTLS not working ?

Postby Martin Clayton » Fri Apr 10th, 2015 8:13am

It may be worth trying https://www.checktls.com/ (the Full Receiver test to specify ports). Also, note that editing the services' system.cfg SslStrong entry may affect results - see Require Strong Encryption under the Certificate Manager notes.
User avatar
Martin Clayton
Expert User
 
Posts: 529
Joined: Sat Jan 15th, 2005 8:20am
Location: London, UK


Return to Mailtraq Support

Who is online

Users browsing this forum: Bing [Bot] and 7 guests

cron