Postfix: Out: 454 4.7.0 TLS not available due to local problem

5 posts / 0 new
Last post
#1 Fri, 02/10/2012 - 04:29
rulez22

Postfix: Out: 454 4.7.0 TLS not available due to local problem

In Postfix getting tons of these errors (it arrives to root mail), particular with Google mail servers:
==========================
Transcript of session follows.

Out: 220 mywebsite.co.uk ESMTP Postfix
In: EHLO mail-wi0-f182.google.com
Out: 250-mywebsite.co.uk
Out: 250-PIPELINING
Out: 250-SIZE 10240000
Out: 250-VRFY
Out: 250-ETRN
Out: 250-STARTTLS
Out: 250-AUTH PLAIN LOGIN
Out: 250-AUTH=PLAIN LOGIN
Out: 250-ENHANCEDSTATUSCODES
Out: 250-8BITMIME
Out: 250 DSN
In: STARTTLS
Out: 454 4.7.0 TLS not available due to local problem
In: QUIT
Out: 221 2.0.0 Bye

For other details, see the local mail logfile
==============================
What's the solution here?
Cheers

Fri, 02/10/2012 - 04:34
rulez22

Also getting loads of these:

=======================
Transcript of session follows.

Out: 220 mywebsite.co.uk ESMTP Postfix
In: EHLO multimatics.hosting24.com.au
Out: 250-mywebsite.co.uk
Out: 250-PIPELINING
Out: 250-SIZE 10240000
Out: 250-VRFY
Out: 250-ETRN
Out: 250-STARTTLS
Out: 250-AUTH PLAIN LOGIN
Out: 250-AUTH=PLAIN LOGIN
Out: 250-ENHANCEDSTATUSCODES
Out: 250-8BITMIME
Out: 250 DSN
In: STARTTLS
Out: 454 4.7.0 TLS not available due to local problem
In: MAIL FROM:
Out: 250 2.1.0 Ok
In: RCPT TO:
Out: 450 4.2.0 : Recipient address rejected:
Greylisted, see http://postgrey.schweikert.ch/help/mywebsite.co.uk.html
In: QUIT
Out: 221 2.0.0 Bye

For other details, see the local mail logfile
==========================
myuser@mywebsite.co.uk - is my real address, so is mywebsite.co.uk

Fri, 02/10/2012 - 08:40
andreychek

Howdy,

I'm not sure what the "TLS not available due to local problem" error is. You may want to look in your mail logs, /var/log/maillog or /var/log/mail.log, in order to get more details.

In your second post, you saw the notice "Recipient address rejected: Greylisted".

That just means that greylisting is active on your server.

That can be enabled or disabled in Email Messages -> Email Greylisting. We recommend using that though, as it's a great way to reduce spam.

-Eric

Tue, 02/14/2012 - 11:00
rulez22

Feb 13 21:34:34 ip-ip-ip-ip postfix/smtpd[7923]: warning: cannot get RSA certificate from file /etc/postfix/postfix.cert.pem: disabling TLS support
Feb 13 21:34:34 ip-ip-ip-ip postfix/smtpd[7923]: warning: TLS library problem: 7923:error:02001002:system library:fopen:No such file or directory:bss_file.c:355:fopen('/etc/postfix/postfix.cert.pem','r'):
Feb 13 21:34:34 ip-ip-ip-ip postfix/smtpd[7923]: warning: TLS library problem: 7923:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:357:
Feb 13 21:34:34 ip-ip-ip-ip postfix/smtpd[7923]: warning: TLS library problem: 7923:error:140DC002:SSL routines:SSL_CTX_use_certificate_chain_file:system lib:ssl_rsa.c:722:
Feb 13 21:34:34 ip-ip-ip-ip postfix/smtpd[7923]: connect from mail-ww0-f46.google.com[74.125.82.46]

Tue, 02/21/2012 - 06:06
rulez22

this was fixed with creating an SSL certificate in Webmin/Poxtfix

Topic locked