mail. and smtp.
Hi, it seems i have all the options in whm for mail configured but when i go to cpanel i dont see smtp.xxxxx.xxx or mail.xxxxx.xxx on the SSL side. I do see mail.xxxx.xxx on the insecure side of the configuration helper page for each account.
I am trying to connect with my mail client (everdesk) but i have tried
outgoing:
465
site.com
mail.site.com
smpt.site.com
587
site.com
mail.site.com
smpt.site.com
STARTTLS
465
site.com
mail.site.com
smpt.site.com
incoming:
995 SSL
site.com
mail.site.com
995 TLS
site.com
mail.site.com
STARTTLS
995
site.com
mail.site.com
but it wont connect.. socket error 10060 help please :)
-
Hi @durangod Do you have an SSL added for mail. and smtp.? 0 -
are you talking about the cert screen for whm that shows what is green? Under manage service ssl certs i have the following certs installed ftp server cloudflare cert calendar cpanel webdisk webmail and whm serices cloudflare cert dovecot mail server cloudflare cert exim smtp server cloudflare cert also just noticed that in my security advisor it shows that outbound smpt connections are restricted. 0 -
Hi @durangod The SMTP restrictions are in relation to WHM>>Security Center >>SMTP Restrictions: "This feature prevents users from bypassing the mail server to send mail, a common practice used by spammers. It will allow only the MTA, mailman, and root to connect to remote SMTP servers." It wouldn't cause an issue with your ability to make a connection using your mail client. Do you get an error in relation to your connection attempt in /var/log/exim_mainlog? Thanks! 0 -
and i disabled the smtp block yes there are entries in the log. Just a bunch of stuff like this over and over 2018-09-04 14:06:45 SMTP connection from min-li-usnj-08-23-23995-c-prod.example.com [45.79.xxx.x]:34862 lost D=1s 2018-09-04 14:06:45 SMTP connection from [45.79.xxx.x]:35088 (TCP/IP connection count = 1) 2018-09-04 14:06:46 SMTP connection from min-li-usnj-08-23-23995-c-prod.example.com [45.79.xxx.x]:35088 lost D=1s 2018-09-04 14:06:46 SMTP connection from [45.79.xxx.x]:35292 (TCP/IP connection count = 1) 2018-09-04 14:06:48 SMTP connection from min-li-usnj-08-23-23995-c-prod.example.com [45.79.xxx.x]:35292 lost D=1s 2018-09-04 14:06:48 SMTP connection from [45.79.xxx.x]:35498 (TCP/IP connection count = 1) 2018-09-04 14:06:49 SMTP connection from min-li-usnj-08-23-23995-c-prod.example.com [45.79.xxx.x]:35498 lost D=1s 2018-09-04 14:11:53 SMTP connection from [127.0.0.1]:59742 (TCP/IP connection count = 1) 2018-09-04 14:11:53 SMTP connection from (localhost) [127.0.0.1]:59742 closed by QUIT 2018-09-04 14:16:56 SMTP connection from [127.0.0.1]:59760 (TCP/IP connection count = 1) 2018-09-04 14:16:56 SMTP connection from (localhost) [127.0.0.1]:59760 closed by QUIT 2018-09-04 14:22:00 SMTP connection from [127.0.0.1]:59778 (TCP/IP connection count = 1) 2018-09-04 14:22:00 SMTP connection from (localhost) [127.0.0.1]:59778 closed by QUIT0 -
ok on my forum i am getting the following error : fsockopen(): unable to connect to xxxxxx.com:465 (Connection timed out so if i do xxxx.com:8080 i get the website down cloudflare page on cloudflare i made all the mail clouds grey to test.. also they were pointing to the shared ip not the main ip.. is that the correct way? i ran the mx toolbox on smtp and it does not connect on shared but does connect on main server ip so maybe thats the reason the website is - Removed - 0 -
ill start a ticket here is the error we are getting with our mail client now. [QUOTE] error connecting with SSL error: 14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure
support ticket is Your Support Request ID is: 10257463 i did contact my support reseller first and they were not able to fix it properly tell ya what hats off to the cpanel tech eric i spoke with tonight, took him about 2 sec to tell me exactly what the issue is.. [QUOTE] Hello, The reason for the errors seen in regards to SSL and TLS is that security was increased on Dovecot and Exim SSL/TLS and ciphers. This security change is best for the security of the server and of Exim itself. The issue that occurs from the source email client sending side is that the operating system version and/or email client version used only supports older SSL/TLS versions and ciphers. The absolute best approach is to have the users upgrade their workstations to up to date operating system versions along with up to date email client versions.
the reseller im with spent almost 2 hours and didnt fix it... im thinking the extra $10 amonth to get a direct cpanel license is worth it... :) NICE JOB ERIC!! now i have to decide if i want to do the work around or not since its not recommended. And i have to call my email client and have them update their software.0 -
Hi @durangod The error here is what gives it away: error connecting with SSL error: 14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure
I'm really glad to hear that Eric was able to assist you. I do want to point out that with these changes TLSv1 and TLSv1.1 are being allowed as he changed the following as well:Change "Options for OpenSSL" to +no_sslv2 +no_sslv3
Default for that setting is:+no_sslv2 +no_sslv3 +no_tlsv1 +no_tlsv1_1
You do need to keep this in mind to identify a way to only allow TLSv1.2 Thanks!0 -
so what does that mean... the + sign confuses me does that mean add/allow in otherwords on the default that means to allow all of those versions and on the edit only allow the two versions, is that correct? 0 -
Hi @durangod +no_SSLX or +no_TLSX means it's explicitly adding *NO* TLSvX connections or *NO* SSLvX connections. The default configuration: +no_sslv2 +no_sslv3 +no_tlsv1 +no_tlsv1_1
Is explicitly refusing SSLv2, SSLv3, TLSv1, and TLSv1.1 - this leaves only TLSv1.2 Thanks!0 -
ok thanks... i contacted my email client (everdesk) and they send me a new client update also the new SSL dll files and everything is working client wize now.. I am still working on the other stuff... 0 -
Hi @durangod That's great news, I'm happy to hear that! I'd rather see the client updated than to compromise on security. Thanks! 0 -
thanks so much.... i have also just changed my forum to use php mail and not smtp, reason being im running through cloudflare and also i have a cert so it might be safe enough for now... So we got that taken care of but that does not explain why i cant connect to smtp from wordpress? 0 -
What's the error you're getting when trying to connect @durangod ? 0 -
hi, most of them we got fixed in a ticket, somehow the accounts were set to remote mx so thats why. But with our smf forum i get the error when trying SMTP [QUOTE] Couldn't get mail server response codes
and i dont know what those are.. i also have a thread over on the smf forum so if i find out i will post here.0 -
Hi @durangod I found this as well which might be helpful Anybody having recent issues with gmail? 0 -
Thanks thats nice of you to post... i found that earlier today and did the code mod but no good, still the same.. So maybe someone at smf knows the deal. If smf cant do SMTP out of the box then ill go back to phpBB that can. I hate to because in the last 2 weeks i put alot of work into this forum but i want SMTP.. Thanks again ill let you know if i hear something, if anyone knows the solution please share.. :) 0 -
ok so it looks like smf requires allow_url_fopen to be enabled on their forum. Im not sure why and i am concerned about it. Those guys over there actually insinuated i turn it on system wide, thats crazy and dangerious why would they do that... I am so very tempted to go back to phpBB.... But i will give this alittle more effort... does anyone know how to enable allow_url_fopen on a CGI/FastCGI server for just one dir? Nothing command wise locally enables it and even if i add it using cpanel multi php ini editor it does not enable it. I want to do this on one dir, not the whole domain. thanks :) UPDATE: well i found this 0
Please sign in to leave a comment.
Comments
17 comments