Facing TLS issue

kindhearted-deer · November 23, 2023, 7:01am

“response”:{“code”:400,“enhanced_code”:null,“content”:“KumoMTA internal: failed to connect to any candidate hosts: TLS handshake with ResolvedAddress { name: "_dc-mx.3e1c0907443f.vinmail.io.", addr: }:25 failed: invalid peer certificate: NotValidForName”,“command”:null}

iam using below configuration to disable TLS

kumo.start_http_listener {
listen = ‘127.0.0.1:8000’,
tls_certificate = ‘/etc/letsencrypt/live/kumomta.salesjio.com/cert.pem’,
tls_private_key = ‘/etc/letsencrypt/live/kumomta.salesjio.com/privkey.pem’,
use_tls = false
}

But above is not working. Is there any other option ?

youthful-zorse · November 23, 2023, 10:29am

use_tls = true hope this will work

Mike · November 23, 2023, 12:55pm

start_http_listener is for KumoMTA to respond to http requests, was that your intent when configuring tls? Your error message would imply otherwise.

tom · November 23, 2023, 2:19pm

The error message is for outbound delivery the configuration you showed was for inbound reception. To disable outbound TLS set enable_tls = Disabled in the outbound shaping config.

tom · November 23, 2023, 2:20pm

kindhearted-deer · November 25, 2023, 5:44am

ok . thanks for the update