This is from my mail.warn log any ideas how to fix it? JJun 14 14:01:21 localhost postfix/smtpd[6457]: warning: 216.255.180.18: hostname 216.255.180.18-custblock.intercage.com verification failed: Temporary failure in name resolution Jun 14 17:20:01 xstation postfix/smtpd[4196]: warning: cannot get certificate from file /etc/postfix/ssl/xstation_4096.net_cert.pem Jun 14 17:20:01 xstation postfix/smtpd[4196]: warning: TLS library problem: 4196:error:02001002:system library:fopen:No such file or directory:bss_file.c:349:fopen('/etc/postfix/ssl/xstation_4096.net_cert.pem','r'): Jun 14 17:20:01 xstation postfix/smtpd[4196]: warning: TLS library problem: 4196:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:351: Jun 14 17:20:01 xstation postfix/smtpd[4196]: warning: TLS library problem: 4196:error:140DC002:SSL routines:SSL_CTX_use_certificate_chain_file:system lib:ssl_rsa.c:720: AND in mail.log Jun 16 18:57:55 xstation postfix/smtpd[4821]: warning: cannot get certificate from file /etc/postfix/ssl/xstation _4096.net_cert.pem Jun 16 18:57:55 xstation postfix/smtpd[4821]: warning: TLS library problem: 4821:error:02001002:system library:fopen:No such file or directory:bss_file.c:349:fopen('/etc/postfix/ssl/xstation_4096.net_cert.pem','r'): Jun 16 18:57:55 xstation postfix/smtpd[4821]: warning: TLS library problem: 4821:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:351: Jun 16 18:57:55 xstation postfix/smtpd[4821]: warning: TLS library problem: 4821:error:140DC002:SSL routines:SSL_CTX_use_certificate_chain_file:system lib:ssl_rsa.c:720: Jun 16 18:57:55 xstation postfix/smtpd[4821]: cannot load RSA certificate and key data J thanks
Can you verify the dns resolution of the box. Plus can you also verify that the certificate: /etc/postfix/ssl/xstation_4096.net_cert.pem is actually there, and correct.
total 40 drwxr-xr-x 2 root root 4096 2006-06-14 15:57 . drwxr-xr-x 4 root root 4096 2006-06-14 15:59 .. -rw-r--r-- 1 root root 1277 2006-06-08 14:26 cacert.pem -rw-r--r-- 1 root root 993 2006-06-14 12:35 cacert.pem_orig -rw-r--r-- 1 root root 963 2006-06-14 12:35 cakey.pem -rw-r--r-- 1 root root 757 2006-06-14 12:34 smtpd.crt -rw-r--r-- 1 root root 603 2006-06-14 12:34 smtpd.csr -rw-r--r-- 1 root root 887 2006-06-14 12:35 smtpd.key -rw-r--r-- 1 root root 3738 2006-06-08 14:26 xstation.4096.net_cert.pem -rw-r--r-- 1 root root 1611 2006-06-08 14:26 xstation.4096.net_req.pem :~$ ping -c 3 www.gogle.com PING www.l.google.com (216.239.59.99) 56(84) bytes of data. 64 bytes from 216.239.59.99: icmp_seq=1 ttl=246 time=33.1 ms 64 bytes from 216.239.59.99: icmp_seq=2 ttl=246 time=34.0 ms 64 bytes from 216.239.59.99: icmp_seq=3 ttl=246 time=43.3 ms --- www.l.google.com ping statistics --- 3 packets transmitted, 3 received, 0% packet loss, time 2001ms rtt min/avg/max/mdev = 33.197/36.866/43.360/4.607 ms qiu
Look at the error message, postfix is looking for: /etc/postfix/ssl/xstation_4096.net_cert.pem And what you have is: -rw-r--r-- 1 root root 3738 2006-06-08 14:26 xstation.4096.net_cert.pem -rw-r--r-- 1 root root 1611 2006-06-08 14:26 xstation.4096.net_req.pem Try copying the certs to the same name as postfix is looking for, or just find the config and change it!
In my main.cf file it looks like this smtpd_tls_cert_file = /etc/postfix/ssl/xstation_4096.net_cert.pem smtpd_tls_key_file = /etc/postfix/ssl/xstation_4096.net_req.pem which config file are you refering to.? qiu
Change the lines to: smtpd_tls_cert_file = /etc/postfix/ssl/xstation.4096.net_cert.pem smtpd_tls_key_file = /etc/postfix/ssl/xstation.4096.net_req.pem and restart postfix. /etc/init.d/postfix restart Your certificate files where named xstation.4096.net_cert.pem and not xstation_4096.net_cert.pem
thanks foe your assistance on my previous post . i tried o see if tls was working and got this reply. ~$ telnet localhost 25 Trying 127.0.0.1... Connected to localhost.localdomain. Escape character is '^]'. 220 xstation.4096.net ESMTP Postfix (Ubuntu) echo localhost 502 Error: command not implemented
