Facebook
Twittergregconway
Basic Pleskian
Hello everybody!
I have an issue with one Plesk server (CentOS 8.3.2011 / Plesk Obsidian, both fully updated) where I cannot receive emails from google addresses.
This is happening for all Domains on the server. Some have LE certs, some have real certs.
If I move my test Domain to another Plesk server (configured by the same script) then this domain can receive emails from google without issues. In fact all the emails I sent previously then arrive, so the emails are being deferred not rejected.
Here's the mail log for one of the emails that was rejected:
Dec 10 20:51:37 prey postfix/smtpd[6477]: connect from mail-lj1-f180.google.com[209.85.208.180]
Dec 10 20:51:38 prey postfix/smtpd[6477]: warning: TLS library problem: error:0908F066: PEM routines:get_header_and_data:bad end line:crypto/pem/pem_lib.c:852:
Dec 10 20:51:38 prey postfix/smtpd[6477]: warning: error loading private keys and certificates from: SNI data for mail.domain.com: aborting TLS handshake
Dec 10 20:51:38 prey postfix/smtpd[6477]: SSL_accept error from mail-lj1-f180.google.com[209.85.208.180]: -1
Dec 10 20:51:38 prey postfix/smtpd[6477]: warning: TLS library problem: error:1422E0EA:SSL routines:final_server_name:callback failed:ssl/statem/extensions.c:1006:
Dec 10 20:51:38 prey postfix/smtpd[6477]: lost connection after STARTTLS from mail-lj1-f180.google.com[209.85.208.180]
Dec 10 20:51:38 prey postfix/smtpd[6477]: disconnect from mail-lj1-f180.google.com[209.85.208.180] ehlo=1 starttls=0/1 commands=1/2
My googling suggests there is something wrong with the certificate but I've regenerated the paid (Sectigo) cert with no effect, and as I said I cannot email any Domain on the server from a google address.
Does anybody have any ideas what is happening here? And how I might fix it?!
Thanks!
I have an issue with one Plesk server (CentOS 8.3.2011 / Plesk Obsidian, both fully updated) where I cannot receive emails from google addresses.
This is happening for all Domains on the server. Some have LE certs, some have real certs.
If I move my test Domain to another Plesk server (configured by the same script) then this domain can receive emails from google without issues. In fact all the emails I sent previously then arrive, so the emails are being deferred not rejected.
Here's the mail log for one of the emails that was rejected:
Dec 10 20:51:37 prey postfix/smtpd[6477]: connect from mail-lj1-f180.google.com[209.85.208.180]
Dec 10 20:51:38 prey postfix/smtpd[6477]: warning: TLS library problem: error:0908F066: PEM routines:get_header_and_data:bad end line:crypto/pem/pem_lib.c:852:
Dec 10 20:51:38 prey postfix/smtpd[6477]: warning: error loading private keys and certificates from: SNI data for mail.domain.com: aborting TLS handshake
Dec 10 20:51:38 prey postfix/smtpd[6477]: SSL_accept error from mail-lj1-f180.google.com[209.85.208.180]: -1
Dec 10 20:51:38 prey postfix/smtpd[6477]: warning: TLS library problem: error:1422E0EA:SSL routines:final_server_name:callback failed:ssl/statem/extensions.c:1006:
Dec 10 20:51:38 prey postfix/smtpd[6477]: lost connection after STARTTLS from mail-lj1-f180.google.com[209.85.208.180]
Dec 10 20:51:38 prey postfix/smtpd[6477]: disconnect from mail-lj1-f180.google.com[209.85.208.180] ehlo=1 starttls=0/1 commands=1/2
My googling suggests there is something wrong with the certificate but I've regenerated the paid (Sectigo) cert with no effect, and as I said I cannot email any Domain on the server from a google address.
Does anybody have any ideas what is happening here? And how I might fix it?!
Thanks!
