MTA Relay not using...
 
Notifications
Clear all

MTA Relay not using authentication

4 Posts
2 Users
0 Reactions
789 Views
(@diito)
Joined: 1 year ago
Posts: 22
Topic starter  

I'm trying to migrate from Zimbra and I am stuck on trying to get my external mail replay working with SMTP authentication.  The Zimbra instructions are listed here:

https://wiki.zimbra.com/wiki/Outgoing_SMTP_Authentication

Essentially I have done:

echo mailrelay.example.com username:password > /opt/zextras/conf/relay_password
postmap /opt/zextras/conf/relay_password
postconf -e smtp_sasl_password_maps=hash:/opt/zextras/conf/relay_password
zmprov ms $HOSTNAME zimbraMtaSmtpSaslPasswordMaps lmdb:/opt/zextras/conf/relay_password
postconf -e smtp_sasl_auth_enable=yes
zmprov ms $HOSTNAME zimbraMtaSmtpSaslAuthEnable yes
zmprov ms $HOSTNAME zimbraMtaSmtpCnameOverridesServername no
zmprov ms $HOSTNAME zimbraMtaSmtpTlsSecurityLevel may

When I try and send mail it now uses the relay, but does not attempt to use authentication at all and thus is rejected by the relay server.

 

This is a critical feature for me to be able to use Carbonio CE.  Does anyone know how to get this to work like it does in Zimbra?


   
Quote
(@diito)
Joined: 1 year ago
Posts: 22
Topic starter  

To add to this:  The reason this did to work for me was that I'm us in-v3.mailjet.com as a relay which is a CNAME for in.mailjet.com.  This should not matter as

zmprov ms $HOSTNAME zimbraMtaSmtpCnameOverridesServername no

should fix that.  It seems it's ignored as I had to add a relay_password entry for in.mailjet.com. 


   
ReplyQuote
(@sharif)
Admin
Joined: 3 years ago
Posts: 595
 

@diito 

Hi,

Merry Christmas.

Looks like you figured it out all. 

Let us know how it went.

And wish you a happy new year ahead ! 

Regards,

Sharif


   
ReplyQuote
(@diito)
Joined: 1 year ago
Posts: 22
Topic starter  

@sharif 

I figured out a workaround to a bug in Carbonio.

zimbraMtaSmtpCnameOverridesServername no

This set to no should allow CNAMEs to work ( in-v3.mailjet.com in my case) but it does not as I had to add another domain/password in

/opt/zextras/conf/relay_password

The workaround will break if mailjet ever changes where the CNAME points to.  This was not an issue in Zimbra 8.


   
ReplyQuote