How do I install stunnel on Yosemite server 4 so my mail relay works on port 465?

My ISP blocks outbound smtp mail and insists I point to their relay server on port 465.  After I set up mail relaying in the server config app I get SMTP log errors saying it's unimplemented.  After some research it looks like I need to install a SSL tunnel package called stunnel.  Has anyone had an success getting stunnel installed?  Or, has anyone had any luck using Yosemite Server 4 to mail relay through verizon.net (port 465)?  Any suggestions are much appreciated.

I'll assume that you have to authenticate to the mail relay with a name and password. The Server GUI doesn't provide for this use case.
Take the following steps to configure Postfix to relay mail to a remote SMTP server with password authentication over SSL. Substitute as required for strings in italics below. Address is the fully-qualified domain name of the relay host. The value of port is usually either 25, 465, or 587. Username and password refer to your credentials on the relay host.
In the current version of OS X Server (but not necessarily in older versions), Steps 1 and 3 should be done for you when you enable relaying and relay authentication in the Server application.
1. If necessary, create or update the relayhost directive in
     /Library/Server/Mail/Config/postfix/main.cf
It should look like this:
     relayhost = [address]:port
2. Add these lines, above the section at the end that begins with the comment "# Mac OS X Server":
     smtp_sasl_security_options =
     smtp_tls_CAfile = /etc/certificates/relayhost.pem
     smtp_tls_session_cache_database = btree:$data_directory/smtp_tls_session_cache
     smtp_use_tls = yes
3. If it doesn't already exist, create the password file
     /Library/Server/Mail/Config/postfix/sasl/passwd
with this content:
     [address]:port
     username:password
Here address must match $relayhost.
Then create the password database:
sudo postmap /Library/Server/Mail/Config/postfix/sasl/passwd
This action creates the file
     /Library/Server/Mail/Config/postfix/sasl/passwd.db
The two password files should be readable by root only.
4. Create the file
     /etc/certificates/relayhost.pem
with the CA certificate(s) to be trusted for authentication of the remote host. You get those certificates from the service provider. If you can't find a link to download them, try this:
openssl s_client -connect address:port -showcerts < /dev/null | sed -n '/-BEGIN /,/-END /p' | sudo sh -c 'cat > /etc/certificates/relayhost.pem'
The command may produce an error message that isn't necessarily significant. For servers that use the older STARTTLS protocol, rather than straight TLS or SSL, this command may need to be modified.
5. Restart the Mail service.

Similar Messages

  • How do i Install the Software Update Server for Windows 7?

    How do i Install the Software Update Server for Windows 7? I get an error saying: Can't Install the Software because it is not currently available from the Software Update server.
    I downloaded the software so How do I install it?
    Do I install it all over again or when I have windows open?
    I am using Bootcamp.

    Back up your system drive completely. If you have no backup plan in place, now would be a good time to start. You can use CarbonCopyCloner to make a complete, bootable backup of your system on another drive or volume. After you have done this: download the combo update using the link supplied by Niel and run the installer.

  • How does one install a express sql server to run with Visual Web Developer 2008?

    I successfully installed .NET framework v 3.5 and VWD 2008 on a new Vista laptop. When I want to add a Sql Server database to a website, errors tell me to install SS 2005 Express. MSDN SS 2005 Express download tells me I MUST  first install .NET framework v 2.0 before SS 2005. When I try to install framework v 2.0, I'm sent to v. 3.5 and no way to download SS 2005.
    How does one install a express sql server to run with Visual Web Developer 2008?   

    Momark,
    Do you still need help with this?
    Thank you!
    Ed Price, Power BI & SQL Server Customer Program Manager (Blog,
    Small Basic,
    Wiki Ninjas,
    Wiki)
    Answer an interesting question?
    Create a wiki article about it!

  • How to create distribution list in workflow? for  sending mail or work-item

    Hi,
    How to create distribution list in workflow? for  sending mail or work-item to multiple users.
    Regards,
    Surjith

    Hi Surjith,
    A.Working with Distribution Lists Creating a Distribution List.
    1 Businees Workplace->shared folder - create new subfolder name = WF_distributor
    2.Then click on the distribution list in Businees Workplace.
    say create Name = WF_Vliste
    folder Name = WF_distributor
    3.distribution list content tab
    Enter Recipient (SAP User ID)
    B.Wrkflow Builder
    Find out the dialig step in which u want to use distribution list
    Use workflow Rule 30000012 (SWX_READ_DLI).
    Maintain the binding from workflow container to rule container.
    Just pass the name of the distribution list from WF to Rule container.
    Regards
    Sagar S

  • How to create Install OS X Yosemite for MacBook Pro Retina Early-2015

    HELP ME! Unable to Boot from Install OS X Yosemite USB
    I just bought a new MacBook Pro Retina 13" Early-2015 and wish to install Windows 8.1. I created Windows Install USB using Boot Camp and Installing Windows. Unfortunately, I erase all SSD by accident.
    I created Install OS X Yosemite 10.10.2 USB as guided at https://support.apple.com/en-us/ht201372 using my MacBook Pro Retina Late-2013.
    This USB works perfectly on my MacBook Pro Retina Late-2013 but I am unable to boot from Yosemite 10.10.2 Install USB on my new MacBook Pro Retina Early-2015. The white stop sign appeared on black screen all the time. I am stuck here and can't reinstall OS X Yosemite on my new MacBook.
    I also can't use Recovery boot as the SSD had been erased.
    Please help to show me how to create OS X Install USB that can use with my MacBook Pro Retina 13" Early-2015

    Boot the MBP with the OPTION + COMMAND + R keys.
    It should result in a display with a revolving globe.
    If you follow the directions, it will connect you to the Apple servers and you will be able to install the original OSX that came with your MBP.
    You will need a solid Internet connection.
    Ciao.

  • How do I install Mac OS X-Server on my Intel Base-Dell XPS? What's I need to have for this installation?

    I have Dell XPS with Quad core Intel CPU, 4 GB RAM and 500GB HDD + 500GB RAID. I really want to install Mac OS X Server on it but I can not find where to buy OS X Server and I'm not sure that it suitable to my XPS, I'm afraid that is not acceptable to install. Anyone have idea about this please give me some information,thank you.

    Hello Benz_KU,
    I am afraid you won't be able to install Mac OS X server on you Dell computer. There are technical reasons for that as well as legal reasons: according to the "Software License Agreement for Mac OS X Server":
    "This License allows you to install and use one copy of the Mac OS X Server software (the “Mac OS X Server Software”) on a single Apple-labeled computer at a time."
    Best regards

  • How can I install apps on a device that has a "for work" app installed?

    Hi, I have an iPod touch version 4.3.5 (ML1). Model is MC540C.
    It has been provided for me from work, but I can use it as I wish.
    The apps that are installed are:
    Facetime
    Music
    Photos
    Camera
    Videos
    YouTube
    Stocks
    Notes
    Weather
    Utilities
    App Store
    Game Center
    Settings
    Contacts
    iTunes
    Safari
    Maps
    Mail
    Calendar
    "one app installed by company"
    The last app is needed for when I do work. It doesn't need to run on the background. When I'm doing work, I need to input some information in that app, and sync it to my company's server.
    I would like to install some apps (free) of my choosing. But I'm coming across a hurdle...
    I choose "App Store" in Home.
    I search for a free App (for example the Google Search app by Google Inc)
    I'm taken to the app's info screen. I tap the blue "Free" button.
    The button becomes a green "Install App" button.
    I get a pop-up box saying
    Apple ID password
    [email protected]
    [password]
    How can I install apps of my choosing without having a "work app" get deleted? This work app was installed on the "[email protected]" Apple ID.
    Thank you.

    Ingo2711, when you did this:
    I logged out of my AppleID on the iPod, took it to his computer, synced it, which erased all of my apps. I installed the default apps plus one app that he bought using his account info.
    You made his computer the syncing computer.
    When you did this:
    Connected to my Mac and iTunes and tried to sync one of the apps I bought with my account. The app shows up on one of the pages before you start the sync, but once you apply the sync, it does not transfer.
    And, of cause, no restrictions set at all.
    You changed syncing computers but you can only sync apps (and some other things like photos) from only your one syncing computer.

  • Since installing OS X Yosemite my Acrobat 8 fails to work

    Since installing OS X Yosemite my Acrobat 8 Professional fails to work. I get a dialogue pop up saying:
    Then closes the application preventing myself creating multiple page PDFs
    Can anyone help resolve this issue?

    Acrobat 8 is not compatible with Yosemite. You need to switch to Acrobat XI
    (you can't upgrade because Acrobat 8 is also too old to qualify for an
    upgrade).
    On Fri, Jan 23, 2015 at 10:07 AM, olidillon <[email protected]>

  • Server App: Outgoing Mail Relay not working

    Hi,
    I'm trying to set up Outgoing Mail Relay on my Mountain Lion Server, but I always get bounced emails:
    Oct  1 04:33:34 my.server.private postfix/smtp[9582]: C855DCE700D: to=<[email protected]>, relay=mx2.sub5.homie.mail.dreamhost.com[208.113.200.128]:25, delay=0.91, delays=0/0.02/0.65/0.24, dsn=5.7.1, status=bounced (host mx2.sub5.homie.mail.dreamhost.com[208.113.200.128] said: 554 5.7.1 Service unavailable; Client host [myIP] blocked using zen.dnsbl; http://www.spamhaus.org/query/bl?ip=myIP (in reply to RCPT TO command))
    If I use in the SMTP servers list of Mail app, the exact same account credentials, the email is been delivered only when using SSL. So, I tried adding :465 and :587 to the ougoing relay server in the Server app (Relay outgoing mail throught ISP), but I get the following error and the message stays queued:
    Oct  1 04:13:41 my.server.private postfix/smtp[8920]: connect to mx2.sub5.homie.mail.dreamhost.com[208.113.200.128]:587: Connection refused
    Oct  1 04:13:41 my.server.private postfix/smtp[8920]: connect to mx1.sub5.homie.mail.dreamhost.com[208.113.200.127]:587: Connection refused
    Oct  1 04:13:41 my.server.private postfix/smtp[8920]: 0BAD1CE6340: to=<[email protected]>, relay=none, delay=369, delays=369/0.02/0.43/0, dsn=4.4.1, status=deferred (connect to mx1.sub5.homie.mail.dreamhost.com[208.113.200.127]:587: Connection refused)
    It seems I'm missing something. I want to use smtp account to send all the email coming from my Mac OS X Server, but it looks like I'm doing something wrong or the Server App doesnt work the same way Mail App does when connecting to a SMTP server.
    Any comments?

    Let me add....
    Mail app is connecting and sending the emails correctly with the same credentials but using SSL through port 25:
    READ Oct 01 05:04:01.566 [kCFStreamSocketSecurityLevelTLSv1SSLv3]  -- host:my.externalrelayserver.net -- port:25 -- socket:0x7f890be0c620 -- thread:0x7f890ca3dd70
    250-homiemail-a45.g.dreamhost.com
    250-PIPELINING
    250-SIZE 40960000
    250-ETRN
    250-AUTH PLAIN LOGIN
    250-AUTH=PLAIN LOGIN
    250-ENHANCEDSTATUSCODES
    250 8BITMIME
    WROTE Oct 01 05:04:01.588 [kCFStreamSocketSecurityLevelTLSv1SSLv3]  -- host:my.externalrelayserver.net -- port:25 -- socket:0x7f890be0c620 -- thread:0x7f890ca3dd70
    AUTH PLAIN  (*** 48 bytes hidden ***)
    READ Oct 01 05:04:01.793 [kCFStreamSocketSecurityLevelTLSv1SSLv3]  -- host:my.externalrelayserver.net -- port:25 -- socket:0x7f890be0c620 -- thread:0x7f890ca3dd70
    235 2.7.0 Authentication successful
    I would like to force Server App to do a SSL connection to port 25 of the specified relay server, but not sure how to do this. If I don't manage to do SSL on port 25, then, my relay server will bounce the emails...
    grrrr!

  • OS X Server 3 outgoing mail relay no longer supports a specific port

    Just installed OS X Server 3 on Mavericks. All is well, but for some reason it does not allow adding a specific port for "Outgoing mail relay: mailout.isp.com:587"
    OS X Server 2 used to allow this and i used it to connect to my smtp relay from my isp. It does not allow port 25 connections. If you try this in OS X Server 3 it just complains with "bad formatting"
    Can anyone confirm this?

    Found another thread discussing this.
    https://discussions.apple.com/message/23544605#23544605
    Answer from there:
    You need to edit the postfix main.cf file manually with your favorite text editor:
    sudo vi /Library/Server/Mail/Config/postfix/main.cf
    find the line
    relayhost = host.example.com
    change it to
    relayhost = host.example.com:587 (or some other port)
    then do a
    sudo postfix reload
    to reload postfix configuration files
    and
    sudo postsuper -r ALL
    to retry sending the e-mails again.
    NOTE: If you open OS X Server 3 app and go to Mail -> Relay outgoing mail through ISP -> Edit the Outgoing server address will show as BLANK, this is normal, just click cancel and leave it alone.

  • SMTP Server down/Outgoing mail stopped working

    Wednesday morning, July 1, my outgoing mail stopped working.  I'm using Mac Mail on OSX Yosemite.   Incoming mail is working just fine.  Outgoing says it can't make a connection.I have it set as smtp.comcast.net port 465 Use SSL is checked.  Password authentication.  I have rebooted the router (which came from Comcast).   I've tried unchecking password authentication, chaging to port 567.  Nothing works. 

    dougc84 wrote:
    No.. Still isn't working.  I tried the .plist edit solution (which frankly, seemed like a bad idea)  and deleting all the comcast entries from the keychain.  I was prompted for a password when receiving mail, but sending mail is still not working. 
    dougc84 - I've sent you a private message.  
    Private Messages (PM's)
    At the top of each Forum page you will see a small envelope
    This is the icon for Private Messages, referred to as `PM's'. A Private Message is a way to communicate in private, to another User, Moderator, or Administrator out of public view in the Forums.
    The gray envelope icon will have a number next to it if you have any new messages waiting.
    To open a PM to read it, double click on the envelope. If you click on the white envelope a window will open with tabs for your Private Message Inbox, Sent Messages, Friends, Ignored Users, and Compose new Message. You can also access this area by clicking on the Username in a Thread or post. By default, Private Messages are enabled. You can disable this feature in My Settings>Preferences> Private Messenger.

  • How do i install a self signed server certificate

    After using the admin tool to generate a request CSR, how do I sign this myself for testing purposes so I can install it and therefore run using https?
    I have keytool and certutil both available on the system.
    My most recent solution was to cut and paste the request to www.thawte.com/cgi/server/test.exe and it would return a certificate that was good for 21 days. This however is not the solution I am looking for.
    Thanks

    Hi,
    I recently found out a way how to install test or self-signed certificates and use it with S1SE.
    See:
    http://www.gtlib.cc.gatech.edu/pub/linux/docs/HOWTO/other-formats/html_single/SSL-Certificates-HOWTO.html
    Follow the instructions there
    1. Create CA
    2. Create root ca certificate
    Now install the root-ca-certificate in S1SE -> Security>Certificate Management and Install a "Trusted Certificate Authority".
    Paste the contents of the file: cacert.pem into the message-text box.
    Then restart the server. Now your CA-Cert should be visible in the Manage Certificates menu.
    The next step is to send a certificate-request from S1SE to your e-mail-address.
    The contents of the e-mail the server sends to you (certificate request) must be pasted into the file: newreq.pem.
    Now just sign the Request:
    CA.pl -sign
    The last step is that you have to paste the contents of the file newcert.pem into the message-box of the Security>Certificate Management - now under the option Certificate for "This Server".
    Then you have to reboot the server/instance again and it should work with your certificate.
    Regards,
    Dominic

  • How do I install Firefox on Win Server 2012 Remote Desktop?

    I have tried several ways to download and install Firefox on my Win server 2012 Remote Destop. The software installs, but the installation loops and continuously opens new tabs for
    res://iesetup.dll/SoftAdmin.htm
    Are there special instructions to install Firefox in this environment?

    The url in ie gave me this page [see attached] and I did find a question similar in mozillazine [http://forums.mozillazine.org/viewtopic.php?f=7&t=173325&start=0&st=0&sk=t&sd=a]
    But there is also an extended support release for enterprise environments that you can check out: [https://www.mozilla.org/en-US/firefox/organizations/]

  • How can I install Firefox on a server that does not have an internet connection?

    I run Firefox on a server to display graphs for a program. I was able to save, upload and install Firefox version 21 on my server because it used the executable installation program. Versions 22 and 23 use a stub program that goes to the internet and installs the program. My server does not have an internet connection, so the stub program does not work. Can I get a copy of the executable program that installs the program without having an internet connection?

    hello pkautzman, the full install packets that are capable of an offline installation are available at https://www.mozilla.org/firefox/all/.

  • HT203175 How do I install iTunes on Windows Server 2003?!? I get an error every time!!

    I am having trouble installing any version of ITunes 10.5 or later
    on my Windows 2003 Server PC. I receive the following error
    every time I try to install it...
    "Apple Mobile Device Support requires that your computer is running Windows XP SP2 or newer"
    I anyone has had this same problem I would appreciate any help!!!
    Thank you!!!

    I've googled my problem with many hits stating Itunes can indeed be installed
    by making changes to the msi packages and I believe a few
    registry hacks. It sounds like it can be done, but before experimenting with
    those suggestions I thought looking to the Apple community on the official site
    might glean a better remedy.
    I'm just surprised Apple doesn't support any Windows Server applications
    even though Windows Server 2003 came out after Windows XP,
    (Server 2003 - 2003____XP - 2001)

Maybe you are looking for

  • Landline - No Dialtone all of a sudden, never a problem for 14yrs... before now

    I have a landline with Verizon. I live in Saratoga N.Y. and have had the same landline here for 14 years, without a problem...before today (Approx.). Even when the powers' been out, at least the phone would work (which is why I have a land line). Tod

  • 1.1.3 Update errors

    Laptop Windows XP iTunes 7.6 couple different iPods and consider myself somewhat experienced with these so not a newb I've tried several times both on my laptop and PC at home as well as my PC at work to try to upgrade my Touch from 1.1.2 to 1.1.3. I

  • ALE from 5.0 to 4.6C - missing Segment in HRMD_A05

    I'm using a the ALE Interface to transfer Org.Management-data between a 5.0 and a 4.6c HCM (HR) System. It worked well between two 4.6c Systems using the Basic Type HRMD_A05. Unfortunatly the structure for infotype 1001 subtype *007 (Link between [S]

  • What is the process to copy Master Data in Production to Development?

    Hi, we have an outdated master data in our BW development environment and we would like to bring it to the same level as our BW production environment. What is the process to copy Master Data in Production to Development? Thanks

  • Transactional RFC Error

    Dear All We have a situation in a synchronous interface involving BPM. IDoc <-> PI (BPM) <-> Legacy We have observed that whenever an iDoc is triggered from SAP system it gets stuck in SMq2. These entries are cleared when we unlock the queues. Same h