ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Locally hosted email with CloudFlare Origin cert - SMTP?

    IT Discussion
    2
    5
    158
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • DashrenderD
      Dashrender
      last edited by

      This is related to my moving to CloudFlare proxy thread.

      The issue is - if the email server only has the CF Origin TLS cert, how will SMTP over TLS work? I would assume that other mail servers might reject that cert because it's not signed by a trusted CA.

      JaredBuschJ 1 Reply Last reply Reply Quote 0
      • JaredBuschJ
        JaredBusch @Dashrender
        last edited by

        @Dashrender said in Locally hosted email with CloudFlare Origin cert - SMTP?:

        This is related to my moving to CloudFlare proxy thread.

        The issue is - if the email server only has the CF Origin TLS cert, how will SMTP over TLS work? I would assume that other mail servers might reject that cert because it's not signed by a trusted CA.

        Does this only affect inbound mail?

        I have never actually tested this with Exchange, but I do know that I can tell postfix to send with TLS without configuring any certificates.

        DashrenderD 1 Reply Last reply Reply Quote 0
        • DashrenderD
          Dashrender @JaredBusch
          last edited by

          @JaredBusch said in Locally hosted email with CloudFlare Origin cert - SMTP?:

          @Dashrender said in Locally hosted email with CloudFlare Origin cert - SMTP?:

          This is related to my moving to CloudFlare proxy thread.

          The issue is - if the email server only has the CF Origin TLS cert, how will SMTP over TLS work? I would assume that other mail servers might reject that cert because it's not signed by a trusted CA.

          Does this only affect inbound mail?

          I have never actually tested this with Exchange, but I do know that I can tell postfix to send with TLS without configuring any certificates.

          Sure, that's not really secure though, it's TLS with no security.

          As for what it affects - I frankly don't know. For all I know a self signed cert would be fine - but I don't know what happens when you both a assumed allowable cert and a CF origin cert on the same machine.

          JaredBuschJ 1 Reply Last reply Reply Quote 0
          • JaredBuschJ
            JaredBusch @Dashrender
            last edited by JaredBusch

            @Dashrender said in Locally hosted email with CloudFlare Origin cert - SMTP?:

            @JaredBusch said in Locally hosted email with CloudFlare Origin cert - SMTP?:

            @Dashrender said in Locally hosted email with CloudFlare Origin cert - SMTP?:

            This is related to my moving to CloudFlare proxy thread.

            The issue is - if the email server only has the CF Origin TLS cert, how will SMTP over TLS work? I would assume that other mail servers might reject that cert because it's not signed by a trusted CA.

            Does this only affect inbound mail?

            I have never actually tested this with Exchange, but I do know that I can tell postfix to send with TLS without configuring any certificates.

            Sure, that's not really secure though, it's TLS with no security.

            As for what it affects - I frankly don't know. For all I know a self signed cert would be fine - but I don't know what happens when you both a assumed allowable cert and a CF origin cert on the same machine.

            Umm I think you misunderstand. When you send, you don't need a cert. Just like you don't need a cert in your browser to access HTTPS pages. the other side has that.

            Yes, I assume you need something valid for the inbound SMTP.

            DashrenderD 1 Reply Last reply Reply Quote 0
            • DashrenderD
              Dashrender @JaredBusch
              last edited by

              @JaredBusch said in Locally hosted email with CloudFlare Origin cert - SMTP?:

              @Dashrender said in Locally hosted email with CloudFlare Origin cert - SMTP?:

              @JaredBusch said in Locally hosted email with CloudFlare Origin cert - SMTP?:

              @Dashrender said in Locally hosted email with CloudFlare Origin cert - SMTP?:

              This is related to my moving to CloudFlare proxy thread.

              The issue is - if the email server only has the CF Origin TLS cert, how will SMTP over TLS work? I would assume that other mail servers might reject that cert because it's not signed by a trusted CA.

              Does this only affect inbound mail?

              I have never actually tested this with Exchange, but I do know that I can tell postfix to send with TLS without configuring any certificates.

              Sure, that's not really secure though, it's TLS with no security.

              As for what it affects - I frankly don't know. For all I know a self signed cert would be fine - but I don't know what happens when you both a assumed allowable cert and a CF origin cert on the same machine.

              Umm I think you misunderstand. When you send, you don't need a cert. Just like you don't need a cert in your browser to access HTTPS pages. the other side has that.

              Yes, I assume you need something valid for the inbound SMTP.

              OK - yeah, I suppose the receiving side is what sets up the tunnel.. Ok good point...

              1 Reply Last reply Reply Quote 0
              • 1 / 1
              • First post
                Last post