Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 4 replies
  • Answers 1 answer
  • Subscribers 3 subscribers
  • Views 12530 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Delivery incomplete from gmail

Simby II

Hello,

When I try to send a message via Gmail, I get the following error:

 

TLS Negotiation failed: generic::failed_precondition: starttls error (0): protocol error

Final-Recipient: rfc822; dsadas@adsada.net
Action: delayed
Status: 4.7.0
Remote-MTA: dns; master-email-cluster.adsada.net. (111.222.333.444, the server
 for the domain adsada.net.)
Diagnostic-Code: smtp; TLS Negotiation failed: generic::failed_precondition: starttls error (0): protocol error
Last-Attempt-Date: Mon, 26 Jun 2017 03:30:31 -0700 (PDT)
Will-Retry-Until: Wed, 28 Jun 2017 02:43:14 -0700 (PDT)



This thread was automatically locked due to age.
Parents
  • 0

    What do you mean by "send a message via gmail" - are you trying to send an email with a Gmail account as the Sender?  Where did you find those log lines?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    I'm getting a bunch rejected email too.

    Gmail, Godaddy, Yahoo and a few others too

    I think, but not positive, just getting into this, that it started with upgrade to V17

     

    The error relates to STARTTLS on port 25 and a protocol error which indicates a setting on the email server

    Problem is I haven't changed anything on the server

    Its been in place a few years

    I don't see anything in my server logs

     

    error from one sender is:

      "TLS connect failed, connect to mail.interlakestamping.com:76.3190.90.42, STARTTLS proto=TLSv1.2; cipher=(NONE)"

    error from another sender

      Diagnostic-Code: smtp; TLS Negotiation failed: generic::failed_precondition: starttls error (0): protocol error

    error from another sender

     

    Any help appreciated

     

     

     

  • 0 in reply to Jake

    Below is the email I sent to support

     

    I was able to work around the issue by turning off advertise STARTTLS on our server for port 25, SMTP

    I then had to turn it on for SSMTP.

    Does not seem to be an issue for SSMTP but it is only used by a few of our EE’s (not gmail etc)

     

    It is still a bug in the firewall as the SMTP email sessions are not connecting correctly when passing through the firewall

    The firewall is also failing to log a connection attempt

    After making the changes I now have log entries showing successful receipt and delivery of emails from gmail

     

    Yeah I know, should be posted in XG firewall forum but I was redirected to this forum when I did a search.

     

    Anyway,

      Many thanks to Harsh Patel, Sophos support.

    He put forth a mammoth effort to try and figure out my issue.

    He was knowledgeable and patient.

     

  • 0 in reply to Jake

    Glad this is resolved for you, Jake.  You've posted in the UTM Community, but you have an XG.  You ight want to post about this in that community.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0 in reply to Jake

    Glad this is resolved for you, Jake.  You've posted in the UTM Community, but you have an XG.  You ight want to post about this in that community.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Unfiltered HTML