I have Postfix configured to relay emails through Brevo (sendinblue). This was working like a great. But starting on July 22nd the relay started to fail.
I have these log messages from Postfix:
SSL_connect error to smtp-relay.brevo.com 1.179.119.1 :587: -1
warning: TLS library problem: error:0A00042E:SSL routines::tlsv1 alert protocol version:… ssl record rec_layer_s3.c:1590:SSL alert number 70:
(Cannot start TLS: handshake failure)
Any thoughts?
This Postfix configuration was able to successfully relay through Brevo and fix the TLS handshake problem:
# BREVO
mynetworks_style = subnet
relayhost = [smtp-relay.brevo.com]:587
smtp_use_tls = yes
smtp_sasl_auth_enable = yes
smtp_sasl_security_options =
smtp_sasl_password_maps = hash:/etc/postfix/sasl/brevo_passwd
smtp_tls_CAfile = /etc/ssl/certs/ca-certificates.crt
smtp_tls_protocols = !SSLv2,!SSLv3,!TLSv1.1,!TLSv1.2,>=TLSv1
smtp_tls_ciphers = high
smtp_tls_mandatory_ciphers = high
smtp_tls_security_level = encrypt
smtp_generic_maps = hash:/etc/postfix/map/generic_map, regexp:/etc/postfix/map/outlook_map