Can I set a different certificate per listen port?

Kees van Vloten keesvanvloten at
Wed Apr 27 19:14:47 UTC 2022

Hi all,

I am trying to setup dovecot to listen to imaps on the local network and 
through haproxy from the internet.

service imap-login {
   inet_listener imaps {
     port = 993
     ssl = yes
   inet_listener imaps_haproxy {
     haproxy = yes
     port = 10993
     ssl = yes

Obviously the dns-name on the internet connection (10993) is different 
than on the lan (993).

In the docs 
I found multiple options, but unfortunately none of those have the 
option to distinguish per listen port.

Is there a way to setup two different certificates for the two listeners?

- Kees

More information about the dovecot mailing list