Thousands of SSL certificates stalls new logins during reload - problem with Dovecot config process

spi spi at nurfuerspam.de
Sun Sep 4 05:22:34 UTC 2022


04.09.2022 01:01:16 Bartosz Kwitniewski <zerg-dovecot at uid0.pl>:


> For now they are on the same machine, we have to write our own panel for clients to get more freedom in backend choices. I was looking into HAProxy for SSL termination, but it does not support STARTTLS.
>
> I'll try to look for workaround next week, but haven't used C for ages.
>
> Best regards,
> --
> Bartosz Kwitniewski

Nginx can be used as reverse proxy for dovecot to terminate tls and load balance. It can also be used to verify client certificates (access only with valid client certificate and route access to backend based on client certificate).

Cheers,
spi


More information about the dovecot mailing list