director -> POP3s/IMAPs -> mailbox host
Hello again,
I did a lot of trial and error already, but I can't seem to find a way to encrypt my dovecot director to dovceot mailbox traffic. Is there a way to configure dovecot director to only use ssl/tls encrypted connections for specific tagged mailbox clusters? (or all clusters, in fact does not matter if it could be restricted to tags) Looks like there is also no documentation available for this sort of configuration.
I tried setting my mailbox nodes to "ssl = require" butt after doing so I can't login through director proxy anymore. It always looks like ssl/tls termination is finally done on director side.
Anyone tried this already or has a running setup doing encryption from lets say frontend to backend?
Thanks, greetings Patrick
Am 5/28/2020 um 6:08 PM schrieb patosec:
Hello again,
I did a lot of trial and error already, but I can't seem to find a way to encrypt my dovecot director to dovceot mailbox traffic. Is there a way to configure dovecot director to only use ssl/tls encrypted connections for specific tagged mailbox clusters? (or all clusters, in fact does not matter if it could be restricted to tags) Looks like there is also no documentation available for this sort of configuration.
I tried setting my mailbox nodes to "ssl = require" butt after doing so I can't login through director proxy anymore. It always looks like ssl/tls termination is finally done on director side.
Anyone tried this already or has a running setup doing encryption from lets say frontend to backend?
Thanks, greetings Patrick
Never mind, sry for that spam I found the solution, it's well documented: https://wiki1.dovecot.org/PasswordDatabase/ExtraFields/Proxy
participants (2)
-
Aki Tuomi
-
patosec