[exim] Hosts require tls and 4xx error

Top Page
Delete this message
Reply to this message
Author: Konstantin
Date:  
To: Exim-users
Subject: [exim] Hosts require tls and 4xx error
Hi Guys,

I have following router which require secure delivery to some domains. If a
TLS delivery fail then email deliver to MY_FALLBACK host.

router_require_tls:
driver = dnslookup
domains = +tlsdomains
transport = smtp_require_tls

smtp_require_tls:
driver = smtp
delay_after_cutoff = false
hosts_require_tls = *
fallback_hosts = MY_FALLBACK

This configuration works well. But today i found in logs unexpected
behavior.
A recipients domain reject with 451 after established STARTTLS. This is
their graylist. Because of that error exim deliver email to fallback host.
But I suppose that exim should retry delivery and not send to the fallback
immediately.

Is there some other configuration option which can help me?

Here is an example of smtp session:
seconds        test stage and result
[000.075]    <--    220 mx1.domain.com ESMTP
[000.076]    -->    EHLO sender.com
[000.113]    <--    250-mx1.domain.com Hello [sender.com]
250-AUTH LOGIN
250-AUTH=LOGIN
250-STARTTLS
250 HELP
[000.114]    -->    STARTTLS
[000.150]    <--    220 Starting TLS
[000.151]        STARTTLS command works on this server
[000.359]        SSLVersion in use: TLSv1.2
[000.359]        Cipher in use: ECDHE-RSA-AES128-SHA
[000.360]        Connection converted to SSL
[000.434]        Cert VALIDATED: ok
[000.435]    ~~>    EHLO sender.com
[000.474]    <~~    250-mx1.domain.com Hello [sender.com]
250-AUTH LOGIN
250-AUTH=LOGIN
250 HELP
[000.474]        TLS successfully started on this server
[000.475]    ~~>    MAIL FROM:<test@???>
[000.512]    <~~    250  OK
[000.513]    ~~>    RCPT TO:<rcpt@???>
[000.756]    <~~    451 Internal resource temporarily unavailable
[000.757]    ~~>    QUIT
[000.794]    <~~    221 Service closing transmission channel


Thanks.
--
*This message was delivered using 100% recycled electrons*.