[exim] TLS error on connection (gnutls_handshake): timed out

Top Page
Delete this message
Reply to this message
Author: Christian Balzer
Date:  
To: exim-users
Subject: [exim] TLS error on connection (gnutls_handshake): timed out

Hello,

Exim Version 4.89 (Debian Jessie)

When sending mails to (primarily) outlook.com or Hotmail about 0.1% (1 in
1000) results in something like this:
---
2017-07-26 08:12:33 1da6x5-0005fV-IX H=redacted.mail.protection.outlook.com [23.103.139.138] TLS error on connection (gnutls_handshake): timed out
---

And more importantly in a massive delay like this:
---
2017-07-26 08:12:33 1da6x5-0005fV-IX TLS session failure: delivering unencrypted to redacted.mail.protection.outlook.com [23.103.139.138] (not in hosts_require_tls)

2017-07-26 08:12:35 1da6x5-0005fV-IX Completed QT=2h11m24s
---

This is clearly something like a bad host within their load balanced pool,
since a mail with multiple recipients might get delivered to a few and
then hit this issue.

As is is not exclusively happening with these M$ domains I'm more
interested in a generic solution, read, can the gnutls handshake timeout
be configured to be something more sensible (like a minute or less)?

Regards,

Christian
-- 
Christian Balzer        Network/Systems Engineer                
chibi@???       Rakuten Communications