Hello! Running Postfix 2.9.4 I need to enable TLS 1.2 (only 1.0 seems to be working). I’ve tried a number of things, and they all make postfix actually fail. In googling, it seems that this version of postfix and the version of OpenSSL on the server should allow for TLS 1.2 with no problems, but it seems that only 1.0 is working. If I add this, for example, TLS simply fails entirely:
smtpd_tls_protocols = TLSv1.2, TLSv1.1, !TLSv1, !SSLv2, !SSLv3
Thanks for any ideas.
Danita
[QUOTE=dzanre;57199]Hello! Running Postfix 2.9.4 I need to enable TLS 1.2 (only 1.0 seems to be working). I’ve tried a number of things, and they all make postfix actually fail. In googling, it seems that this version of postfix and the version of OpenSSL on the server should allow for TLS 1.2 with no problems, but it seems that only 1.0 is working. If I add this, for example, TLS simply fails entirely:
smtpd_tls_protocols = TLSv1.2, TLSv1.1, !TLSv1, !SSLv2, !SSLv3
Thanks for any ideas.
Danita[/QUOTE]
Hi Danita and welcome to the Forum 
The way I understand it is the ! means what to use, so your syntax (which is Legacy) only 1.0 will work…
See http://www.postfix.org/TLS_README.html (Server-side cipher controls).