cancel
Showing results for 
Search instead for 
Did you mean: 

Can't send email to some domain

Hi all,

I'm using McAfee Email Gateway. I can't send email to some domain.

[admin@xxx ~]$ openssl s_client -connect xxx.abc.com.vn:25 -starttls smtp  

CONNECTED(00000003)

write:errno=32

---

no peer certificate available

---

No client certificate CA names sent

---

SSL handshake has read 331 bytes and written 32 bytes

---

New, (NONE), Cipher is (NONE)

Secure Renegotiation IS NOT supported

Compression: NONE

Expansion: NONE

---

[admin@xxx ~]$ openssl s_client -connect xxx.xyz.com.vn:25 -starttls smtp

CONNECTED(00000003)

write:errno=32

---

no peer certificate available

---

No client certificate CA names sent

---

SSL handshake has read 382 bytes and written 39 bytes

---

New, (NONE), Cipher is (NONE)

Secure Renegotiation IS NOT supported

Compression: NONE

Expansion: NONE

---

The domains are using TLSv1.

I don't know about error "write:errno=32", what is it mean?

Please help me this case.

Thanks,

Dk

4 Replies

Re: Can't send email to some domain

Hi,

Did you try to add that domain into whitelist in Email--> Email Configuration--> Sending Email--> (below Delivering email-->Domain routing) add that specific domain

hope i could help you.

enjoy

Re: Can't send email to some domain

Dear Nurbekcanon,

Thank you for your help.

But I still can't send email to the domains,

Thanks,

DK.

Unblack
Level 10
Report Inappropriate Content
Message 4 of 5

Re: Can't send email to some domain

Did you read this? :

McAfee KnowledgeBase -

Highlighted

Re: Can't send email to some domain

Hi there,

by default Your EMail Gateway will try to send any Email encrypted using TLS.

Believe it or not, there are way lot of servers out there that cannon handle encrypted mailtransfer.

Especially when transferring mails to eastern countries You may encounter problems that these server either do not speak TLS at all, or can only handle weak or broken ciphers suites.

So in my eyes this looks like that there is no encryption capability on the target server. So You may want to disable TLS for that specific target domain.

MEG-Disable-TLS.jpg

Keep the Wildcard-Record at the very bottom of your TLS exception list, otherwise this will override Your entry as this list is always handled up -> down

Best Regards,

    Marcus

ePO Support Center Plug-in
Check out the new ePO Support Center. Simply access the ePO Software Manager and follow the instructions in the Product Guide for the most commonly used utilities, top known issues announcements, search the knowledgebase for product documentation, and server status and statistics – all from within ePO.