Hi All,

Issue : Email delivery delay.

Mail flow : Exchange  HUB server  >>  Load Balance  >>  SMART HOST >>  EOP.

SMART host = Symantec - Encryption Management Server Powered by PGP Technology.

Exchange server Certificate Type : Self signed.

Exchange server Version  :  2010 RU8.2

Summary :

From the day 1 our mail server takes 2 to 3 minutes to deliver email to external recipient. We investigated and found SMART host failed to accept TLS connection from Exchange server. So Temporarily we enabled "ignore STARTTLS : True " in send connector, now email flow is normal.

But still I like  to establish TLS connection between HUB server  and SMART host. Kindly share you suggestion to fix the TLS connection failure issue.

Question :

1. Self signed certificate support TLS connection ?

2. SSL certificate is required for Load balancer ?  As of now there is no certificate installed in Load balancer.

3. I would like to add source device certificate in SMART Host's trusted certificate list. which device certificate should I add in trusted list Load Balance or HUB serve certificate ?

Hello

Check smart host log file why said not accept tls connection.
and plz share smtp exchange smtp log, when smarthost reject connection.

The send connector uses Opportunistic TLS out of the box. If the smart host is set for that it should just work.

If you are using forced TLS, then you would have to configure that differently. 

Hi,

I checked the smart host logs, but there is no much information on that. Below is error log in SMART host.

Erro Log :

TLS negotiation with [192.168.*.*] failed: connection not available.