NethServer Version: 7.6.1810 final
Module: postfix
I tried every one of our available tls policies… and verified each changed in main.cf, each policy still causes hate with google.
Feb 5 17:53:44 server9b postfix/smtp[28379]: Untrusted TLS connection established to alt1.gmail-smtp-in.l.google.com[173.194.197.26]:25: TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)
Lowest policy in main.cf.
# TLS for smtp
#
# SMTP
smtp_tls_security_level = may
smtp_tls_loglevel = 1
smtp_tls_cert_file = /etc/postfix/postfix.crt
smtp_tls_key_file = /etc/postfix/postfix.key
# Force cipher 2018-03-30
smtp_tls_mandatory_protocols = !SSLv2, !SSLv3
smtp_tls_protocols = !SSLv2, !SSLv3
smtp_tls_mandatory_ciphers=high