It's all about the answers!

Ask a question

smtp settings for CLM and Notes Cloud


Lawrence . (59512) | asked Jan 21 '16, 11:15 a.m.
Does anyone know if it is possible to use submit.notes.ce.collabserv.com seems to send smtp email from CLM
The server seesm to expect a ceftificate from the client server.

We get an error

javax.mail.MessagingException: Exception reading response;
  nested exception is:
    java.net.SocketException: Connection reset

debug output

Example:

[12/23/15 9:32:23:977 CET] 000000bf SystemOut     O DEBUG: setDebug:
JavaMail version 1.3.2
...
[12/23/15 9:32:46:668 CET] 000000c0 SystemOut     O DEBUG:
getProvider() returning
javax.mail.Provider[TRANSPORT,smtp,com.sun.mail.smtp.SMTPTransport,Sun
Microsystems, Inc]
[12/23/15 9:32:46:669 CET] 000000c0 SystemOut     O DEBUG SMTP: useEhlo
true, useAuth true
[12/23/15 9:32:46:669 CET] 000000c0 SystemOut     O DEBUG SMTP: trying
to connect to host "5.10.95.36", port 465, isSSL false
...
[12/23/15 9:32:56:752 CET] 000000c0 SystemOut     O DEBUG SMTP:
exception reading response: java.net.SocketException: Connection reset

The issue is the same with STARTTLS true or false (the JTS server is restarted in order to make sure that it is taken
into account)

Does anyone knows if this submit.notes.ce.collabserv.com server be used as a smtp server?
Has this been done before?

I got confirmation that smtp.notes.ce.collabserv.com server port 25 is fully working with the CLM email setup but it is restricted to the customer domain email addresses and the Notes support recommend to use submit.notes.ce.collabserv.com to send emails.

Thanks for you help

One answer



permanent link
Donald Nong (14.5k614) | answered Jan 21 '16, 11:30 p.m.
The reason is that the protocol is not STARTTLS, but rather SMTPS (SMTP wrapped in SSL - it's probably easier to understand this way). The port 465 is the tell-tale sign. The difference between the two is: with STARTTLS, the client and server will make an insecure connection first, then the client will send a "start tls" signal to promote the connection to a secure one; with SMTPS, the connection is secure when it is established, just as other SSL connections (there will be handshake, certificate exchange and so on).

CLM only supports STARTTLS, not SMTPS.

To work around this, you can set up a relay, so that it will communicate with CLM using SMTP or STARTTLS (port 25), and communicate with the intended SMTP server using SMTPS (465).
https://jazz.net/library/article/701

Depending on the choice of the mail server, you may need extra steps to handling the SSL bit. For example, Postfix does not support SMTPS natively and you may need to use stunnel to take care of SSL.
https://www.debian-administration.org/article/604/Postfix_Smarthost_using_Auth_and_SMTPS
http://www.eglug.org/book/export/html/1923

I actually did this experiment yesterday and I could use GMail (port 465) to send CLM notification emails.

Comments
Lawrence . commented Jan 22 '16, 2:50 a.m.

Thanks very much for your explanations Donald.

Your answer


Register or to post your answer.


Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.