Gmail did not encrypt this message

L

lucianobraz

New Member
Proxmox Subscriber
Feb 21, 2024
4
0
1
When I receive an email from my domain, I have a red text in gmail, with the following message: did not encrypt this message

I think it has to do with the TLS configuration, can someone help me.
 
share the screenshot of the "red text" and the logs of the mail.
usually enabling TLS is done in GUI->Configuration->Mail Proxy->TLS
 
please share the logs of the mail - and the Received headers
* The settings would indicate that PMG should use encryption (you might try to reboot the PMG just in case and retry)
* make sure PMG sends the mails directly to gmail (if you have a smart-host configured or this is an inbound mail and you have a transport) the encryption might be lost there...
 
Delivered-To: brasluciano@gmail.com
Received: by 2002:a17:522:5ace:b0:571:9403:140b with SMTP id e14csp2404454pvk;
Wed, 21 Feb 2024 05:49:11 -0800 (PST)
X-Google-Smtp-Source: AGHT+IES9h44xbxxY7jOhQI7QmJhjh+p9YzcR0IfL9LQdv60U0Fvcz6Lik3Gd+eiubHGgr0gBkpN
X-Received: by 2002:a05:620a:10b1:b0:787:1b91:7065 with SMTP id h17-20020a05620a10b100b007871b917065mr19287530qkk.78.1708523351271;
Wed, 21 Feb 2024 05:49:11 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1708523351; cv=none;
d=google.com; s=arc-20160816;
b=B47OjXZ2TYDCdqu6+5amK9OUiiVD9rPg3sR6lJ8gKVCQM+jSSateBUgBNXFWEzqz1N
pTqL4xWIueGl/+gdbp4H74+j9Z1RC6d2hz2MYbDd8/7fB6zd8thF1OSuL5AlagofBSeI
8QhA3/wQ6h825wKoM92i/nygoPvz5zAS4wVNmnCScRrnWCeUvtNbRIY9VxM0e1zLqE71
6TgiVnK+5Rv6WsSHd7cJIO2nH+CQMVGlJZ2zQebCNR17tkIPYq3IbfEIZN+ay7eO34ZR
tM5Zp9nosyKnRlyu8MjYyySRiFVfHq4E25uPP/Kyoc1nY5VRNq5z9AP8Nc4rsK9TNPP2
zD9Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
h=mime-version:content-language:accept-language:message-id:date
:thread-index:thread-topic:subject:to:from:dkim-signature
:dkim-signature;
bh=TPxO24iltvfuKrrih/WNa3Tr92TBw1xCCOY852dF7z8=;
fh=wvJX5H6uJuRCHAZccasaweRhUJ51ddap5d3HIqg6Qnc=;
b=WgdWoehbZQJSIwOQAJLTloBz0l7YSXD5pP7+P/d+D8UrlptBsLY5dZ1+E3+qSdDpF5
kDw/8lTLYF3WTV4I4tDO5MtxAkd8EOt3p8nk2VSYclw8W3wgHC5t5aoCauyh2T9ZtJbq
WAwKCM9a2Oi9kx+h7eC26di+jyROPbN4jTm46pO8Bt/r995EVX4j6PnrxoHiAhA+JYaL
/ZUEEEcEG74V1Ri1QioDP8xOAw4fH/HIJVaWUJ5oldN3VMTscAPVagqguly97iOGyyp4
iRi6INIORDjvLv7nnZG1PYQrTynAdYx0xdhnlMqLM4puo37ZvSXxd5LA3FuQoShFq2wK
TqUA==;
dara=google.com
ARC-Authentication-Results: i=1; mx.google.com;
dkim=temperror (no key for signature) header.i=@prodel.co.ao header.s=default header.b=cXgnq8ol;
dkim=pass header.i=@prodel.co.ao header.s=selector0 header.b=g7h8oFlP;
spf=pass (google.com: domain of luciano.braz@prodel.co.ao designates 105.174.4.252 as permitted sender) smtp.mailfrom=luciano.braz@prodel.co.ao;
dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=prodel.co.ao
Return-Path: <luciano.braz@prodel.co.ao>
Received: from SVLMAILGTW01.PRODEL.LOCAL (mail.prodel.co.ao. [105.174.4.252])
by mx.google.com with SMTP id e23-20020a05620a12d700b007871be6741asi10948711qkl.560.2024.02.21.05.49.10
for <brasluciano@gmail.com>;
Wed, 21 Feb 2024 05:49:10 -0800 (PST)
Received-SPF: pass (google.com: domain of luciano.braz@prodel.co.ao designates 105.174.4.252 as permitted sender) client-ip=105.174.4.252;
Authentication-Results: mx.google.com;
dkim=temperror (no key for signature) header.i=@prodel.co.ao header.s=default header.b=cXgnq8ol;
dkim=pass header.i=@prodel.co.ao header.s=selector0 header.b=g7h8oFlP;
spf=pass (google.com: domain of luciano.braz@prodel.co.ao designates 105.174.4.252 as permitted sender) smtp.mailfrom=luciano.braz@prodel.co.ao;
dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=prodel.co.ao
Received: from SVLMAILGTW01.PRODEL.LOCAL (localhost.localdomain [127.0.0.1]) by SVLMAILGTW01.PRODEL.LOCAL (Proxmox) with ESMTP id 5920A1014A0 for <brasluciano@gmail.com>; Wed, 21 Feb 2024 14:49:09 +0100 (WAT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=prodel.co.ao; h= cc:content-type:content-type:date:from:from:message-id :mime-version:reply-to:subject:subject:to:to; s=default; bh=TPxO 24iltvfuKrrih/WNa3Tr92TBw1xCCOY852dF7z8=; b=cXgnq8olvZPbbKKqaj+z 1ZtpdC0Po43cM/jNFhiCtUK2bTgbEMeFt46ubB3UCXHMzLL2rxpUEJeQ6LYfplU5 72EWdg9s+RtmE6VY7AO0iU/noagcN+UDhTj96a7EWnNcSkL38aQx3I4girO0LwxC brr/lLofYQourmIPTn5FAEaDCj09dHsbJTFztF5SYBT+/ItoojvUFfxBApnWIIoK JTrjFj2nt69uidL3tUzNZcIfdwDQ41CfMYQ/Dc+WBytjLwSPaP0GGjYB/mLddb6V sInt+ExiCkDE1+Y0ofhMZqxE61aYnCFKsveUTR7pI1PahLH7GnRQNcBwwLjM+HbW Rg==
DKIM-Signature: v=1; a=rsa-sha256; d=prodel.co.ao; s=selector0; c=relaxed/relaxed; t=1708523160; h=from:subject:to:date:message-id; bh=TPxO24iltvfuKrrih/WNa3Tr92TBw1xCCOY852dF7z8=; b=g7h8oFlPKHP5c6/ZHBdoqe58eN+3AQZMp8CwQmSJ5GinyxV7umsvddhfNG4P3Dwt+2QXSSt8NFm tS705TqeSa3/c6TxrNCILUgNjS66cO2jkPtBVVyJ00Q4JgiiMR6OzGifVcwGsOkdRcTNaG7j7SP15 MioCB8tR1Yi9K634ZTc=
From: Luciano Braz <luciano.braz@prodel.co.ao>
To: Luciano Bras <brasluciano@gmail.com>
Subject: test1
Thread-Topic: test1
Thread-Index: AQHaZMxADo0wUjVttkyIIc0uhcWI/Q==
Date: Wed, 21 Feb 2024 13:45:38 +0000
Message-ID: <791b63b0794a427d94938cc5bdecabcc@SVLDCCEXP02.Prodel.local>
Accept-Language: pt-BR, en-US
Content-Language: pt-BR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [83.240.195.250]
Content-Type: multipart/alternative; boundary="_000_791b63b0794a427d94938cc5bdecabccSVLDCCEXP02Prodellocal_"
MIME-Version: 1.0

--_000_791b63b0794a427d94938cc5bdecabccSVLDCCEXP02Prodellocal_
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable



--_000_791b63b0794a427d94938cc5bdecabccSVLDCCEXP02Prodellocal_
Content-Type: text/html; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<html>
<head>
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Diso-8859-=
1">
<style type=3D"text/css" style=3D"display:none"><!-- p { margin-top: 0px; m=
argin-bottom: 0px; }--></style>
</head>
<body dir=3D"ltr" style=3D"font-size:12pt;color:#000000;background-color:#F=
FFFFF;font-family:Calibri,Arial,Helvetica,sans-serif;">
<p><br>
</p>
</body>
</html>

--_000_791b63b0794a427d94938cc5bdecabccSVLDCCEXP02Prodellocal_--
 
hm - ok from the received headers it seems as if PMG directly sent this to gmail:
* please share the logs

however I checked the mx record of your domain - and it seems at least inbound it's not directly a PMG
so just to be on the safe side - do you maybe have some kind of content inspecting firewall in front of PMG?
the EHLO reply from the mx brought me to some cisco support sites:
https://www.limilabs.com/qa/1897/problem-connecting-through-smtp
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118550-qa-esa-00.html
 
Received: from SVLDCCEXP02.Prodel.local (10.102.1.8) by
SVLDCCEXP02.Prodel.local (10.102.1.8) with Microsoft SMTP Server (TLS) id
15.0.1497.48 via Mailbox Transport; Tue, 20 Feb 2024 22:16:59 +0100
Received: from SVLDCCEXP03.Prodel.local (10.102.1.9) by
SVLDCCEXP02.Prodel.local (10.102.1.8) with Microsoft SMTP Server (TLS) id
15.0.1497.48; Tue, 20 Feb 2024 22:16:37 +0100
Received: from SVLMAILGTW01.PRODEL.LOCAL (10.102.1.60) by
SVLDCCEXP03.Prodel.local (10.102.1.9) with Microsoft SMTP Server (TLS) id
15.0.1497.48 via Frontend Transport; Tue, 20 Feb 2024 22:16:37 +0100
Received: from SVLMAILGTW01.PRODEL.LOCAL (localhost.localdomain [127.0.0.1])
by SVLMAILGTW01.PRODEL.LOCAL (Proxmox) with ESMTP id 93E07101488
for <luciano.braz@prodel.co.ao>; Tue, 20 Feb 2024 22:19:44 +0100 (WAT)
Received: from mail-pl1-f170.google.com (mail-pl1-f170.google.com [209.85.214.170])
(using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits)
key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
(No client certificate requested)
by SVLMAILGTW01.PRODEL.LOCAL (Proxmox) with ESMTPS id 6030710147C
for <luciano.braz@prodel.co.ao>; Tue, 20 Feb 2024 22:19:40 +0100 (WAT)
Received: by mail-pl1-f170.google.com with SMTP id d9443c01a7336-1dbb47852cdso30972475ad.1
for <luciano.braz@prodel.co.ao>; Tue, 20 Feb 2024 13:19:40 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=gmail.com; s=20230601; t=1708463976; x=1709068776; darn=prodel.co.ao;
h=to:subject:message-id:date:from:in-reply-to:references:mime-version
:from:to:cc:subject:date:message-id:reply-to;
bh=oHM6kYkewM6FQ3Qc9U7w29ImexS//agU2cFRcV1tI9s=;
b=G2sZnI8mCzb8yrTRZur/OspGB8G+VR4k1gjfGbYwVEBmEX1JMh6f7/Nwh3k/Civ3WN
RtgK8imOR22JlqqfmPzeHCawGJm19I+Dg8jpBNu7SJz2Xps/dJ4KxOVJ14BJ/zg4bWzh
UUUuXSgtLNGDXxK0eqtb2QP6nqfSkChJBW78+uEUDLucmEsditW0l8QcRmklLTpUdvMt
Li5PuEP2JiycuD1ZqYhzeIxEAWiWmvAOpbRgOayTyh+4hVTJF5p93M++hUKBd6t3fA28
3RJimHzKSXxUzrSLbLGNckwG+ObR1eMgyjyBQBlTrunxHxh8+lG0RIyPXlhdOKLSL0Hv
9rcQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20230601; t=1708463976; x=1709068776;
h=to:subject:message-id:date:from:in-reply-to:references:mime-version
:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
bh=oHM6kYkewM6FQ3Qc9U7w29ImexS//agU2cFRcV1tI9s=;
b=NJsfDX0AgSo3q3XMjtOX/3tZi1FuVZ8dS05qEihmEifVgNCsVrfD1bwOnNQEMUgKP7
gBnlwHKd4vIpjuNMt90gB0/SXAXov38oZHSN2a1oG9UWSHy3LosHGYj9oaUxsvpLwkAq
GVogu7dpQ9OQzgH/S2TdFES24NrE4B4WwfbQmNtYtSVbDC5Q57TdMIaS2L2PZQg7NlF2
afU7ZzaiaX6W2aKNToUhTQfcUKnkU7jRvhDb37lbCwKiJkTnahepW+QP6gIU/oIsGAAw
immtYQyEsb0rHaJB5PTsP6RgmeIoosTwl1+5jsJ7sSYzRyVOZmsYnDAsjZBaBPKw3Zzz
esOg==
X-Gm-Message-State: AOJu0Yze+thV+gHPH35q9mGkQWgcTtoDQXm83OoNLy9Jp1KAeyXTd5si
+KFTeAeCEl93WaYCKSK+lBydq3ENeWggJlui8bMS9y7z0t1zJS9t+GBfhEoBw7b7+uS8t6tvXFz
wP6hv9CHM3x/x7ViuPUGTQtre7NPOmle8
X-Google-Smtp-Source: AGHT+IFSakZuY8Zmb5obLi7gE1Kzi6oowIhHTR7P7cqxuwF6HcLaRpLb35VCVJlwIbgjOUTv4UwLu+8bQ6a84DUW7GI=
X-Received: by 2002:a17:90b:f07:b0:299:521e:77a7 with SMTP id
br7-20020a17090b0f0700b00299521e77a7mr7689657pjb.16.1708463976025; Tue, 20
Feb 2024 13:19:36 -0800 (PST)
MIME-Version: 1.0
References: <8c96ba40b6e24737846ba153518679ca@SVLDCCEXP02.Prodel.local>
In-Reply-To: <8c96ba40b6e24737846ba153518679ca@SVLDCCEXP02.Prodel.local>
From: Luciano Bras <brasluciano@gmail.com>
Date: Tue, 20 Feb 2024 21:19:24 +0000
Message-ID: <CAD6mbtfP9M3F54pxwokok7SPzWsKyhg+tDMwyAzShnCpE-DBfA@mail.gmail.com>
Subject: Re: Tes
To: Luciano Braz <luciano.braz@prodel.co.ao>
Content-Type: multipart/alternative; boundary="0000000000006715510611d6c48c"
X-SPAM-LEVEL: Spam detection results: 0
DKIM_SIGNED 0.1 Message has a DKIM or DK signature, not necessarily valid
DKIM_VALID -0.1 Message has at least one valid DKIM or DK signature
DKIM_VALID_AU -0.1 Message has a valid DKIM or DK signature from author's domain
DKIM_VALID_EF -0.1 Message has a valid DKIM or DK signature from envelope-from domain
DMARC_PASS -0.1 DMARC pass policy
FREEMAIL_FROM 0.001 Sender email is commonly abused enduser mail provider
HTML_MESSAGE 0.001 HTML included in message
RCVD_IN_DNSWL_NONE -0.0001 Sender listed at https://www.dnswl.org/, no trust
RCVD_IN_MSPIKE_H3 0.001 Good reputation (+3)
RCVD_IN_MSPIKE_WL 0.001 Mailspike good senders
SPF_HELO_NONE 0.001 SPF: HELO does not publish an SPF Record
SPF_PASS -0.001 SPF: sender matches SPF record
T_SCC_BODY_TEXT_LINE -0.01 -
Return-Path: brasluciano@gmail.com
X-MS-Exchange-Organization-Network-Message-Id: d789507f-fdd6-43bd-f1fe-08dc32593999
X-MS-Exchange-Organization-AuthSource: SVLDCCEXP03.Prodel.local
X-MS-Exchange-Organization-AuthAs: Anonymous
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom