Well it works fine today, nothing is different, it just works. No idea.
Well it works fine today, nothing is different, it just works. No idea.
...and having gotten SMTP-TLS working, I turned on SSL Inspector and it's seamlessly inspecting SMTP-TLS sessions and the spam blocker is seeing them unencrypted.
so, detour aside, that's the answer for our OP - if you need to allow SMTP-TLS but don't want a flood of encrypted spam, enable SSL Inspector