I'm encountering the weirdest problem on my server -
Sendmail cannot deliver to certain domains.

Doing a "tail -f /var/log/maillog"
I see the following :

Nov 29 09:40:06 xxx sendmail[9140]: gAT1e5I09140: from=<12345@xxx.hello.com>, size=274, class=0, nrcpts=1, msgid=<Pine.LNX.4.44.0211290939470.8897-100000@xxx.hello.com>, proto=ESMTP, relay=12345@localhost
Nov 29 09:40:10 xxx sendmail[9142]: gAT1e5I09140: TLS: error: SSL_connect failed=-1 (1)
Nov 29 09:40:10 xxx sendmail[9142]: gAT1e5I09140: ruleset=tls_server, arg1=SOFTWARE, relay=destination.com, reject=403 4.7.0 TLS handshake failed.
Nov 29 09:40:10 xxx sendmail[9142]: gAT1e5I09140: to=<user@destination.com>, ctladdr=<12345@xxx.hello.com> (22004/505), delay=00:00:04, xdelay=00:00:04, mailer=esmtp, pri=30274, relay=destination.com. [123.123.123.123], dsn=4.0.0, stat=Deferred: 403 4.7.0 TLS handshake failed.


This is only 1 instance. I have a few others as well. All to different domains ... Any one can explain why ? And any remedy, please ?

I'm using Ensim 3.1.x
RH 7.2
rpm -q sendmail -> sendmail-8.11.6-3ensim1

help please ?

It's just a user that is trying to connect over TLS and your sendmail is probably not configured for TLS.

so what should I do ? the email can't get out

configure sendmail to use TLS

so now the question becomes, how do I do that ?
any instructions, advice etc.

check http://www.sendmail.org/~ca/email/starttls.html

but with Ensim modifying Sendmail so drastically, I'm afraid to do any of this ...