Cannot connect to secure webmail

mparaskevaidis · September 10, 2025, 1:00pm

Hello,

I have problem establishing secure connection to my Axigen 10.6.9 server webmail running on windows

I have issued a Lets Encrypt certificate stated as valid in the SSL list of certificated in Axigen
I have checked the communication to the host to ports 80 (redirected via webmail settings to secure login) and port 443 with a port scanner. The ports are forwarded to the internal IP of the server
paths to cert.pem and cert_auth.pem files are set
no special rules are set for the webmail service
dns lookups for host name resolve correctly to the IP in the DNS A record set
connection cannot be established even using the Internet IP of host directly
Browser reports “This site can’t provide a secure connection www.my-domain.com sent an invalid response. ERR_SSL_PROTOCOL_ERROR”
Webmail log exempt for a connection attempt shows

2025-09-10 15:44:38 +0300 08 AXIGENSRV WEBMAIL:00000287: [“host_internal_IP”:80] connection accepted from [“client_internet_IP”:59356]
2025-09-10 15:44:38 +0300 16 AXIGENSRV WEBMAIL:00000287: <<
2025-09-10 15:44:38 +0300 16 AXIGENSRV WEBMAIL:00000287: >> 400 Bad Request
2025-09-10 15:44:38 +0300 08 AXIGENSRV WEBMAIL:00000287: <> u= code=400 time=30
2025-09-10 15:44:38 +0300 08 AXIGENSRV WEBMAIL:00000287: connection closed with [“client_internet_IP”:59356]

tried clearing browser cache and tried two different browsers to no avail

Strange thing is that though the requests from browser are done in https the log shows answering in port 80

Any help would be appreciated

Thnx in advance!

Miltos

mparaskevaidis · September 11, 2025, 7:38am

Hello again,

further investigation using a virtual online browser with a Firefox client installed provided a more detailed error below:

Secure Connection Failed

An error occurred during a connection to 79.107.30.154. SSL received a record that exceeded the maximum permissible length.

Error code: SSL_ERROR_RX_RECORD_TOO_LONG

The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the website owners to inform them of this problem.

Local intranet connections works normally when setting a non secure listener port for intranet browser clients sessions

I’m sure I’m missing something out in the relevant settings but can’t figure what exactly :))

Thanks again for any help

Miltos

mparaskevaidis · September 15, 2025, 9:25am

UPDATE

Hello,

after three days of testing and without changing any Axigen server related settings
the ports stopped responding when checked from the internet side both secure and insecure.

Intranet clients could normally connect to port 80 which led me to think that something was amiss and not on the server side.

It seems the problem was router related as deleting the port forward rules and recreating them solved the issue as strange as it seems.

Now secure connections are working normally.

Cheers

Miltos