postfix MTA and SSL [duplicate]

postfix gmail ubuntu-14.04

My server is running on Ubuntu 14.04 and I have Postfix installed. When I send something to my gmail account, it goes to spam. I set up SPF, DKIM and DMARC, here is a confirmation:

Authentication-Results: mx.google.com;
   dkim=pass [email protected];
   spf=pass (google.com: domain of [email protected] designates xxx.xxx.xx.xxx as permitted sender) [email protected];
   dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=mydomain.com

But there's a red padlock saying: encryption: mydomain.com did not encrypt this message.

Emails from others have such a note: encryption: Standard (TLS)

Could you help me a little with this, what should I do? Might it be a reason that emails from my server go to spam? Thanks in advance.

My /etc/postfix/main.cf:

biff = no
append_dot_mydomain = no
readme_directory = no

# TLS parameters
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache

smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination
myhostname = mail.mydomain.com
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = mydomain.com, bociuch, localhost.localdomain, localhost
relayhost = 
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
mailbox_command = procmail -a "$EXTENSION"
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
inet_protocols = all

milter_protocol = 2
milter_default_action = accept
smtpd_milters = inet:localhost:12301
non_smtpd_milters = inet:localhost:12301

Solution 1:

You are missing the smtp_tls_security_level directive.

smtp_tls_security_level = may

This will set it to opportunistic TLS, using encrypted connections if the server supports it, but allowing unencrypted connections if the server doesn't.

The default value for smtp_tls_security_level is none.

Related

ip_conntrack_max not found
Is there a major difference between either CPU, RAM or Storage capacity needs for the leader or contributor nodes in a production K8S cluster? [duplicate]
How to restart openvpn in pfsense?
Cannot renew ssl certificates, notAfter never changes [closed]
Why Zabbix still says "At least one of MySQL, PostgreSQL, Oracle, SQLite3 or IBM DB2 should be supported."?
Linux connect to OpenVPN but leave a separate local connection
How to define fall-back certificate in Nginx if the primary one does not exist?
HAProxy nbsrv seems to give wrong value
Preseeding debian 11 fully unattended (get rid of questions)
Apply changes to PAM changes
raspberry pi - no ethernet connection on unrelated IPv6 change in router [closed]
HyperV shared virtual disk