Messaging Gateway

Hello everyone.

It seems lately everyone has been discovering the magic of TLS as if this is some kind of super new technology or something.

And they don't want to use opportunistic TLS - no, they want to enforce it.  And they send us these request forms with dozens of domains that they own asking us to enforce TLS to all of them.

The problem is that there is no way to import multiple domains as external domains with Require TLS option in Protocols/Domains.  I have to key them in one-by-one.  And this is pretty slow.  Each one takes a few minutes to accept.    And it also seems to be pretty harsh on the MTAs - almost every time I add a new domain name and click Save, I start seeing alerts that this or that MTA service stopped responding or that there were bad messages in the queue.

Is there a better way?

You are right that you can't set the TLS option when importing a domain, but you can still import them and then change them after the fact. That may or may not save you some time.

If I import the domains, they are imported as Local domains.  What if right them someone tries to send out some important mail to some of those domains?

And it doesn't save any time to import them anyway, because I still have to click on each one and change it from local to external and set the force TLS on each one.