Email Prevent supports TLS.
If the upstream MTA requests TLS, Prevent will attempt to establish a secure connection with the downstream MTA.
If neither one of the components (upstream MTA, downstream MTA or Prevent) have the necessary keys/certificates in place, the connection is dropped and the emails are not going through.

Confirm certificates are in place, as required, and per email security best practices.