4
I have the following A records for a server @ IP address 1.2.3.4:
Name: example.com.
Name: *.example.com.
Name: example.net.
My server FQDN is server1.example.com.
Currently, emails are send out with the envelope sender as no-reply@$SERVER_NAME where the $SERVER_NAME is example.com most of the time. Under this scenario, should the domain name in PTR be example.com?
If I change the $SERVER_NAME to mail.example.com, do I have to add this name to both A and PTR records? What should be the strategy for PTR for a mail server which is also a web server that uses wildcard subdomains?
DNS
Posted 2014-09-07T04:42:37.380
Reputation: 41
With the added detail that the name referenced in the MX record for example.com is the important one here. The A and PTR records for that name/IP should match. If mail.example.com is in the MX record for example.com, then this is correct. – milli – 2014-09-11T04:43:37.647
@milli Not necessarily. He's talking about an outgoing mail server; this is not always the same as the incoming mail server, and only the latter would be listed in the MX records. – Shadur – 2014-09-11T04:48:05.603
Most MTAs check SPF records on senders, so yes, it does matter in both directions. – milli – 2014-09-11T04:51:28.863
SPF records, yes. MX records, not necessarily. Again, they're not intrinsically the same thing even though most SPF records contain a
mxstanza. – Shadur – 2014-09-11T06:45:26.690@milli That said, good point about SPF, answer amended to include. – Shadur – 2014-09-11T06:48:05.190
OP says his server hostname is
server1.example.comwhich is different from the envelope sender headermail.example.com. Won't the HELO/EHLO still beserver1.example.com? And if A record already has a*.example.com, does he need to add anything there? – Question Overflow – 2014-09-11T08:37:58.857@questionOverflow That depends. If his SMTP software is set to introduce itself with its hostname, it'll HELO as
server1.example.com; if it's set to identify asmail.example.comthen it'll HELO asmail.example.com. For instance, in Postfix this is determined by themailnameconfiguration setting inmain.cf. – Shadur – 2014-09-11T08:46:20.997@QuestionOverflow Using a wildcard A record would help in the forward lookup, but be of no use at all during the reverse check. – Shadur – 2014-09-11T08:47:10.037
1Yes, he would need a PTR for the reverse check. But does the domain in the forward lookup need to match the reverse exactly? i.e. is matching
example.comsufficient enough for the mail to pass SPAM check using FCrDNS or does themail/server1.example.comneed to be added to the A record? – Question Overflow – 2014-09-11T08:55:10.300@QuestionOverflow You appear to misunderstand how a wildcard A record works. If your zone information says that (for instance)
*.example.compoints to 1.2.3.4, a lookup ofmail.example.comwill return 1.2.3.4 as will a lookup ofserver1.example.comas will a lookup ofsupercalifragulisticespiallidocious.example.com. As far as the asker is concerned, there is no difference between an answer derived from a wildcard and an answer with a specific record. – Shadur – 2014-09-11T08:58:02.810Quoting from the OP
mail.example.com, do I have to add this name to both A and PTR records. That is also part of what the OP is trying to find out right? – Question Overflow – 2014-09-11T09:01:38.697Let us continue this discussion in chat.
– Shadur – 2014-09-11T09:03:40.693Sorry, I have problem logging in to chat every time I try to use it. Would prefer to use the comment. Thanks. – Question Overflow – 2014-09-11T09:04:44.047
@questionoverflow Judging by the original question, the OP doesn't understand what they're asking terribly well either, which is why I attempted to explain what's actually going on and went from there. You, on the other hand, are starting to badly derail the discussion by adding hypotheticals that the OP didn't ask about and may not even be in play, and I have better things to do with my time than try educating two people, one of whom seems to be acting deliberately obtuse. – Shadur – 2014-09-11T09:09:25.953