Koozali.org: home of the SME Server

email guide

Offline jameswilson

  • ****
  • 739
  • +0/-0
    • Security Warehouse, trade security equipment
email guide
« on: August 21, 2017, 10:12:34 PM »
I use our sme server to host email and everything else with great success
however outside of sme some recipients are rejecting email from us.
Is there a guide or howto etc on how to set up everything ie rrdns etc so we can continue to use it rather than forward via isp etc?

thanks
james

Offline janet

  • ****
  • 4,812
  • +0/-0
Re: email guide
« Reply #1 on: August 21, 2017, 11:07:33 PM »
James

It would be good to find out why your mail from sme server is being rejected, you know what to fix then.
Do you receive any messages, or do those external recipients receive any messages about mail from your server being rejected/not deliverable ?

Start here:
https://wiki.contribs.org/SME_Server:Documentation:Administration_Manual:Appendix
Please search before asking, an answer may already exist.
The Search & other links to useful information are at top of Forum.

Offline jameswilson

  • ****
  • 739
  • +0/-0
    • Security Warehouse, trade security equipment
Re: email guide
« Reply #2 on: August 21, 2017, 11:51:48 PM »
ok ill look but i have this
Quote
Hi. This is the qmail-send program at siaholdings.com.
I'm afraid I wasn't able to deliver your message to the following addresses.
This is a permanent error; I've given up. Sorry it didn't work out.

<sxxxx@gmail.com>:
108.177.15.27 failed after I sent the message.
Remote host said: 421-4.7.0 [81.143.33.105      15] Our system has detected that this message is
421-4.7.0 suspicious due to the very low reputation of the sending IP address.
421-4.7.0 To protect our users from spam, mail sent from your IP address has
421-4.7.0 been temporarily rate limited. Please visit
421 4.7.0  https://support.google.com/mail/answer/188131 for more information. b4si864623wmf.154 - gsmtp
I'm not going to try again; this message has been in the queue too long.

--- Below this line is a copy of the message.

Offline jameswilson

  • ****
  • 739
  • +0/-0
    • Security Warehouse, trade security equipment
Re: email guide
« Reply #3 on: August 21, 2017, 11:53:29 PM »
ive removed the email but shown my server address

Offline jameswilson

  • ****
  • 739
  • +0/-0
    • Security Warehouse, trade security equipment
Re: email guide
« Reply #4 on: August 22, 2017, 12:00:20 AM »
Quote
roblems with email...hopefully one off.
Thought you'd want to know
From: MAILER-DAEMON@sia2.com
Sent: ?08/?08/?2017 10:31
To: Owain???wilson@sia1.co.uk
Subject: failure notice

Hi. This is the qmail-send program at siax.com.
I'm afraid I wasn't able to deliver your message to the following addresses.
This is a permanent error; I've given up. Sorry it didn't work out.

<client email addy>:
108.177.15.27 failed after I sent the message.
Remote host said: 421-4.7.0 [81.143.33.105      15] Our system has detected that this message is
421-4.7.0 suspicious due to the very low reputation of the sending IP address.
421-4.7.0 To protect our users from spam, mail sent from your IP address has
421-4.7.0 been temporarily rate limited. Please visit
421 4.7.0  https://support.google.com/mail/answer/188131 for more information. b4si864623wmf.154 - gsmtp
I'm not going to try again; this message has been in the queue too long.

--- Below this line is a copy of the message.

Return-Path: <main domain>
Received: (qmail 4965 invoked by uid 453); 1 Aug 2017 07:13:21 -0000
X-Virus-Checked: by ClamAV 0.99.2 on siaholdings.com
X-Virus-Found: No
Authentication-Results: domainx.com; auth=pass (plain) smtp.auth=userx
Received: from Unknown (HELO [10.137.49.230]) (94.119.64.0)
by siaholdings.com (qpsmtpd/0.96) with ESMTPSA (ECDHE-RSA-AES256-SHA384 encrypted); Tue, 01 Aug 2017 08:13:21 +0100
MIME-Version: 1.0
To: none<customen@gmail.com>
From: xxx<xx..wilxx@x.com>
Subject: RE: CCTV INSTRUCTION
Date: Tue, 1 Aug 2017 08:13:05 +0100
In-Reply-To:
<CAKJaG6BLHaB+3B3HZd5QMKHJRLB=sJQh51A3=V1ojhjncKTV5w@mail.gmail.com>
References:
<CAKJaG6BLHaB+3B3HZd5QMKHJRLB=sJQh51A3=V1ojhjncKTV5w@mail.gmail.com>
Content-Type: multipart/alternative;
boundary="_1EA23683-8E76-4E60-85A5-628648265241_"

--_1EA23683-8E76-4E60-85A5-628648265241_
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

Yes John that is absolutely fine with me.
I will see you later today at 4:30=20
Have a good day
Regards
Owain


-----Original Message-----
From: "John Heavin" <s@g>
Sent: =E2=80=8E01/=E2=80=8E08/=E2=80=8E2017 06:44
To: "Owain Wilson" <owain.wilso@xxl.co.uk>
Subject: CCTV INSTRUCTION

Good morning Owain ,


Yes I should be alright this afternoon,  but I wonder, in the knowledge you=
wont require a great deal of time ,  if we can opt for 4.30 rather than 4.=
00 pm
if that doesn't inconvenience you too much ??




I'm hoping( weather permitting )  to get to get some work done at the paris=
h church this afternoon and this would  afford me just  that little  more t=
ime .


Hoping  to see you later=20


Kindest  regards=20


John=

--_1EA23683-8E76-4E60-85A5-628648265241_
Content-Transfer-Encoding: quoted-printable
Content-Type: text/html; charset="utf-8"

<html><head><meta http-equiv=3D"Content-Type" content=3D"text/html; charset=
=3Dutf-8"></head><body><div><div style=3D"font-family: Calibri,sans-serif; =
font-size: 11pt;">Yes John that is absolutely fine with me.<br>I will see y=
ou later today at 4:30 <br>Have a good day<br>Regards<br>Owain<br></div></d=
iv><div dir=3D"ltr"><hr><span style=3D"font-family: Calibri,sans-serif; fon=
t-size: 11pt; font-weight: bold;">From: </span><span style=3D"font-family: =
Calibri,sans-serif; font-size: 11pt;"><a href=3D"mailto:sean.heavin@gmail.c=
om">John Heavin</a></span><br><span style=3D"font-family: Calibri,sans-seri=
f; font-size: 11pt; font-weight: bold;">Sent: </span><span style=3D"font-fa=
mily: Calibri,sans-serif; font-size: 11pt;">=E2=80=8E01/=E2=80=8E08/=E2=80=
=8E2017 06:44</span><br><span style=3D"font-family: Calibri,sans-serif; fon=
t-size: 11pt; font-weight: bold;">To: </span><span style=3D"font-family: Ca=
libri,sans-serif; font-size: 11pt;"><a href=3D"mailto:owain.wilson@secureit=
all.co.uk">Owain Wilson</a></span><br><span style=3D"font-family: Calibri,s=
ans-serif; font-size: 11pt; font-weight: bold;">Subject: </span><span style=
=3D"font-family: Calibri,sans-serif; font-size: 11pt;">CCTV INSTRUCTION</sp=
an><br><br></div><div dir=3D"ltr"><div>Good morning Owain ,</div><div><br><=
/div><div>Yes I should be alright this afternoon, &nbsp;but I wonder, in th=
e knowledge you wont require a great deal of time , &nbsp;if we can opt for=
<strong>4.30</strong> rather than 4.00 pm</div><div>if that doesn't inconv=
enience you too much ??</div><div><br></div><div><br></div><div>I'm hoping(=
weather permitting ) &nbsp;to get to get some work done at the parish chur=
ch this afternoon and&nbsp;this would &nbsp;afford me just &nbsp;that littl=
e&nbsp; more time .</div><div><br></div><div>Hoping &nbsp;to see you later =
</div><div><br></div><div>Kindest &nbsp;regards </div><div><br></div><div>J=
ohn</div></div>=0A=
</body></html>=

--_1EA23683-8E76-4E60-85A5-628648265241_--
« Last Edit: August 22, 2017, 12:13:36 AM by jameswilson »

Offline jameswilson

  • ****
  • 739
  • +0/-0
    • Security Warehouse, trade security equipment
Re: email guide
« Reply #5 on: August 22, 2017, 12:06:44 AM »
I started to remove email etc, I stopped

Offline jameswilson

  • ****
  • 739
  • +0/-0
    • Security Warehouse, trade security equipment
Re: email guide
« Reply #6 on: August 22, 2017, 12:10:31 AM »
James

It would be good to find out why your mail from sme server is being rejected, you know what to fix then.
Do you receive any messages, or do those external recipients receive any messages about mail from your server being rejected/not deliverable ?

Start here:
https://wiki.contribs.org/SME_Server:Documentation:Administration_Manual:Appendix
Janet thanks but I know this isn't a sme issue, its the domain name end, I have added a rdns but its not enough. That's why I asked for a sme guide on the non sme bits of hosting email?

Offline janet

  • ****
  • 4,812
  • +0/-0
Re: email guide
« Reply #7 on: August 22, 2017, 01:46:42 PM »
Janet thanks but I know this isn't a sme issue, its the domain name end, I have added a rdns but its not enough. That's why I asked for a sme guide on the non sme bits of hosting email?

Did you read the sme server link I provided to you & implement the suggestions ?

Also did you read the google link in your email message which if followeded leads to:
https://support.google.com/mail/answer/6227174
Read that & implement.
Please search before asking, an answer may already exist.
The Search & other links to useful information are at top of Forum.

Offline jameswilson

  • ****
  • 739
  • +0/-0
    • Security Warehouse, trade security equipment
Re: email guide
« Reply #8 on: August 22, 2017, 08:55:27 PM »
I did but I didn't just want to fix it for google as others will have issues. I assumed there are things I can do that will fix us for all providers? Or do I have to do things for each domain we might send to?

Thanks
James

Offline janet

  • ****
  • 4,812
  • +0/-0
Re: email guide
« Reply #9 on: August 22, 2017, 11:12:24 PM »
james

It is no longer "easy" to host your own sending mail server that will be trusted by other mail servers.

If you are not prepared to do what is necessary to give your mail server a high reputation, then the answer is to send your mail via your ISP's smtp server (configured in server manager Email panel), that way you rely on the reputation of your ISPs mail server (which is usually or should be OK).

If you want to host your own mail server & send directly to other mail servers then you need to ensure your static IP/sending server/domain has a good/high reputation.

If you fix things that make google accept your mail then you are likely to fix things for other recipient ISP's also, but others may have specific requirements you will need to implement, refer partially to the wiki link I gave earier, a lot more has been written in the Forums etc since those words were published (eg DKIM, SPF, DMARC).

From here (& there are more links in the original article):
https://support.google.com/mail/answer/81126#authentication

Authentication & Identification

Why is it important to authenticate your messages?

Authentication ensures that your messages can be correctly classified. Emails that lack authentication are likely to be rejected or placed in the spam folder, given the high likelihood that they are forged messages used for phishing scams.

In addition, unauthenticated emails with attachments may be outrightly rejected, for security reasons.

To ensure that Gmail can identify you:

    Use a consistent IP address to send bulk mail.
    Keep valid reverse DNS records for the IP address(es) from which you send mail, pointing to your domain.
    Use the same address in the 'From:' header on every bulk mail you send.

We also recommend the following:

    Sign messages with DKIM. We do not authenticate messages signed with keys using fewer than 1024 bits.
    Publish an SPF record.
    Publish a DMARC policy.

Learn more about email authentication.
Please search before asking, an answer may already exist.
The Search & other links to useful information are at top of Forum.