Join Log in
Score:0
avatar Server

What should be the rDNS PTR records for a self-hosted email server with a website domain hosted elsewhere?

ec flag
Brian

We have a self-hosted mail server at our business's single, static IP address (mail.companyA.com). Our website is hosted by another company at a different IP address (companyA.com). Our emails use the @companyA.com domain.

Sometimes we send emails to certain clients that get through fine, and sometimes we get bouncebacks from the same client indicating we are blocked. Short-story: I am concerned that a reverse DNS lookup done by some companies with stricter requirements on emails is getting us in trouble depending on the rDNS lookup result that appears first.

MXToolbox reports that a rDNS lookup on our static IP address (from which we sent our emails) has two PTR records: One to mail.companyA.com and the other to companyA.com

Should I request our ISP to remove the PTR record to companyA.com, leaving only mail.companyA.com - or will this create problems?

38
0 + 0
Score:1
Paul avatar Server
cn flag
Paul

The issue here is usually related to Forward Confirmed reverse DNS (FCrDNS) checks, which are used as proof-of-work tests by some mail servers.

A receiving server may perform a check using the sending server IP address PTR record and confirm that an A record exists that matches the PTR record. Some mail servers even go further and verify a 200 response.

If your mail server is located at mail.example.com, then the PTR for the IP address of the server should be mail.example.com.

Note that an IP address can have only one PTR record.

A more technical explanation that includes other reasons to configure FCrDNS are included in RFC 1912.

0 + 0
Zac67 avatar
ru flag
Zac67
The host name provided by PTR should also match the MTA's HELO name. IP->PTR->A->IP *MUST* match.
1
Reply
Tilman Schmidt avatar
bd flag
Tilman Schmidt
The fourth paragraph is wrong. An IP address *can* have more than one PTR record. It is not recommended, but it is not forbidden either. In other words, it will technically work, although the result will probably not be useful.
0
Reply
Paul avatar
cn flag
Paul
@TilmanSchmidt I wasn't intending to suggest it to be programmatically impossible.
0
Reply
Tilman Schmidt avatar
bd flag
Tilman Schmidt
Well, you wrote "can have only" which in English typically indicates (im-)possibility.
0
Reply
Paul avatar
cn flag
Paul
To pass an FCrDNS check, there can be only one PTR record. I think you are abstracting the sentence from the rest of the post.
0
Reply
ec flag
Brian
Thank you all - I think the problem is well illustrated, then, by the PTR discussion. In fact, our static IP has 2 PTR records, one which is correct (mail.example.com) and the other which points to our website hosted at a different location and should be removed (example.com). I have started a conversation with our ISP to request this change (and that has its own communication difficulties where they think everything is fine). I am confident this will lead to the resolution of our intermittent problem, once it is updated.
1
Reply
ธงชาติไทย
Elon Musk
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.