Sending mails with Postfix from a DynDNS (sub)domain

dyndnsemailpostfixsendmailsmtp

I have a free DynDNS host/domain with an Ubuntu server. mydomain.dyndns.org
I'm able to receive mails but I can't send emails from my domain.

Most servers reject my mails because the domain doesn't match the IP that sends it. This doesn't happen when I set the FQDN of the SMTP server to localhost.

My question is: it's correct to use localhost as FQDN to send mails from a (sub)domain? If not, what I'm doing wrong? Some people told me that I need to use the SMTP relay provided by my ISP. In that case, which is the relay for DynDNS?

I'm using Postfix as my SMTP server.

Best Answer

The FQDN presented by the MTA to remote servers should match the server's internet FQDN; I'm surprised that hosts rejecting your mail before started accepting it when using localhost.

There are a few things that go into this, and what gets checked varies wildly from one mail server to another.

What you're likely running into is a check on the reverse-lookup (PTR) DNS records for your IP:

Some mail servers expect that a reverse lookup matches exactly to the FQDN you sent with your EHLO command.
Some servers also expect that that FQDN resolves back to the IP address of your sending server.
But, servers with that level of strictness are rare. More often, they will verify that your reverse entry (say, mail1.mydomain.com) is a child of the domain you're attempting to send mail from (say, user@mydomain.com).

So, if you're in a position to be able to control your reverse DNS (if it's not a commercial internet connection with a static address, you may not be) then get your PTR record set up, and match it to the forward DNS of the server that's sending.

The other aspect to this is the SPF record. Many mail servers will use this as an alternative to that reverse-lookup checking when it's available, or at least as an additional factor in the consideration of whether to drop a message. Tons of info here, the short version is you'll create a DNS record of type TXT in your domain, which will contain something like this:

v=spf1 mx -all

which will allow the devices in your MX records to send, or this:

v=spf1 ip4:x.x.x.x -all

where x.x.x.x is your server's public IP address. Even if you don't have the ability to work with your reverse entries, an SPF record should help a good amount.

On the subject of using your ISP's relayers, that's not terribly relevant when you're operating your own mail domain.. I don't think most ISP's relayers will accept mail that's not from their own domain in this day and age. To clarify, those would be from whoever is providing your internet connection, not DynDNS.

Related Solutions

Postfix to relay mails to other SMTP for particular domain

If you want to send to a server other than what say the MX records in DNS for a domain, you can add a line in /etc/postfix/transport:

abc.com        smtp:mail.xyz.com

Then run postmap /etc/postfix/transport.

If it isn't already, add transport_maps = hash:/etc/postfix/transport to /etc/postfix/main.cf and run postfix reload.

Sending emails with Thunderbird + Postfix + Zarafa does not work

I suppose you like to set up SMTP authentication on your mail server, but your Postfix configuration does not show any authentication configuration for clients. You could do this using SASL against the Zarafa-gateway (IMAP) like described here. Then configure Postfix to use your SASL (Cyrus for example) and 'trust' authenticated clients. Read more about that in the Postfix SASL Howto (part 'Mail relay authorization' in particular).

This way, all IMAP enabled users in Zarafa will have authorized SMTP relay access on your MTA.

Best Answer

Related Solutions

Postfix to relay mails to other SMTP for particular domain

Sending emails with Thunderbird + Postfix + Zarafa does not work

Related Topic