Best practice for mailserver setup

September 11, 2014 8.1k views
marcel
By:
marcel

Hi,

I followed an tutorial about setting up a mailserver.

I have setup the following DNS records for my domain in DO`s DNS manager:
Mx 5 mail.mydomain.com.
Txt @ "v=spf1 mx -all"
A mail.mydomain.com. IP.AD.RE.SS

This should setup mail.mydomain as mailserver right? I am using virtualmin which has postfix mailserver running.

This is not (yet) working for this domain, but I got it working on another domain, so that does not really matter for now. What matters is that i`m wondering if this is the ideal configuration for a mailserver. Am I not missing a few backup TXT or Mx records?

What are the best practices, DNS records or postfix tips to setup mailserver for reliable e-mail sending and receiving? Also, what are the pitfalls of my setup? I use dovecot for IMAP mail sending and receiving.

I`m totally new on this so hopefully someone can help.

What is essential that I can setup a mailserver like mail.mydomain.com, or mail.myserverfqdn.nl , something like that.

Log In to Comment
1 Answer
dyegoe September 11, 2014

With this configuration you are able to send mail for all servers in the world :)

remember that your vps name need to be the same of your mx name: mail.mydomain.com.
When you have your vps name as your mx record name, your PTR record on DO dns servers answer with "mail.mydomain.com", this is essentials to your server work perfectly.

Reply
  • marcel September 11, 2014

    Hi, Thanks!

    "With this configuration you are able to send mail for all servers in the world :)"
    What exactly do you mean? That anyone can sent mail via my server, or that this is OK?

    My VPSs name is not the name of my mail records.. My VPS name is a nonregistred domainname. Within this I have setup virtualmin with 2 domains. These domains I have added to DigitalOcean DNS and for these domains I have setup mail.domain.com. Is that wrong?

    Because it is not working.. I can sent mails from rouncube, but not receive. Sending an e-mail to the mailadress on this server gives a error, something about relay and another said something about mailserver looping back to itself.

    I have setup another VPS where this is actually working. I Cloned the VPS to a new droplet and it is not working now. The other VPS name is an existing domainname, for this VPS it is nog existing. Will that be my problem?

    And how should my DNS records if my VPSs name is domainexample1.com and there are 2 domains on this VPS: domain1.com and domain2.com. Where and how (what DNS records) would I set up my mailserver?

  • marcel September 11, 2014

    Btw: the relay error is this: "Relay access denied"

    What now? How can I get this working.

    Something else: my website is working fine. So the DNS is resolving to the right domain. Only mail.domain is not working..

    Thanks a lot in advance.

  • dyegoe September 11, 2014

    Well, if you get this error "Relay access denied" your server was protected to anyone send mail to anywhere.
    But, if this doesnt work to your domain (that you want work, user@domain1.com) is because that domain isn`t listed on domain on postfix configuration.

    Another think is, if you have, 2 domains, like
    domain1.com
    domain2.com

    and MX record are mail.domain1.com and your SPF record point to mail.domain1.com
    you vps name need to be mail.domain1.com because this apoint you PTR record to that name.

  • marcel September 11, 2014

    Ok, I understand. But what if I want to use mail.domain1.com for domain1.com and mail.domain2.com for domain2.com, on one VPS?

    You said the PTR record has to be the VPSs name in order to have this work properly. How would I setup the use of 2 domains with own mailservers in this case?

  • marcel September 11, 2014

    Hi, I have created a new question since more and more questions popped up. See : https://www.digitalocean.com/community/questions/how-to-setup-srv1-domain-com-srv2-domain-com-with-mutliple-domains-per-vps , I hope you have an answer to this. Many thanks anyways!

Have another answer? Share your knowledge.