1 |
Just the internet facing one, as I understand it. Nothing else should ever |
2 |
see the internal MTA, and it may not even have a routable IP address! |
3 |
|
4 |
|
5 |
On 25 April 2013 16:57, Vinícius Ferrão <viniciusferrao@×××××××.br> wrote: |
6 |
|
7 |
> Hello Halassy, thanks for your reply. |
8 |
> |
9 |
> I'm aware of the syntax, I just mistyped it. |
10 |
> |
11 |
> The main question still continues, should I put both MTAs or just the |
12 |
> Internet facing one? |
13 |
> |
14 |
> Thanks in advance, |
15 |
> |
16 |
> Sent from my iPhone |
17 |
> |
18 |
> On 25/04/2013, at 05:14, "Halassy Zoltán" <zhalassy@×××××××.hu> wrote: |
19 |
> |
20 |
> > Hello! |
21 |
> > |
22 |
> > Using MX in SPF record is a simple way to describe trivial two-way |
23 |
> setups, that is, MX will also send the mails, not just receive them. If you |
24 |
> have a non-trivial setup, you can use, for example IP addresses, like ip6: |
25 |
> and ip4:. Add every address which from a mail could possibly leave your |
26 |
> organization, and that's it, do not use MX. BTW, the syntax is v=spf1, not |
27 |
> what you wrote. |
28 |
> > |
29 |
> > 2013-04-25 01:32 keltezéssel, Vinícius Ferrão írta: |
30 |
> >> I've a question about the SPF setup in my domain. |
31 |
> >> |
32 |
> >> We have two MTAs: an exchange server that does not use SMTP to relay |
33 |
> messages to the Internet and a Postfix Mail Gateway on the border to send |
34 |
> and receive messages to/from the internet. |
35 |
> >> |
36 |
> >> The clients connect on the Exchange Server to relay messages to the |
37 |
> external world. So an SMTP connection would start in the Exchange, then it |
38 |
> relays to the Postfix server and then to the Internet. On the other hand |
39 |
> when a message come from the Internet it first arrives in the Postfix |
40 |
> server and after the processing it's handled to the Exchange server. |
41 |
> >> |
42 |
> >> The question is: which SPF TXT string I should use? |
43 |
> >> |
44 |
> >> The Postfix server is my only MX. And I don't know if I should include |
45 |
> the Exchange Server name in the SPF rules. |
46 |
> >> |
47 |
> >> I was considering: vspf=1 mx -all |
48 |
> >> |
49 |
> >> But this does not include the Exchange, and I don't know if it's right |
50 |
> or not. |
51 |
> > |
52 |
> > |
53 |
> |
54 |
> |