[exim] Is this against any rules in the RFCs?

Startseite
Nachricht löschen
Nachricht beantworten
Autor: Odhiambo G. Washington
Datum:  
To: exim-users
Betreff: [exim] Is this against any rules in the RFCs?
Hi people,

I hope you had a nice weekend!

I'd like to request for an advise on a setup that I am already using.
I don't fear spammers hitting at my box, so I will not mange anything!

There are two questions:

I have setup smtp-out.wananchi.com as a smart host relay for my domains.
This machine has been setup such that it only accepts smtp connections
from 1 host - smtp.wananchi.com. All other machines are not allowed to
connect. I use the machine this way:

smtp.wananchi.com -> smtp-out.wananchi.com -> Internet

On smtp.wananchi.com, which is my primary MX, I have a router that hands
off all mail __not bound to__ +local_domains and +relay_to_domains to
smtp-out.wananchi.com. This later machine should do all the DNS lookups
and the routing. However it does not allow any connections from hosts
other than 62.8.64.4

Q1. Is that setup RFC-ignorant or RFC-legal as far as mail exchange on
    the Internet is concerned? I'm in doubt, especially regarding
    sender verifications and callouts.


Q2. Must I publish this box as one of my MXes? The reason I am asking
    this is because GMX.de (they use SPF) is already rejecting e-mails
    sent via this server saying:


>A message that you sent could not be delivered to one or more of its
>recipients. This is a permanent error. The following address(es) failed:
>
> XXXX.YYY@???
> SMTP error from remote mailer after RCPT TO:<XXXX.YYY@???>:
> host mx0.gmx.net [213.165.64.100]: 550-5.7.1 {mx054} The recipient does
> not accept mails from 'wananchi.com' over foreign mailservers.
> 550 5.7.1 According to the domain's SPF record your host '62.8.64.20'
> is not a designated sender.



Now, I published an SPF record for this box, without listing it as MX
and GMX.de still rejected mail from it. It's only after I published it
as an MX server that GMX.de accepted mail from it.


Is it a requirement that when you publish a host with SPF, then you must
also have it as your MX?
I would understand if a host rejected mail from smtp-out because it's
not listed as MX for that domain, but I am in doubt as well.




        cheers
       - wash 
+----------------------------------+-----------------------------------------+
Odhiambo Washington                    . WANANCHI ONLINE LTD (Nairobi, KE)  |
wash _at_ wananchi _ dot _ com        . 1ere Etage, Loita Hse, Loita St.,  |
GSM: (+254) 722 743 223            . # 10286, 00100 NAIROBI             |
GSM: (+254) 733 744 121            . (+254) 020 313 985 - 9             |
+---------------------------------+------------------------------------------+
"Oh My God! They killed init! You Bastards!"  
                         --from a /. post