Results 1 to 6 of 6

Thread: Paid Support Request For Community Edition

  1. #1
    hexfusion is offline Member
    Join Date
    Feb 2010
    Posts
    10
    Rep Power
    5

    Default Paid Support Request For Community Edition

    Hello,
    I have used Zimbra for quite sometime but am running into a few issues that I would like a professional to take a look at.

    Currently Running with Split DNS
    Zimbra 7.2.1_GA_2790
    Centos 5.8 x64

    I have 4 domains which send through this server and I need to:

    properly setup DKIM
    make sure spf records are correct and audit DNS records.
    make sure headers are sent with correct info

    Although these issues should not be complicated I have been having a rough time getting them 100% correct which in result has gotten many of our emails sent to junk folders.

    I would like a pro to check through the setup of the server make any recommendations necessary.

    Thanks.

  2. #2
    phoenix is offline Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,585
    Rep Power
    57

    Default

    Why don't you tell us what you've done to set-up (which version?) DKIM (and the relevant DNS records) and any tutorials you've followed, the ZCS changes plus some details of the problems and errors you're getting?
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

  3. #3
    hexfusion is offline Member
    Join Date
    Feb 2010
    Posts
    10
    Rep Power
    5

    Default

    Hi Bill thanks for nudging me here

    Here is my config I have the zimbra server setup at mail.myemaildomain.com
    I send emails using:
    domain1.com
    domain2.com
    so myemaildomain.com does not send mail as @myemaildomain.com only @domain1.com etc

    Lets start with general dns and split dns info

    mail server

    #/etc/hosts
    Code:
    127.0.0.1               localhost.localdomain localhost
    192.168.2.6             mail.myemaildomain.com mail
    #/var/named/chroot/var/named/db.mail.myemaildomain.com
    Code:
    @       IN      SOA     mail.myemaildomain.com. admin.myemaildomain.com. (
                                   10118      ; Serial
                                   43200      ; Refresh
                                   3600       ; Retry
                                   3600000    ; Expire
                                   2592000 )  ; Minimum
    
                   IN      NS      192.168.2.6
    mail.myemaildomain.com.     IN      A       192.168.2.6
    myemaildomain.com.  IN      MX      10 mail.myemaildomain.com.

    #/var/named/chroot/etc/named.conf

    Code:
    options {
        directory "/var/named";
        dump-file "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        forwarders {
            8.8.8.8 ;
            208.67.222.222 ;
        };
    };
    include "/etc/rndc.key";
    // Specify that this server is the master for mail.myemaildomain.com
    zone "mail.myemaildomain.com" {
        type master;
        file "db.mail.myemaildomain.com";
    };
    #/etc/resolv.conf
    Code:
    search myemaildomain.com
    nameserver 127.0.0.1
    #external dns records

    Code:
    myemaildomain.com.  TXT v=spf1 mx -all
    mail.myemaildomain.com.  TXT v=spf1 a -all
    mail A 123.123.123.134
    #networksolutions hosted dns domain1
    Code:
    @(none)  TXT v=spf1 mx -all
    mail.myemaildomain.com. MX 10
    # dig mail.myemaildomain.com mx

    Code:
    ; <<>> DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5_8.5 <<>> mail.myemaildomain.com mx
    ;; global options:  printcmd
    ;; Got answer:
    ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 52977
    ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
    
    ;; QUESTION SECTION:
    ;mail.myemaildomain.com.		IN	MX
    
    ;; AUTHORITY SECTION:
    mail.myemaildomain.com.	2592000	IN	SOA	mail.myemaildomain.com. admin.myemaildomain.com. 10118 43200 3600 3600000 2592000
    
    ;; Query time: 1 msec
    ;; SERVER: 127.0.0.1#53(127.0.0.1)
    ;; WHEN: Thu Dec 13 11:59:56 2012
    ;; MSG SIZE  rcvd: 93
    This seems correct but in my email header I get reference to another IP 123.123.123.130 should be 123.123.123.134 right?

    #mail header
    Code:
    		From: 	Me <me@domain1.com>
    	Subject: 	test
    	Date: 	December 13, 2012 11:17:10 AM EST
    	To: 	Me <me@mac.com>
    	Return-Path: 	Me <me@domain1.com>
    	Received: 	from st11b01mm-smtpin203.mac.com ([17.172.48.34]) by ms06544.mac.com (Oracle Communications Messaging Server 7u4-26.01 (7.0.4.26.0) 64bit (built Jul 13 2012)) with ESMTP id <0MEZ00FYF99304Q0@ms06544.mac.com> for Me <me@mac.com>; Thu, 13 Dec 2012 16:17:27 +0000 (GMT)
    	Received: 	from mail.myemaildomain.com ([123.123.123.130]) by st11b01mm-smtpin203.mac.com (Oracle Communications Messaging Server 7u4-23.01(7.0.4.23.0) 64bit (built Aug 10 2011)) with ESMTP id <0MEZ009N998QNBL1@st11b01mm-smtpin203.mac.com> for <me@mac.com> (ORCPT <me@mac.com>); Thu, 13 Dec 2012 16:17:27 +0000 (GMT)
    	Received: 	from localhost (localhost.localdomain [127.0.0.1]) by mail.myemaildomain.com (Postfix) with ESMTP id DE85950EBE9	for <<me@mac.com>>; Thu, 13 Dec 2012 11:17:12 -0500 (EST)
    	Received: 	from mail.myemaildomain.com ([127.0.0.1]) by localhost (mail.myemaildomain.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id i+E4snAohAj1 for <<me@mac.com>>; Thu, 13 Dec 2012 11:17:10 -0500 (EST)
    	Received: 	from mail.myemaildomain.com (mail.myemaildomain.com [192.168.2.6]) by mail.myemaildomain.com (Postfix) with ESMTP id 3293850EBE8	for <<me@mac.com>>; Thu, 13 Dec 2012 11:17:10 -0500 (EST)
    	Original-Recipient: 	rfc822;me@mac.com
    	X-Proofpoint-Virus-Version: 	vendor=fsecure engine=2.50.10432:5.9.8327,1.0.431,0.0.0000 definitions=2012-12-13_07:2012-12-13,2012-12-13,1970-01-01 signatures=0
    	X-Proofpoint-Spam-Details: 	rule=notspam policy=default score=0 spamscore=0 ipscore=0 suspectscore=0 phishscore=0 bulkscore=0 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=6.0.2-1203120001 definitions=main-1212130135
    	X-Virus-Scanned: 	amavisd-new at mail.myemaildomain.com
    	Message-Id: 	<65095625.573.1355415429965.JavaMail.root@domain2.com>
    	Mime-Version: 	1.0
    	Content-Type: 	text/plain; charset=utf-8
    	Content-Transfer-Encoding: 	7bit
    	X-Mailer: 	Zimbra 7.2.1_GA_2790 (ZimbraWebClient - FF3.0 (Mac)/7.2.1_GA_2790)

  4. #4
    phoenix is offline Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,585
    Rep Power
    57

    Default

    Sorry for the late reply to this thread.

    There seems to be some slightly confusing output in your last post. The output you've posted for the Split DNS seems correct as far as it goes, I'd like to see the output of the following commands:

    Code:
    dig myemaildomain.com mx
    dig myemaildomain.com any 
    host $(hostname)
    I'd expect that to be correct based on what you've posted above.

    It's the external records that confuse me, you've used the following command for the dig:

    Code:
    dig mail.myemaildomain.com mx
    Why have you used the FQDN of your server instead of the correct domain name: "myemaildomain.com"? To get the correct output you'd have to do the dig command outside your LAN or use one of the internet DNS checking sites. Do you have access to the DNS records for modification?

    The headers you've posted have this line:

    Code:
    Received: 	from mail.myemaildomain.com ([123.123.123.130]) by st11b01mm-smtpin203.mac.com (Oracle Communications Messaging Server 7u4-23.01(7.0.4.23.0) 64bit (built Aug 10 2011)) with ESMTP id <0MEZ009N998QNBL1@st11b01mm-smtpin203.mac.com> for <me@mac.com> (ORCPT <me@mac.com>); Thu, 13 Dec 2012 16:17:27 +0000 (GMT)
    That seems to be relaying through another server, is that what you're doing?
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

  5. #5
    hexfusion is offline Member
    Join Date
    Feb 2010
    Posts
    10
    Rep Power
    5

    Default [SOLVED] Reverse NAT failing DKIM

    Hi Bill thanks for getting me to write this all out as it normally goes when you step back and view everything the error becomes more obvious. My main issue is that I was using pfsence as my router with multiple ip's and the reverse NAT was set to the default interface for all traffic. So all outbound transmissions were appearing from IP 123.123.123.130 vs 123.123.123.134. This was failing everything from reverse dns verification to DKIM. By resolving the reverse NAT records everything works perfect.

  6. #6
    phoenix is offline Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,585
    Rep Power
    57

    Default

    Quote Originally Posted by hexfusion View Post
    Hi Bill thanks for getting me to write this all out as it normally goes when you step back and view everything the error becomes more obvious. My main issue is that I was using pfsence as my router with multiple ip's and the reverse NAT was set to the default interface for all traffic. So all outbound transmissions were appearing from IP 123.123.123.130 vs 123.123.123.134. This was failing everything from reverse dns verification to DKIM. By resolving the reverse NAT records everything works perfect.
    Well done, I'm glad you've fixed it.
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Instant Messaging support in community edition
    By pratik in forum Administrators
    Replies: 1
    Last Post: 05-17-2012, 01:52 AM
  2. [SOLVED] Paid support anyone
    By thelastphoneguy in forum Installation
    Replies: 16
    Last Post: 03-22-2011, 02:39 PM
  3. Question about paid support
    By BCamp in forum Administrators
    Replies: 4
    Last Post: 09-08-2010, 10:05 AM
  4. Replies: 5
    Last Post: 03-16-2010, 01:26 AM
  5. Paid Zimbra Support = Black Hole?
    By shuntphl in forum Migration
    Replies: 3
    Last Post: 08-04-2009, 02:23 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •