?
Solved

MXRecords and reverse lookup for SMTP services.

Posted on 2008-10-17
5
Medium Priority
?
288 Views
Last Modified: 2013-12-14
Greetings EE Gods.....

I have an exchange server that sends SMTP out one IP, however gets NAT'd to a second.  In Addition, the outbound IP address is NOT MXRecorded because that is not our Primary IP address to the ISP.  I have three, and what I need to do is fool the destination end to believe it is coming from one IP vice another.  My outbound data is *.*.*.5, however my MXRecord is on my primary line at *.*.*.3

I need the data to continue out on .5, but have the destination think its coming from .3 so I don't get caught in spam filters.  I do NOT have the ability to add a record to the MXRecord.

Thankyou.
0
Comment
Question by:mtmadhatt
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 71

Expert Comment

by:Chris Dent
ID: 22745703

The MX Record effects Inbound mail only. It has no impact at all on Outbound mail.

On the other hand, you must have a PTR record and a valid name for the IP address the server does use to send out mail. Can you add those? The name will be via your DNS host (if that's not yourself), and the name must be set on the SMTP service. The PTR record is normally set by your ISP (or whoever provides the network connection the SMTP server uses).

If you can't have those then you must relay mail out through a third party if you expect mail to be delivered reliably.

Chris
0
 

Author Comment

by:mtmadhatt
ID: 22745789
ok. We know that our PTR records point to *.*.*.3, but our data goes out *.*.*.5.
We are having difficulty getting our PTR, sorry for the  bad nouns, moved.

How can I virtually make the distant end think *.3 even though it is coming from *.5?

Thanks.
0
 
LVL 71

Accepted Solution

by:
Chris Dent earned 2000 total points
ID: 22745831

No, I'm afraid not.

You need to be able to establish a TCP connection, that means it needs to get the response back from the remote server. It cannot possibly get that response if you're faking the IP (bad return path).

You can't change the network address translation so it uses .5?

For the PTR records, it's basically an IP pointing to a name, so rather than it pointing to .3, it's .3 pointing to a name (if you see what I mean).

Chris
0
 

Author Closing Comment

by:mtmadhatt
ID: 31507339
I was afraid you were going to say that.  Ok, so it sounds like i"m down to two possible solutions.  I know where to go from here.
Thanks.
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 22745911

Good luck :)

Chris
0

Featured Post

Need protection from advanced malware attacks?

Look no further than WatchGuard's Total Security Suite, providing defense in depth against today's most headlining attacks like Petya 2.0 and WannaCry. Keep your organization out of the news with protection from known and unknown threats.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I wrote this article to explain some important DNS concepts that should be known to avoid some typical configuration errors I often see in forums. I assume that what is described here is the typical behavior of Microsoft DNS client. I don't know …
Sometimes you have to pull out old tricks to get a new firewall to work… While we were installing a new Sonicwall at a customers site we found that sites they were able to visit before were not working.  It seemed random and we could not understa…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.
This tutorial will teach you the special effect of super speed similar to the fictional character Wally West aka "The Flash" After Shake : http://www.videocopilot.net/presets/after_shake/ All lightning effects with instructions : http://www.mediaf…
Suggested Courses
Course of the Month14 days, 20 hours left to enroll

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question