Solved

Multiple reverse DNS records for a single Exchange server environment

Posted on 2010-09-06
2
934 Views
Last Modified: 2012-08-14
One of our clients has multiple companies working out of the same building.  All of these
companies, as far as the outside world should understand, are not part of a single entity.

They have a single Exchange 2007 server environment.

The problem we have is when company B sends a mail out, the header comes back with the details of Company A, as this is the reverse DNS setting.  I understand this is how Reverse DNS works, it doesn’t matter what address you send out from, as long as there is a “valid” Reverse DNS record in place, then the mail will send out ok.

All email is sent through a Sophos ES1000 appliance, and this appliance is set as the smart host for the Exchange server and this appliance is only capable of handling a single FQDN.

The company has multiple IP addresses to use.

What I would like to seems simple.

I would like the ability to set up multiple connectors in Exchange 2007, each with a different FQDN, and each one with a different Reverse DNS record to a separate public facing IP.

I do understand that this will not be possible if all email is going out through the Sophos mail appliance, so for the purpose of this question, let us rule that out.

There is a Sonicwall NSA2400 in place, and the whole environment is ESX4.0 if this has a bearing on anything.

Do me a favour and don’t past me any links on how Reverse DNS works and how to configure you Reverse DNS record, I do understand this.  This problem is I need multiple reverse DNS records.

¿  Thanks
0
Comment
Question by:Coast-IT
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 12

Expert Comment

by:RobinHuman
ID: 33610211
You should be able to set an external MX record for each domain with the domain registrar of the domain (whoever the domain is managed by) pointing to your client's external IP address - this should then resolve reverse DNS queries back to your IP. Check that the provider has set this up for reverse lookup.
Reverse DNS put simply is where the receiving mail server does a dns query for the mail domain of the incoming message (ie. a lookup of the MX record) and if it resolves to the correct IP then it accepts the message as being genuine
Hope this helps
0
 
LVL 11

Accepted Solution

by:
Coast-IT earned 0 total points
ID: 33610575
Reverse DNS doesn't do a lookup on the domain that has sent the message, only that it has come from a valid source with a valid reverse DNS field.

I do appreciate your time to comment though.

My proposed solution is as follows ;

1. register a domain such as mysecureemail.com
2. set up reverse DNS for a public facing ip to look at that domain
3. set the new domain as the FQDN on the Sophos applicance
4. forward all mail through the email appliance as a smarthost.

Using this method, there will be little detail back to the link between companies (I say little because I know about Exchange 2007 mail headers and internal hosts)

It doesn't answer my multiple reverse DNS entries question, but I am sue this method will work perfectly.

0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
In-place Upgrading Dirsync to Azure AD Connect
This video demonstrates how to sync Microsoft Exchange Public Folders with smartphones using CodeTwo Exchange Sync and Exchange ActiveSync. To learn more about CodeTwo Exchange Sync and download the free trial, go to: http://www.codetwo.com/excha…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
Suggested Courses

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question