Solved

PTR Records hosting Multiple IPs

Posted on 2013-05-21
5
337 Views
Last Modified: 2013-05-30
Is this something that is done?

Currently lets say I have my outbound email environment send out this domain mail.xxx.com. but we have 3 separate smtp server with different IP addresses pointing to said domain.

So when you do a reverse look each IP resolve back to mail.xxx.com.

Right now we seem to have a problem where certain mailserver would deny our mail because of inconsistent reverse lookup.

I take it this not a practice that is typically done. But this how I found it setup. Can someone confirm this is bad and how I should resolve it. I have an idea but would like to get other input to see if I am corrrect. Thanks for the help in advance.
0
Comment
Question by:NVoCurious
  • 3
  • 2
5 Comments
 
LVL 12

Expert Comment

by:Kent W
ID: 39186187
There is no issue if you have 3 IP addresses with PTRs set to the same host name.
Bad would be having the same IP with multiple host names.  (Similar to round-robin forward DNS).
The way you described your setup, there should be no issue.

Basically as long as you have rDNS,  and if possible, matching the forward DNS, you are good.
0
 

Author Comment

by:NVoCurious
ID: 39186210
Well we are getting some domains where it says that we are sending them inconsistant PTR information.

Where lets 111.111.111.111 is return all the time the reverse lookup  for mail.xxx.com. Even though the email comes from 111.111.111.222 or 111.111.222.111.

Also find out they setup mail.xxx.com as for owa and nothing to do with smtp for an A record that has no correlation to the 3 IPs for the smtp server could this be the reason.

How would resolve said issue?

Without breaking owa would we have to use a different FQDN on the outbound and create or adjust the PTR with the new FQDN?

Some a PTR record should have a matching A record is this the case?
0
 
LVL 12

Accepted Solution

by:
Kent W earned 500 total points
ID: 39186250
Oh ok I understand a little more now. I would set like smtp1.domain.com, smtp2, etc for the SMTP servers individually. Set the PTR to match. Make sure you have forward A records matching and name the IPs in a SPF record giving the IPs authority to send for your domain.
Sounds like the complaint is bases on different IPs presenting themselves as the same rDNS. I've never seen a complaint like that, but many large providers are getting more and more anal retentive. :)
0
 

Author Comment

by:NVoCurious
ID: 39186257
Ok I figure that would up be the case. Thank you for your quick response. If I do this do you see a possible long outage or very little to no outage if I get the records out there first.
0
 
LVL 12

Expert Comment

by:Kent W
ID: 39186272
No there shouldn't really be any outage unless its a server already denying, then you would just pair for your TTLs to expire. Changing the DNS should only make things better, especially if you add an SPF Immediately.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
This article will inform Clients about common and important expectations from the freelancers (Experts) who are looking at your Gig.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question