Solved

Email PTR Reverse Lookup Issue

Posted on 2013-06-01
4
590 Views
Last Modified: 2013-06-14
I currently have a Trend Micro SPAM server and one Exchange 2007 server.  Our MX record points to our Spam server (mail.abc.com) for all inbound mail.

Our Exchange server sends mail directly out to the internet without going through the Spam server.

My question is given this configuration.... for receiving email servers that perform reverse lookups like AOL, Comcast, etc. I know I need to have a PTR record in place.  Does that PTR record have to point to my MX record (Spam Server) or does it need to point to the Exchange server (The outbound SMTP server).
0
Comment
Question by:BSModlin
  • 3
4 Comments
 
LVL 20

Expert Comment

by:woolnoir
ID: 39213865
It doesnt matter, whatever IP the email server goes out on, needs to have the same forward and reverse DNS. Does your email server, NAT through the same IP address as your MX (spam) server ? if so, it's irrelevent.

If they are different IP's then just ensure the IP that the email server comes out to, resolves to a hostname, and that hostname, resolves back to the same IP.
0
 
LVL 20

Expert Comment

by:woolnoir
ID: 39213866
The only other consideration is the SPF records which define what IP's should be sending emails for each domain, make sure that side of things is covered.
0
 

Author Comment

by:BSModlin
ID: 39213876
Thank you.... One more question....if my email servers host name is exchange then I will need an A record for that host name and then associate that record with the PTR, correct?
0
 
LVL 20

Accepted Solution

by:
woolnoir earned 500 total points
ID: 39213882
you need to do the following... find out the 'external' IP that your exchange server talks out on. Do a reverse lookup on this Ip to find what it resolves to currently, if you control this, set it to i.e 'mail.blah.com', then make sure mail.blah.com points at this IP.

Its easier if you control both forward and reserve lookups, if your IP block is supplied via an ISP then you will potentially need to get them to change the reverse look up. if you do control both, i.e you have access to the DNS server that is forward and reverse authoritative then yes, do as you suggest above.
0

Featured Post

Active Directory Webinar

We all know we need to protect and secure our privileges, but where to start? Join Experts Exchange and ManageEngine on Tuesday, April 11, 2017 10:00 AM PDT to learn how to track and secure privileged users in Active Directory.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Lotus Notes – formerly IBM Notes – is an email client application, while IBM Domino (earlier Lotus Domino) is an email server. The client possesses a set of features that are even more advanced as compared to that of Outlook. Likewise, IBM Domino is…
This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
how to add IIS SMTP to handle application/Scanner relays into office 365.
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

821 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question