Solved

Email PTR Reverse Lookup Issue

Posted on 2013-06-01
4
604 Views
Last Modified: 2013-06-14
I currently have a Trend Micro SPAM server and one Exchange 2007 server.  Our MX record points to our Spam server (mail.abc.com) for all inbound mail.

Our Exchange server sends mail directly out to the internet without going through the Spam server.

My question is given this configuration.... for receiving email servers that perform reverse lookups like AOL, Comcast, etc. I know I need to have a PTR record in place.  Does that PTR record have to point to my MX record (Spam Server) or does it need to point to the Exchange server (The outbound SMTP server).
0
Comment
Question by:BSModlin
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 20

Expert Comment

by:woolnoir
ID: 39213865
It doesnt matter, whatever IP the email server goes out on, needs to have the same forward and reverse DNS. Does your email server, NAT through the same IP address as your MX (spam) server ? if so, it's irrelevent.

If they are different IP's then just ensure the IP that the email server comes out to, resolves to a hostname, and that hostname, resolves back to the same IP.
0
 
LVL 20

Expert Comment

by:woolnoir
ID: 39213866
The only other consideration is the SPF records which define what IP's should be sending emails for each domain, make sure that side of things is covered.
0
 

Author Comment

by:BSModlin
ID: 39213876
Thank you.... One more question....if my email servers host name is exchange then I will need an A record for that host name and then associate that record with the PTR, correct?
0
 
LVL 20

Accepted Solution

by:
woolnoir earned 500 total points
ID: 39213882
you need to do the following... find out the 'external' IP that your exchange server talks out on. Do a reverse lookup on this Ip to find what it resolves to currently, if you control this, set it to i.e 'mail.blah.com', then make sure mail.blah.com points at this IP.

Its easier if you control both forward and reserve lookups, if your IP block is supplied via an ISP then you will potentially need to get them to change the reverse look up. if you do control both, i.e you have access to the DNS server that is forward and reverse authoritative then yes, do as you suggest above.
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Find out what you should include to make the best professional email signature for your organization.
Read this checklist to learn more about the 15 things you should never include in an email signature.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question