Enkhtuvshin Purevdorj
asked on
configuration dkim on email exchange server 2016
Mails sent from our internal email server to public servers such as Gmail, Yahoo and all other external organizations are delivering to spam. We currently use exchange server, in order to tackle above mentioned problem we would like to configure DKIM on exchange server 2016. Please kindly clarify the description of configuration of DKIM. If possible is there any method to solving this matter.
Thank you for your time,
Best regards.
Thank you for your time,
Best regards.
Tahir Qureshi
Check your certificate and MX-record
ASKER
no problem my cerificate and MX record
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
ip4:11.22.33.44 ip of my email server
Correct, public IP of you mail servers. If you have multiple egress IPs, it will be important to add them too. Like this...
"v=spf1 mx a:mail.domainname.com ip4:11.22.33.44 ip4:22.33.44.55 -all"
"v=spf1 mx a:mail.domainname.com ip4:11.22.33.44 ip4:22.33.44.55 -all"
ASKER
tnx i will do
ASKER
hostname "@" what is my dns server name or ?
@ is basically a catch-all for your domain. Kind of like *.
ASKER
May i ask a few question please ,first When i follow your guidance that you send me a guide about dkim's adjust, then is it going to make any proble
SPF, DMARC and DKIM are all utilized to prevent spoofing of your email domain.
With SPF, if any recipient organization does not check for these items, then spoofing can still occur. If a recipient organization does check for these items, any misconfiguration of the SPF TXT record will result in your senders receiving an NDR. So make sure your SPF TXT record has all of the IP addresses that may show up in your message headers.
DMARC TXT records are fairly generic. Make sure you provide a valid email address you are able to access.
With DKIM, just make sure you use the referenced website (http://dkimcore.org/tools/) in the Part II article so you can get a valid key pair for your domain.
With SPF, if any recipient organization does not check for these items, then spoofing can still occur. If a recipient organization does check for these items, any misconfiguration of the SPF TXT record will result in your senders receiving an NDR. So make sure your SPF TXT record has all of the IP addresses that may show up in your message headers.
DMARC TXT records are fairly generic. Make sure you provide a valid email address you are able to access.
With DKIM, just make sure you use the referenced website (http://dkimcore.org/tools/) in the Part II article so you can get a valid key pair for your domain.
Sufficient info provided for complete resolution.