Hi DM,
I've had my BBS set up to relay outgoing SMTP email through Vertrauen for a while, according to this wiki page: https://wiki.synchro.net/howto:relay_smtp
Recently, all outgoing email from my system has been coming back with a 'failure to deliver' message. I don't know what has changed. For instance, I tried sending a test email to my Gmail account from my BBS and got this response back:
TZ: fe20
vert.synchro.net reporting delivery failure of message
from Nightfox to eric.oulashin@gmail.com
Reason:
gmail-smtp-in.l.google.com replied with:
"550 5.7.26 https://support.google.com/mail/answer/81126#authentication x188-20020a6263c5000000b006d98bbbd3cbsi11324918pfb.295 - gsmtp"
instead of the expected reply:
"250 ..."
Original message text follows:
This is a test
Maybe it was just a temporary failure? I just tried and successfully delivered an email to that address (from the same mail severs):
Re: Email relay through Vertrauen failing
By: Digital Man to Nightfox on Sun Jan 07 2024 06:49 pm
Maybe it was just a temporary failure? I just tried and successfully delivered an email to that address (from the same mail severs):
Hopefully it's temporary. But for at least a month or so now, every email I've sent out from my BBS (routed through yours) has had a failure response.
Gmail has recently started requiring a _dmarc dns record to be created to continue to accept emails. I've had to do that in several other non-bbs systems lately because they are cracking down on "spam". Not to suggest what you're sending is spam, but you should look into creating a _dmarc dns address that works for you, even if it's to do nothing.
Re: Email relay through Vertrauen failing
By: Jason to Nightfox on Tue Jan 16 2024 11:56 pm
Gmail has recently started requiring a _dmarc dns record to be created to continue to accept emails. I've had to do that in several other non-bbs systems lately because they are cracking down on "spam". Not to suggest what you're sending is spam, but you should look into creating a _dmarc dns address that works for you, even if it's to do nothing.
Since I'm relaying my outgoing email through Vertrauen, I'm not sure if it would be me or Vertrauen that needs thta DNS record.
Re: Email relay through Vertrauen failing
By: Jason to Nightfox on Tue Jan 16 2024 11:56 pm
Gmail has recently started requiring a _dmarc dns record to be created to continue to accept emails. I've had to do that in several other non-bbs systems lately because they are cracking down on "spam".
Not to suggest what you're sending is spam, but you should look into creating a _dmarc dns address that works for you, even if it's to do nothing.
Since I'm relaying my outgoing email through Vertrauen, I'm not sure if it would be me or Vertrauen that needs thta DNS record.
Nightfox
Re: Email relay through Vertrauen failingIf I remember correctly, the DMARC must be added at the last MTA relay
By: Nightfox to Jason on Wed Jan 17 2024 09:12:07
Re: Email relay through Vertrauen failing
By: Jason to Nightfox on Tue Jan 16 2024 11:56 pm
Gmail has recently started requiring a _dmarc dns record to
be created to continue to accept emails. I've had to do that
in several other non-bbs systems lately because they are
cracking down on "spam". Not to suggest what you're sending
is spam, but you should look into creating a _dmarc dns
address that works for you, even if it's to do nothing.
Since I'm relaying my outgoing email through Vertrauen, I'm not
sure if it would be me or Vertrauen that needs thta DNS record.
Nightfox
It's the DNS record that needs updating to support a _DMARC entry for
your own domain, nothing to do with the outbound MTA(s). Here is my
_DMARC entry on my cloudflare DNS.
"TXT", "_dmarc.bbs.magnum.uk.net", "v=DMARC1; p=reject"
A good website to use to check your DMARC config is:
https://mxtoolbox.com/
Which has some DMARC testing functions.
Many receiving email services will also throw your BBS's email into
the SPAM folder or just outright drop it, if DKIM is also not used.
DKIM however requires the last outbound MTA sign the email with your
DKIM private key which needs to match a DKIM public key within your
DNS configuration.
I use a postfix MTA to act as an inbound / outbouund relay for my BBS
emails, which takes care anti malware, anti spam, SPF (inbound),
DMARC (inbound) and DKIM (inbound / outbound) processing.
Feel free to reach out to me if you'd like any help setting up an MTA
relay.
---
â– Synchronet â– >>> Magnum BBS <<< - bbs.magnum.uk.net
If I remember correctly, the DMARC must be added at the last MTA relay before it is sent out. Or maybe I'm thinking SPF or something else, but
I know that one of them has to be added by your mail relay and not you.
Gmail has recently started requiring a _dmarc dns record to be created to continue to accept emails. I've had to do that in several other non-bbs
systems lately because they are cracking down on "spam". Not to suggest what you're sending is spam, but you should look into creating a _dmarc dns
address that works for you, even if it's to do nothing.
Since I'm relaying my outgoing email through Vertrauen, I'm not sure if it would be me or Vertrauen that needs thta DNS record.
Nightfox
Sysop: | DaiTengu |
---|---|
Location: | Appleton, WI |
Users: | 920 |
Nodes: | 10 (0 / 10) |
Uptime: | 108:41:56 |
Calls: | 12,190 |
Calls today: | 2 |
Files: | 186,527 |
Messages: | 2,237,607 |