Xjyuk

Quick Kurodoko Puzzle: Threes and Triples

How is underwater propagation of sound possible?

Escape the labyrinth!

Does battery condition have anything to do with macbook pro performance?

What are sources for Magic Items that are not adventure-specific?

What is the rail connection between Paris Charles de Gaulle Airport and Gare de Lyon like?

How could artificial intelligence harm us?

Make Interviewee Comfortable in Potentially Intimate Environment

Debussy as term for bathroom?

Why was Java 8 left out from Debian Buster?

What to do as a player when ranger animal companion dies

4h 40m delay caused by aircraft inspection, Norwegian refuses EU 261/2004 compensation because it turned out there was nothing wrong with the aircraft

Incorrect syntax near '+' in stored procedure sql server

How does one calculate the distribution of the Matt Colville way of rolling stats?

All numbers in a 5x5 Minesweeper grid

What is the origin of the "being immortal sucks" trope?

Should the pagination be reset when changing the order?

Why does Canada require a minimum rate of climb for ultralights of 300 ft/min?

Are lay articles good enough to be the main source of information for PhD research?

Manager manipulates my leaves, what's in it for him?

What are the end bytes of *.docx file format

Is Zack Morris's 'time stop' ability in "Saved By the Bell" a supernatural ability?

Removing rows containing NA in every column

Integrability of log of distance function

SMTP banner mismatch with multiple MX records

How would I setup reverse DNS for 2 email servers?Does a PTR record prove anything about the sender's email domain?want to Request our ISp to do rdns/ ptr modify for my Staic IP ot point to my Domain?Can a DNS pointer return several domain names on one ip lookup requestHotmail wants me to modify my SPF recordAssist in diagnosing reverse dns mismatchPTR record not valid for all domainsFailover for server with dual WANReverse DNS to match Sophos name, or mail server nameDelegate NS resource record of IPv4 subnet

.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty margin-bottom:0;

1

My gut feeling says "this isn't a problem and logically cannot really be fixed". I am configuring a backup ISP connection for use with our onsite exchange mail server.

This is what I have set up:

30.30.30.30 -> primary ISP
40.40.40.40 -> backup ISP

the following added to our server.co.uk domain DNS:

A mail.server.co.uk 30.30.30.30
A mail2.server.co.uk 40.40.40.40
mx mail.server.co.uk 10 
mx mail2.server.co.uk 20

PTR added by relevent ISPs:

30.30.30.30 mail.server.co.uk
40.40.40.40 mail2.server.co.uk

Now, our mail server always worked with just mail.server.co.uk as the banner, all is well, mxtoolbox is happy. However, what do I do with the banner regarding our failover MX? obviously the failover PTR is mail2.server.co.uk and will produce a "Reverse DNS does not match SMTP Banner" in mxtoolbox.

Do I just not worry about this or have I not set something correctly?

EDIT: SSL SAN cert installed on mail server has both mail.server.co.uk mail2.server.co.uk

domain-name-system email mx-record

share|improve this question

edited 7 hours ago

AngryCarrotTop

asked 8 hours ago

AngryCarrotTopAngryCarrotTop

20622 silver badges66 bronze badges

add a comment
 | 

1

My gut feeling says "this isn't a problem and logically cannot really be fixed". I am configuring a backup ISP connection for use with our onsite exchange mail server.

This is what I have set up:

30.30.30.30 -> primary ISP
40.40.40.40 -> backup ISP

the following added to our server.co.uk domain DNS:

A mail.server.co.uk 30.30.30.30
A mail2.server.co.uk 40.40.40.40
mx mail.server.co.uk 10 
mx mail2.server.co.uk 20

PTR added by relevent ISPs:

30.30.30.30 mail.server.co.uk
40.40.40.40 mail2.server.co.uk

Now, our mail server always worked with just mail.server.co.uk as the banner, all is well, mxtoolbox is happy. However, what do I do with the banner regarding our failover MX? obviously the failover PTR is mail2.server.co.uk and will produce a "Reverse DNS does not match SMTP Banner" in mxtoolbox.

Do I just not worry about this or have I not set something correctly?

EDIT: SSL SAN cert installed on mail server has both mail.server.co.uk mail2.server.co.uk

domain-name-system email mx-record

share|improve this question

edited 7 hours ago

AngryCarrotTop

asked 8 hours ago

AngryCarrotTopAngryCarrotTop

20622 silver badges66 bronze badges

add a comment
 | 

My gut feeling says "this isn't a problem and logically cannot really be fixed". I am configuring a backup ISP connection for use with our onsite exchange mail server.

This is what I have set up:

30.30.30.30 -> primary ISP
40.40.40.40 -> backup ISP

the following added to our server.co.uk domain DNS:

A mail.server.co.uk 30.30.30.30
A mail2.server.co.uk 40.40.40.40
mx mail.server.co.uk 10 
mx mail2.server.co.uk 20

PTR added by relevent ISPs:

30.30.30.30 mail.server.co.uk
40.40.40.40 mail2.server.co.uk

Now, our mail server always worked with just mail.server.co.uk as the banner, all is well, mxtoolbox is happy. However, what do I do with the banner regarding our failover MX? obviously the failover PTR is mail2.server.co.uk and will produce a "Reverse DNS does not match SMTP Banner" in mxtoolbox.

Do I just not worry about this or have I not set something correctly?

EDIT: SSL SAN cert installed on mail server has both mail.server.co.uk mail2.server.co.uk

domain-name-system email mx-record

share|improve this question

edited 7 hours ago

AngryCarrotTop

asked 8 hours ago

AngryCarrotTopAngryCarrotTop

20622 silver badges66 bronze badges

30.30.30.30 -> primary ISP
40.40.40.40 -> backup ISP

A mail.server.co.uk 30.30.30.30
A mail2.server.co.uk 40.40.40.40
mx mail.server.co.uk 10 
mx mail2.server.co.uk 20

30.30.30.30 mail.server.co.uk
40.40.40.40 mail2.server.co.uk

share|improve this question

edited 7 hours ago

AngryCarrotTop

asked 8 hours ago

AngryCarrotTopAngryCarrotTop

20622 silver badges66 bronze badges

share|improve this question

edited 7 hours ago

AngryCarrotTop

asked 8 hours ago

AngryCarrotTopAngryCarrotTop

20622 silver badges66 bronze badges

asked 8 hours ago

AngryCarrotTopAngryCarrotTop

20622 silver badges66 bronze badges

asked 8 hours ago

AngryCarrotTopAngryCarrotTop

20622 silver badges66 bronze badges

1 Answer
1

active

oldest

votes

3

You only need to worry about what the banner name is when mail2 is used to send an outgoing mail. And in that case, it should still match the reverse DNS for the IP it is using. About the only thing left to check is that the proper name is used in any SSL certs (all 3 names need to match for each server - banner/helo name, name in SSL cert, and reverse lookup) and that the backup server is listed in any SPF records, etc. As far as that goes, my SPF records simply list "all MXs for this domain".

So yes, as far as I can tell with what you've posted you should be good to go.

share|improve this answer

answered 8 hours ago

ivanivanivanivan

1,24233 silver badges66 bronze badges

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  I will edit that the SSL cert also has mail.server.co.uk and mail2.server.co.uk - it is simply the banner that will be different when primary ISP goes down. At that point all incoming mail will be via mail2.server.co.uk and outgoing mail will be mail2.server.co.uk - note that there is only one mail server so as far as I can tell I can only put one SMTP banner hence the question.
  
  – AngryCarrotTop
  7 hours ago
  
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  @AngryCarrotTop now i'm confused. one box with multiple ips from different providers? Then the ISPs need to configure reverse DNS for all IPs to point to the banner name used. Your question wording sounded like you have two servers, and two connections, and the backup server kicks in when ISP one goes down. In which case my answer applies.
  
  – ivanivan
  6 hours ago
  

  
  
  
  

add a comment
 | 

Your Answer

StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "2"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/4.0/"u003ecc by-sa 4.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);

draft saved

draft discarded

Sign up or log in

StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);

Sign up using Google

Sign up using Facebook

Sign up using Email and Password

Post as a guest

Name

Email

Required, but never shown

StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f984583%2fsmtp-banner-mismatch-with-multiple-mx-records%23new-answer', 'question_page');

);

Post as a guest

Name

Email

Required, but never shown

3

You only need to worry about what the banner name is when mail2 is used to send an outgoing mail. And in that case, it should still match the reverse DNS for the IP it is using. About the only thing left to check is that the proper name is used in any SSL certs (all 3 names need to match for each server - banner/helo name, name in SSL cert, and reverse lookup) and that the backup server is listed in any SPF records, etc. As far as that goes, my SPF records simply list "all MXs for this domain".

So yes, as far as I can tell with what you've posted you should be good to go.

share|improve this answer

answered 8 hours ago

ivanivanivanivan

1,24233 silver badges66 bronze badges

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  I will edit that the SSL cert also has mail.server.co.uk and mail2.server.co.uk - it is simply the banner that will be different when primary ISP goes down. At that point all incoming mail will be via mail2.server.co.uk and outgoing mail will be mail2.server.co.uk - note that there is only one mail server so as far as I can tell I can only put one SMTP banner hence the question.
  
  – AngryCarrotTop
  7 hours ago
  
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  @AngryCarrotTop now i'm confused. one box with multiple ips from different providers? Then the ISPs need to configure reverse DNS for all IPs to point to the banner name used. Your question wording sounded like you have two servers, and two connections, and the backup server kicks in when ISP one goes down. In which case my answer applies.
  
  – ivanivan
  6 hours ago
  

  
  
  
  

add a comment
 | 

3

You only need to worry about what the banner name is when mail2 is used to send an outgoing mail. And in that case, it should still match the reverse DNS for the IP it is using. About the only thing left to check is that the proper name is used in any SSL certs (all 3 names need to match for each server - banner/helo name, name in SSL cert, and reverse lookup) and that the backup server is listed in any SPF records, etc. As far as that goes, my SPF records simply list "all MXs for this domain".

So yes, as far as I can tell with what you've posted you should be good to go.

share|improve this answer

answered 8 hours ago

ivanivanivanivan

1,24233 silver badges66 bronze badges

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  I will edit that the SSL cert also has mail.server.co.uk and mail2.server.co.uk - it is simply the banner that will be different when primary ISP goes down. At that point all incoming mail will be via mail2.server.co.uk and outgoing mail will be mail2.server.co.uk - note that there is only one mail server so as far as I can tell I can only put one SMTP banner hence the question.
  
  – AngryCarrotTop
  7 hours ago
  
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  @AngryCarrotTop now i'm confused. one box with multiple ips from different providers? Then the ISPs need to configure reverse DNS for all IPs to point to the banner name used. Your question wording sounded like you have two servers, and two connections, and the backup server kicks in when ISP one goes down. In which case my answer applies.
  
  – ivanivan
  6 hours ago
  

  
  
  
  

add a comment
 | 

You only need to worry about what the banner name is when mail2 is used to send an outgoing mail. And in that case, it should still match the reverse DNS for the IP it is using. About the only thing left to check is that the proper name is used in any SSL certs (all 3 names need to match for each server - banner/helo name, name in SSL cert, and reverse lookup) and that the backup server is listed in any SPF records, etc. As far as that goes, my SPF records simply list "all MXs for this domain".

So yes, as far as I can tell with what you've posted you should be good to go.

share|improve this answer

answered 8 hours ago

ivanivanivanivan

1,24233 silver badges66 bronze badges

share|improve this answer

answered 8 hours ago

ivanivanivanivan

1,24233 silver badges66 bronze badges

answered 8 hours ago

ivanivanivanivan

1,24233 silver badges66 bronze badges

answered 8 hours ago

ivanivanivanivan

1,24233 silver badges66 bronze badges