Mdthbs

Is there an in-universe reason Harry says this or is this simply a Rowling mistake?

4h 40m delay caused by aircraft inspection, Norwegian refuses EU 261/2004 compensation because it turned out there was nothing wrong with the aircraft

Prove that the area of the trangles are equal.

Is there a connection between IT and Ghostbusters?

What do solvers like Gurobi and CPLEX do when they run into hard instances of MIP

Why are there two bearded faces wearing red hats on my stealth bomber icon?

Debussy as term for bathroom?

Get the encrypted payload from an unencrypted wrapper PDF document

How should I avoid someone patenting technology in my paper/poster?

How does one calculate the distribution of the Matt Colville way of rolling stats?

Are lay articles good enough to be the main source of information for PhD research?

How was ownership of property managed during the Black Death, when so many original owners had died?

Do household ovens ventilate heat to the outdoors?

I was cheated into a job and want to leave ASAP, what do I tell my interviewers?

What to do as a player when ranger animal companion dies

Simulate a 1D Game-of-Life-ish Model

What did the controller say during my approach to land (audio clip)?

Tips for remembering the order of parameters for ln?

Microservices and Stored Procedures

Inquiry answerer

Floating Point XOR

Can one guy with a duplicator initiate a nuclear apocalypse?

EU compensation - fire alarm at the Flight Crew's hotel

What is the origin of the "being immortal sucks" trope?

SMTP banner mismatch with multiple MX records

How would I setup reverse DNS for 2 email servers?Does a PTR record prove anything about the sender's email domain?want to Request our ISp to do rdns/ ptr modify for my Staic IP ot point to my Domain?Can a DNS pointer return several domain names on one ip lookup requestHotmail wants me to modify my SPF recordAssist in diagnosing reverse dns mismatchPTR record not valid for all domainsFailover for server with dual WANReverse DNS to match Sophos name, or mail server nameDelegate NS resource record of IPv4 subnet

.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ margin-bottom:0;
}

1

My gut feeling says "this isn't a problem and logically cannot really be fixed". I am configuring a backup ISP connection for use with our onsite exchange mail server.

This is what I have set up:

30.30.30.30 -> primary ISP

40.40.40.40 -> backup ISP

the following added to our server.co.uk domain DNS:

A  mail.server.co.uk 30.30.30.30

A  mail2.server.co.uk 40.40.40.40

mx mail.server.co.uk 10 

mx mail2.server.co.uk 20

PTR added by relevent ISPs:

30.30.30.30 mail.server.co.uk

40.40.40.40 mail2.server.co.uk

Now, our mail server always worked with just mail.server.co.uk as the banner, all is well, mxtoolbox is happy. However, what do I do with the banner regarding our failover MX? obviously the failover PTR is mail2.server.co.uk and will produce a "Reverse DNS does not match SMTP Banner" in mxtoolbox.

Do I just not worry about this or have I not set something correctly?

EDIT: SSL SAN cert installed on mail server has both mail.server.co.uk mail2.server.co.uk

domain-name-system email mx-record

share|improve this question

edited 7 hours ago

AngryCarrotTop

asked 8 hours ago

AngryCarrotTopAngryCarrotTop

20622 silver badges66 bronze badges

add a comment
 | 

1

My gut feeling says "this isn't a problem and logically cannot really be fixed". I am configuring a backup ISP connection for use with our onsite exchange mail server.

This is what I have set up:

30.30.30.30 -> primary ISP

40.40.40.40 -> backup ISP

the following added to our server.co.uk domain DNS:

A  mail.server.co.uk 30.30.30.30

A  mail2.server.co.uk 40.40.40.40

mx mail.server.co.uk 10 

mx mail2.server.co.uk 20

PTR added by relevent ISPs:

30.30.30.30 mail.server.co.uk

40.40.40.40 mail2.server.co.uk

Now, our mail server always worked with just mail.server.co.uk as the banner, all is well, mxtoolbox is happy. However, what do I do with the banner regarding our failover MX? obviously the failover PTR is mail2.server.co.uk and will produce a "Reverse DNS does not match SMTP Banner" in mxtoolbox.

Do I just not worry about this or have I not set something correctly?

EDIT: SSL SAN cert installed on mail server has both mail.server.co.uk mail2.server.co.uk

domain-name-system email mx-record

share|improve this question

edited 7 hours ago

AngryCarrotTop

asked 8 hours ago

AngryCarrotTopAngryCarrotTop

20622 silver badges66 bronze badges

add a comment
 | 

My gut feeling says "this isn't a problem and logically cannot really be fixed". I am configuring a backup ISP connection for use with our onsite exchange mail server.

This is what I have set up:

30.30.30.30 -> primary ISP

40.40.40.40 -> backup ISP

the following added to our server.co.uk domain DNS:

A  mail.server.co.uk 30.30.30.30

A  mail2.server.co.uk 40.40.40.40

mx mail.server.co.uk 10 

mx mail2.server.co.uk 20

PTR added by relevent ISPs:

30.30.30.30 mail.server.co.uk

40.40.40.40 mail2.server.co.uk

Now, our mail server always worked with just mail.server.co.uk as the banner, all is well, mxtoolbox is happy. However, what do I do with the banner regarding our failover MX? obviously the failover PTR is mail2.server.co.uk and will produce a "Reverse DNS does not match SMTP Banner" in mxtoolbox.

Do I just not worry about this or have I not set something correctly?

EDIT: SSL SAN cert installed on mail server has both mail.server.co.uk mail2.server.co.uk

domain-name-system email mx-record

share|improve this question

edited 7 hours ago

AngryCarrotTop

asked 8 hours ago

AngryCarrotTopAngryCarrotTop

20622 silver badges66 bronze badges

30.30.30.30 -> primary ISP

40.40.40.40 -> backup ISP

A  mail.server.co.uk 30.30.30.30

A  mail2.server.co.uk 40.40.40.40

mx mail.server.co.uk 10 

mx mail2.server.co.uk 20

30.30.30.30 mail.server.co.uk

40.40.40.40 mail2.server.co.uk

share|improve this question

edited 7 hours ago

AngryCarrotTop

asked 8 hours ago

AngryCarrotTopAngryCarrotTop

20622 silver badges66 bronze badges

share|improve this question

edited 7 hours ago

AngryCarrotTop

asked 8 hours ago

AngryCarrotTopAngryCarrotTop

20622 silver badges66 bronze badges

asked 8 hours ago

AngryCarrotTopAngryCarrotTop

20622 silver badges66 bronze badges

asked 8 hours ago

AngryCarrotTopAngryCarrotTop

20622 silver badges66 bronze badges

1 Answer
1

active

oldest

votes

3

You only need to worry about what the banner name is when mail2 is used to send an outgoing mail. And in that case, it should still match the reverse DNS for the IP it is using. About the only thing left to check is that the proper name is used in any SSL certs (all 3 names need to match for each server - banner/helo name, name in SSL cert, and reverse lookup) and that the backup server is listed in any SPF records, etc. As far as that goes, my SPF records simply list "all MXs for this domain".

So yes, as far as I can tell with what you've posted you should be good to go.

share|improve this answer

answered 8 hours ago

ivanivanivanivan

1,24233 silver badges66 bronze badges

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  I will edit that the SSL cert also has mail.server.co.uk and mail2.server.co.uk - it is simply the banner that will be different when primary ISP goes down. At that point all incoming mail will be via mail2.server.co.uk and outgoing mail will be mail2.server.co.uk - note that there is only one mail server so as far as I can tell I can only put one SMTP banner hence the question.
  
  – AngryCarrotTop
  7 hours ago
  
  
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  @AngryCarrotTop now i'm confused. one box with multiple ips from different providers? Then the ISPs need to configure reverse DNS for all IPs to point to the banner name used. Your question wording sounded like you have two servers, and two connections, and the backup server kicks in when ISP one goes down. In which case my answer applies.
  
  – ivanivan
  6 hours ago
  

  
  
  
  

add a comment
 | 

Your Answer

StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "2"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/4.0/"u003ecc by-sa 4.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});

draft saved

draft discarded

Sign up or log in

StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});

Sign up using Google

Sign up using Facebook

Sign up using Email and Password

Post as a guest

Name

Email

Required, but never shown

StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f984583%2fsmtp-banner-mismatch-with-multiple-mx-records%23new-answer', 'question_page');
}
);

Post as a guest

Name

Email

Required, but never shown

3

You only need to worry about what the banner name is when mail2 is used to send an outgoing mail. And in that case, it should still match the reverse DNS for the IP it is using. About the only thing left to check is that the proper name is used in any SSL certs (all 3 names need to match for each server - banner/helo name, name in SSL cert, and reverse lookup) and that the backup server is listed in any SPF records, etc. As far as that goes, my SPF records simply list "all MXs for this domain".

So yes, as far as I can tell with what you've posted you should be good to go.

share|improve this answer

answered 8 hours ago

ivanivanivanivan

1,24233 silver badges66 bronze badges

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  I will edit that the SSL cert also has mail.server.co.uk and mail2.server.co.uk - it is simply the banner that will be different when primary ISP goes down. At that point all incoming mail will be via mail2.server.co.uk and outgoing mail will be mail2.server.co.uk - note that there is only one mail server so as far as I can tell I can only put one SMTP banner hence the question.
  
  – AngryCarrotTop
  7 hours ago
  
  
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  @AngryCarrotTop now i'm confused. one box with multiple ips from different providers? Then the ISPs need to configure reverse DNS for all IPs to point to the banner name used. Your question wording sounded like you have two servers, and two connections, and the backup server kicks in when ISP one goes down. In which case my answer applies.
  
  – ivanivan
  6 hours ago
  

  
  
  
  

add a comment
 | 

3

You only need to worry about what the banner name is when mail2 is used to send an outgoing mail. And in that case, it should still match the reverse DNS for the IP it is using. About the only thing left to check is that the proper name is used in any SSL certs (all 3 names need to match for each server - banner/helo name, name in SSL cert, and reverse lookup) and that the backup server is listed in any SPF records, etc. As far as that goes, my SPF records simply list "all MXs for this domain".

So yes, as far as I can tell with what you've posted you should be good to go.

share|improve this answer

answered 8 hours ago

ivanivanivanivan

1,24233 silver badges66 bronze badges

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  I will edit that the SSL cert also has mail.server.co.uk and mail2.server.co.uk - it is simply the banner that will be different when primary ISP goes down. At that point all incoming mail will be via mail2.server.co.uk and outgoing mail will be mail2.server.co.uk - note that there is only one mail server so as far as I can tell I can only put one SMTP banner hence the question.
  
  – AngryCarrotTop
  7 hours ago
  
  
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  @AngryCarrotTop now i'm confused. one box with multiple ips from different providers? Then the ISPs need to configure reverse DNS for all IPs to point to the banner name used. Your question wording sounded like you have two servers, and two connections, and the backup server kicks in when ISP one goes down. In which case my answer applies.
  
  – ivanivan
  6 hours ago
  

  
  
  
  

add a comment
 | 

You only need to worry about what the banner name is when mail2 is used to send an outgoing mail. And in that case, it should still match the reverse DNS for the IP it is using. About the only thing left to check is that the proper name is used in any SSL certs (all 3 names need to match for each server - banner/helo name, name in SSL cert, and reverse lookup) and that the backup server is listed in any SPF records, etc. As far as that goes, my SPF records simply list "all MXs for this domain".

So yes, as far as I can tell with what you've posted you should be good to go.

share|improve this answer

answered 8 hours ago

ivanivanivanivan

1,24233 silver badges66 bronze badges

share|improve this answer

answered 8 hours ago

ivanivanivanivan

1,24233 silver badges66 bronze badges

answered 8 hours ago

ivanivanivanivan

1,24233 silver badges66 bronze badges

answered 8 hours ago

ivanivanivanivan

1,24233 silver badges66 bronze badges