Back to Community Threads
2
Use DKIM while relaying email
Question asked by Marc Ward - 11/10/2016 at 9:27 AM
Unanswered
Hello,
I am setting up a Smartermail Windows server as a relay server with DKIM signing.
 
I have a number of (trusted) linux servers that are configured to route all their outgoing email through my domains central email server.  (I was previously using MS SMTP virtual server but it doesn't support DKIM out of the box).  I configured SmarterEmail to allow relaying and have that working correctly.  However I'm having an issue getting it to add the DKIM signing.  I created a domain and setup the signing but relaying and the domain configuration appear to be separate.  
 
What can I do to get Smartermail to sign emails it relays?  (And perform spam checks).
 
Thanks,
Marc 

7 Replies

Reply to Thread
0
Employee Replied
11/10/2016 at 12:17 PM
Employee Post
Marc,
 
In order for SmarterMail to sign the message, the client must first authenticate. On your client\server that's attempting to relay are you passing valid SMTP credentials ?
 
Regarding spam checks. I would recommend checking out Bruce's guide for further recommendations. This can be found here: http://portal.chicagonettech.com/kb/a171/smartermail-antispam-settings-document.aspx
0
Marc Ward Replied
11/10/2016 at 12:39 PM
No, I'm trusting the IP that's sending to the relay server. As an example for what's going through, one of the servers that mail is being relayed is output from listserv software. Is there a section of the docs that talks about what I want to do?

I'll check out that link.
0
Marc Ward Replied
11/10/2016 at 12:47 PM
I set the "Allow Relay" under Protocol to "Anyone" and use the firewall to allow the IPs I want. (Though I could set Allow Relay to "Nobody" and use Security->Whitelist to allow the IP)

That link is bad atm.
0
Employee Replied
11/10/2016 at 12:53 PM
Employee Post
Marc, with SmarterMail, the message will only sign with DKIM when authenticated. This may not be supported for the scenario you are wanting to accomplish unfortunately.

Here's a direct link to the doc: https://www.chicagonettech.com/docs/pdf/Antispam%20Settings%20-%20SmarterMail.pdf
0
Marc Ward Replied
11/10/2016 at 3:22 PM
I configured exim4 to authenticate with Smartermail as one of the accounts in the domain. Looking at the SMTP logs I'm receiving:

Authenticated as user@domain.com

And it's sending the email on as expected. However it's not adding the DKIM signature. I made sure to remove the IP from the whitelist and SMTP bypass (Allow relay is set to Nobody). When I use the web mail interface and send an email from the account I receive it with the DKIM.

What am I missing?
0
Lee Smith Replied
2/7/2020 at 9:37 AM
Did you ever get to the bottom of this one?
0
echoDreamz Replied
2/7/2020 at 2:42 PM
While this thread is old as hell, Ill toss my 2 cents in... For our outgoing SMTP we use ZoneMTA, which is a nix (though can run on Windows) NodeJS-based MTA server. It has the ability to sign outgoing emails without having to authenticate. Supports signing of more than 1 domain, IP rotation and numerous other features.

While we did use SmarterMail for our outgoing MTAs, lack of IP rotation is a killer.
Back to Community Threads

Reply to Thread

Related Knowledge Base Articles

"550 Authentication is Required for Relay" when Sending EmailSmarterMail > Troubleshooting
Setting up Email Signing (DKIM) for a DomainSmarterMail > Domain/User Configuration and Management
Cannot Send Email MessagesSmarterMail > Troubleshooting
Unable to Send Over Port 25 with GoDaddySmarterMail > Troubleshooting
Messages from Trusted Senders are going to my Junk folderSmarterMail > Troubleshooting