실전 메일서버 구축 경험담 ;;;

자유로운 이야기, 구인구직, 이벤트, 나눔

Moderators: Dry8r3aD, drake_kr

Post Reply
User avatar
황병희
Posts: 1071
Joined: 2009/10/18 Sun 1:47 am
Contact:
Contact 황병희

실전 메일서버 구축 경험담 ;;;

Post by 황병희 » 2022/04/01 Fri 11:35 am

받는건 뒷단에 Gmail 로 다 포워딩 시켜놨습니다.
그래서 번거로운 스팸-게이트웨이 같은건 하나도 설정을 안했어요.
최종 메일박스가 될 Gmail 이 알아서 거를고 거르고 다 자동으로
분류를 해줍니다.

너무 편하게 가는거 아니냐고 반문 하실수 있겠지만,
사람마다 메일을 쓰는 용도와 목적이 다 다르니깐요~
전 이게 편해유~~~

그래서
<me@localhost.localdomain>
<tux@penguin.arpa>

저런식으로 DNS 조회가 안되는 메일들도 다 받아줍니다.
단 하나 클라우드 VM 에서 메일서버가 돌아가는지라...
데이타 바이트 하나하나 다 돈이기에...
(INGRESS/EGRESS 합쳐서 전 1GB/month 를 넘길 수 없습니다)
(f1-micro 이기에...)
메시지 크기를 좀 작게 제한을 걸어두었씁니다.

오픈소스 활동 기준으로 할때
plain/text 메일만 주고받는걸 가정하고
1 메가바이트 초과하는 메일들은 모두다
MTA 앞단에서 조용히 드랍(추락)시킵니다.
요컨데 첨부파일이 있는 메일들은 안받는다는거죠~




선택과 집중에서 전 발신용 SMTP 에 모든 정성을 쏟았습니다.

발신용 SMTP 서버를
'아웃본드' / 'Outbound' / 'Outgoing SMTP Server'
등으로 표현하기도 합니다. 부르기 나릅입니다.

아웃본드가 바로 Reputation(메일서버 신뢰도/평판) 검증의 모든것입니다.

하여 쉽지않지만, 품을 팔아서 RFC8461 MTA-STS 에 많은 공을 들였어요~
현재 mode 는 'tesing' 입니다.
https://mta-sts.doraji.xyz/.well-known/mta-sts.txt


어제 다 설거지후 아웃본드가 제대로 설정되었는가
그리고 Reputation 은 어느정도인가...

첫 실험 메일로 FreeBSD 프로젝트로 한통의 메일(Follow-UP)을 보냈습니다.
아래 해당 메일의 전체헤더를 첨부합니다:

Code: Select all

Path: news.gmane.io!.POSTED.blaine.gmane.org!not-for-mail
From: 황병희 <soyeomul@doraji.xyz>
Newsgroups: gmane.os.freebsd.questions
Subject: Re: Why don't you eat your own dog food?
Date: Fri, 01 Apr 2022 01:56:41 +0900
Organization: 金陵 (연원의 마음)
Approved: news@gmane.org
Message-ID: <87fsmyvz5i.fsf@penguin>
References: <MyoLmVF--3-2@tutanota.com> <86ils43ez5.fsf@phe.ftfl.ca>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
Injection-Info: ciao.gmane.io; posting-host="blaine.gmane.org:116.202.254.214"; logging-data="36620"; mail-complaints-to="usenet@ciao.gmane.io"
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.1 (aarch64-unknown-linux-gnu)
To: Freebsd Questions <freebsd-questions@freebsd.org>
Original-X-From: freebsd-questions+bounces-974-freebsd-questions=m.gmane-mx.org@FreeBSD.org Thu Mar 31 18:57:12 2022
Return-path: <freebsd-questions+bounces-974-freebsd-questions=m.gmane-mx.org@FreeBSD.org>
Envelope-to: freebsd-questions@m.gmane-mx.org
Original-Received: from mx2.freebsd.org ([96.47.72.81])
	by ciao.gmane.io with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256)
	(Exim 4.92)
	(envelope-from <freebsd-questions+bounces-974-freebsd-questions=m.gmane-mx.org@FreeBSD.org>)
	id 1nZy6i-0009LR-66
	for freebsd-questions@m.gmane-mx.org; Thu, 31 Mar 2022 18:57:12 +0200
Original-Received: from mx1.freebsd.org (mx1.freebsd.org [96.47.72.80])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits)
	 client-signature RSA-PSS (4096 bits))
	(Client CN "mx1.freebsd.org", Issuer "R3" (verified OK))
	by mx2.freebsd.org (Postfix) with ESMTPS id 66D8A98CE8
	for <freebsd-questions@m.gmane-mx.org>; Thu, 31 Mar 2022 16:57:11 +0000 (UTC)
	(envelope-from freebsd-questions+bounces-974-freebsd-questions=m.gmane-mx.org@FreeBSD.org)
Original-Received: from mlmmj.nyi.freebsd.org (mlmmj.nyi.freebsd.org [IPv6:2610:1c1:1:606c::50:24])
	by mx1.freebsd.org (Postfix) with ESMTP id 4KTqGb0vqQz4jk9
	for <freebsd-questions@m.gmane-mx.org>; Thu, 31 Mar 2022 16:57:11 +0000 (UTC)
	(envelope-from freebsd-questions+bounces-974-freebsd-questions=m.gmane-mx.org@FreeBSD.org)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim;
	t=1648745831; h=from:from:sender:sender:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:mime-version:mime-version:
	 content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references:list-id:list-help:
	 list-unsubscribe:list-subscribe:list-post;
	bh=vSJ5zNnXgtfERmhPKK/3hpuV7V9/IhVglPto2eV4lZ0=;
	b=LK1ncWf3TOnoF3D1mm/LtwaLyAM7F9fxepkU/6HlcY7BOsUhbKZS307hTN/ntNvNKKkCmk
	3+BIF91KDqDywojx/A/FZXfFzUGsvfN16iNRXAbS17vRqwInJgvCRteg9pDXhDON6Iw05u
	lJWYxIagKWfP3Sxi3LGGvNk1KQW5LVlJqu2TUHYQVn9MIuPV6IVfs/IRwivVBYfT3eVypV
	APMmETQ9rKXawL3uL/r8lnA4zKiuv6k0szQz3+c5tDe1oLSszy48lbXzdoawG99hKZjZjY
	W7E+19nc9Licqj1QGpit8FIkGOCjtywrLagA715wlHeMuHngmHNQl1w2C2H3jg==
Original-Received: from mlmmj.nyi.freebsd.org (unknown [127.0.1.24])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 13D651A4ABCE
	for <freebsd-questions@m.gmane-mx.org>; Thu, 31 Mar 2022 16:57:11 +0000 (UTC)
	(envelope-from freebsd-questions+bounces-974-freebsd-questions=m.gmane-mx.org@FreeBSD.org)
X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org
Original-Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id B8A891A4ACC4
	for <freebsd-questions@mlmmj.nyi.freebsd.org>; Thu, 31 Mar 2022 16:57:01 +0000 (UTC)
	(envelope-from soyeomul@doraji.xyz)
Original-Received: from yw-1204.doraji.xyz (yw-1204.doraji.xyz [185.17.255.72])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
	 client-signature RSA-PSS (2048 bits) client-digest SHA256)
	(Client CN "yw-1204.doraji.xyz", Issuer "R3" (verified OK))
	by mx1.freebsd.org (Postfix) with ESMTPS id 4KTqGN5MFwz4jm0
	for <freebsd-questions@freebsd.org>; Thu, 31 Mar 2022 16:57:00 +0000 (UTC)
	(envelope-from soyeomul@doraji.xyz)
Original-Received: from penguin (unknown [223.39.139.26])
	(Authenticated sender: soyeomul@yw-1204.doraji.xyz)
	by yw-1204.doraji.xyz (Postfix) with ESMTPSA id 2EDBD8DB
	for <freebsd-questions@freebsd.org>; Thu, 31 Mar 2022 16:56:49 +0000 (UTC)
DKIM-Filter: OpenDKIM Filter v2.11.0 yw-1204.doraji.xyz 2EDBD8DB
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=doraji.xyz;
	s=yw-1204-doraji-xyz; t=1648745812;
	bh=vSJ5zNnXgtfERmhPKK/3hpuV7V9/IhVglPto2eV4lZ0=;
	h=From:To:Subject:References:Date:In-Reply-To:From;
	b=B4C5x/tgf2JVdwcKObV1ScoLuMhGmIonjSK1IHVQoEqZljUjiKS7blUwt8jq04P+N
	 p4bnCi/dCEssaj1H32cqRrdC7hIk46KJKgeMIEuDR/4Ej77DhkUWTiwLzhEiPX343X
	 xJ2vulKV0H3yH10WK7Q/PujFFl2X7Tv5i3yIR7514RrAUuVKB8B6a2wqa8qoKEOYJq
	 4KE0nXdDym+e2TbauLnQ8lefvUmh24agZ6KXOM17Wxe+F16q07OaaNw/MV1R/hydpd
	 w+E+zPq2SQ0u0tU1yRSuhSsUClpMgwVzdtsSFx0IZF7Yu48p+l1KXNw9BDRdJEBtmz
	 jTEXHxBfCgBRQ==
Original-Received: by penguin (sSMTP sendmail emulation, from userid 1000); Fri, 01 Apr 2022 01:56:41 +0900
X-YW-Thanks-Thanks-Thanks: (대순 152년) 천하창생을 끝까지 다 살리시려는 마음...^^^;
Mail-Followup-To: Freebsd Questions <freebsd-questions@freebsd.org>
In-Reply-To: <86ils43ez5.fsf@phe.ftfl.ca> (Joseph Mingrone's message of "Wed, 23 Mar 2022 11:45:02 -0300")
List-Id: User questions <freebsd-questions.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-questions
List-Help: <mailto:questions+help@freebsd.org>
List-Post: <mailto:questions@freebsd.org>
List-Subscribe: <mailto:questions+subscribe@freebsd.org>
List-Unsubscribe: <mailto:questions+unsubscribe@freebsd.org>
Original-Sender: owner-freebsd-questions@freebsd.org
X-BeenThere: freebsd-questions@freebsd.org
X-Rspamd-Queue-Id: 4KTqGN5MFwz4jm0
X-Spamd-Bar: ++
Authentication-Results: mx1.freebsd.org;
	dkim=pass header.d=doraji.xyz header.s=yw-1204-doraji-xyz header.b="B4C5x/tg";
	dmarc=none;
	spf=none (mx1.freebsd.org: domain of soyeomul@doraji.xyz has no SPF policy when checking 185.17.255.72) smtp.mailfrom=soyeomul@doraji.xyz
X-Spamd-Result: default: False [2.02 / 15.00];
	 RCVD_VIA_SMTP_AUTH(0.00)[];
	 ARC_NA(0.00)[];
	 R_DKIM_ALLOW(-0.20)[doraji.xyz:s=yw-1204-doraji-xyz];
	 NEURAL_HAM_MEDIUM(-1.00)[-0.999];
	 FROM_HAS_DN(0.00)[];
	 TO_MATCH_ENVRCPT_ALL(0.00)[];
	 NEURAL_SPAM_SHORT(0.84)[0.842];
	 MIME_GOOD(-0.10)[text/plain];
	 PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org];
	 DMARC_NA(0.00)[doraji.xyz];
	 RCPT_COUNT_ONE(0.00)[1];
	 HAS_ORG_HEADER(0.00)[];
	 MID_RHS_NOT_FQDN(0.50)[];
	 TO_DN_ALL(0.00)[];
	 DKIM_TRACE(0.00)[doraji.xyz:+];
	 NEURAL_SPAM_LONG(0.98)[0.981];
	 MLMMJ_DEST(0.00)[freebsd-questions];
	 R_SPF_NA(0.00)[no SPF record];
	 FROM_EQ_ENVFROM(0.00)[];
	 MIME_TRACE(0.00)[0:+];
	 SUBJECT_ENDS_QUESTION(1.00)[];
	 ASN(0.00)[asn:31400, ipnet:185.17.255.0/24, country:DE];
	 RCVD_COUNT_TWO(0.00)[2];
	 RCVD_TLS_ALL(0.00)[];
	 RECEIVED_SPAMHAUS_PBL(0.00)[223.39.139.26:received]
X-ThisMailContainsUnwantedMimeParts: N
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org;
	s=dkim; t=1648745831;
	h=from:from:sender:sender:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:mime-version:mime-version:
	 content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references:list-id:list-help:
	 list-unsubscribe:list-subscribe:list-post:dkim-signature;
	bh=vSJ5zNnXgtfERmhPKK/3hpuV7V9/IhVglPto2eV4lZ0=;
	b=h9jeour9K0afSANppyU+1SHLlzQXMu/lFwGahBiHLGiemhqCGHCfJZAP+AHMYxbEKiKurz
	t6+/axTfrcWeBeTKBUdbtgBv542z1c5kLjwKEpMPcTeqTcuj5S9vmLVEwIZCEc+34WpOdx
	pqAKikpzeF29iD1H8oGETeDyocfAVvFfOxbsKyrpvQhPt/8uqxMWgONW4moepKbwovRqpJ
	mCN/Guo2nRStc6lgOGvrA+w/oSjLyBJdZEsKpvD5FXkPM396SWb2qWwlahmWYCtmBsqlkx
	Bvq0a/NZ2FtG17GX8VMGsPdKYWYemdUMQkOg0BcE+O8pPPJXedWkrGAHEVeJrg==
ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1648745831; a=rsa-sha256; cv=none;
	b=hA217aBvbvpPwB/wG/ine2mtGA2eQzb/Pnx3zq+5Qem+o0tAmOwbsghNkEKAp4sPKoT3MG
	0Nsue9KUiFvXAn3hXUlTStopcYpqFfcYNRmZjypH24EuUu9esFEOTFQA5efAqNuaYuPFCg
	x482Gmp+Hb2NSn1HrfukkWVAPTKz43SaWMPOQc10Sr6ATqWg3LZtRJ3L9Dqnp8j3SEtDGo
	zGm5L+SlXcXD0kHVtJmxXsDv2i0P+DMqk/A7HfOUM3cHo37T9d2cxzuPeuqGptAVQUb9Jv
	xfKh/WpEcgWRcJCsSog2b/O5ihdkOhxGDHTu8QBe5HDo2b6Zt4LUEoQnMrHTVA==
ARC-Authentication-Results: i=1;
	mx1.freebsd.org;
	dkim=pass header.d=doraji.xyz header.s=yw-1204-doraji-xyz header.b="B4C5x/tg";
	dmarc=none;
	spf=none (mx1.freebsd.org: domain of soyeomul@doraji.xyz has no SPF policy when checking 185.17.255.72) smtp.mailfrom=soyeomul@doraji.xyz
Xref: news.gmane.io gmane.os.freebsd.questions:343931
Archived-At: <http://permalink.gmane.org/gmane.os.freebsd.questions/343931>

Dear Joseph,

Joseph Mingrone <jrm@FreeBSD.org> writes:

> When we start meeting in person again, maybe you will have the
> opportunity to attend a conference like BSDCan.  If so, you will see
> lots of FreeBSD developers presenting with FreeBSD laptops.  Like Dave,
> I also gave a presentation at a past BSDCan using a laptop running
> FreeBSD.

Really using FreeBSD as desktop/laptop is not easy, so you are good
people for FreeBSD, i think. And let me please some question. May i ask
to you what are using your laptop model? And the laptop is good with
wifi under android mobile hot-spot? Because for years i'm connecting to
INTERNET via the wifi hot-spot of android mobile (Model: LGM-V300S) ;;;

> For video conferencing, there are challenges with closed
> applications/sites like Google Meet, MS Teams, and Zoom.  They do often
> work well from a FreeBSD system, but that's not always the case.  I have
> had the best experiences with meet.jit.si.
>
> A positive development related to this discussion is that the Foundation
> has identified the desktop/laptop experience as one the areas to be
> targeted for improvement [1].  Some of the Foundation developers have
> received frame.work laptops and are working to get FreeBSD running well
> on those systems.  We are also open to good proposals for funded work to
> improve the FreeBSD laptop/desktop experience.
>
> I can't speak for everyone, but I would prefer to be able to use my
> FreeBSD laptop for everything, but for some use cases, it's a work in
> progress.
>
> Joe
>
> [1] https://freebsdfoundation.org/blog/technology-roadmap/

Wow foundation homepage is more so fresh good than 10 years ago!

Thanks!

Sincerely, Chromebook user Byung-Hee from South Korea

-- 
^고맙습니다 _和合團結_ 감사합니다_^))//
다행히 무사히 프로젝트 리스트의 스팸-게이트웨이를 통과하고,
제 메일함으로 다시 돌아왔습니다.

설정파일들이 궁금하신분들은 아래 제 깃랩 저장소에
관련 파일들을 기록해두었으니 진짜로 궁금한분들은
참고하셔도 됩니다. 근데 그대로 복사붙여넣기 하시면
아니되시구요, 설정값 자체 하나하나 그 의미를
다 파악하신 연후에 실전 적용을 하심을 추천드립니다.

https://gitlab.com/soyeomul/Gnus/-/tree/master/DKIM

감사합니다 ^^^

소여물 황병희 드림

[크롬북에서 적었어요~]
^고맙습니다 감사합니다_^))//
Top
User avatar
황병희
Posts: 1071
Joined: 2009/10/18 Sun 1:47 am
Contact:
Contact 황병희

Re: 실전 메일서버 구축 경험담 ;;;

Post by 황병희 » 2022/04/01 Fri 11:50 am

그리고 위 정책들은 수시로 상황에 따라 바뀔 수 있습니다.
미리 말씀드립니다~

꾸벅~
^고맙습니다 감사합니다_^))//
Top
User avatar
황병희
Posts: 1071
Joined: 2009/10/18 Sun 1:47 am
Contact:
Contact 황병희

Re: 실전 메일서버 구축 경험담 ;;;

Post by 황병희 » 2022/04/07 Thu 12:16 pm

Code: Select all

Apr  6 22:59:43 bionic190316003 postfix/smtpd[14166]: connect from mx1.math.uh.edu[129.7.128.32]
Apr  6 22:59:43 bionic190316003 postfix/smtpd[14166]: Anonymous TLS connection established from mx1.math.uh.edu[129.7.128.32]: TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
Apr  6 22:59:43 bionic190316003 postfix/smtpd[14166]: D02DA3F072: client=mx1.math.uh.edu[129.7.128.32]
Apr  6 22:59:43 bionic190316003 postfix/cleanup[14170]: D02DA3F072: message-id=<lzr1696cu8.fsf@3c22fb11fdab.ant.amazon.com>
Apr  6 22:59:43 bionic190316003 postfix/qmgr[2053]: D02DA3F072: from=<ding-owner+M38952@lists.math.uh.edu>, size=7596, nrcpt=1 (queue active)
Apr  6 22:59:43 bionic190316003 postfix/cleanup[14170]: DD43F3F07F: message-id=<lzr1696cu8.fsf@3c22fb11fdab.ant.amazon.com>
Apr  6 22:59:43 bionic190316003 postfix/qmgr[2053]: DD43F3F07F: from=<ding-owner+M38952@lists.math.uh.edu>, size=7729, nrcpt=1 (queue active)
Apr  6 22:59:43 bionic190316003 postfix/local[14171]: D02DA3F072: to=<soyeomul@doraji.xyz>, relay=local, delay=0.06, delays=0.05/0/0/0, dsn=2.0.0, status=sent (forwarded as DD43F3F07F)
Apr  6 22:59:43 bionic190316003 postfix/qmgr[2053]: D02DA3F072: removed
Apr  6 22:59:43 bionic190316003 postfix/smtp[14172]: connect to smtp.gmail.com[2607:f8b0:400e:c03::6d]:587: Network is unreachable
Apr  6 22:59:43 bionic190316003 postfix/smtpd[14166]: disconnect from mx1.math.uh.edu[129.7.128.32] ehlo=2 starttls=1 mail=1 rcpt=1 data=1 quit=1 commands=7
Apr  6 22:59:44 bionic190316003 postfix/smtp[14172]: DD43F3F07F: to=<soyeomul+gcp@gmail.com>, orig_to=<soyeomul@doraji.xyz>, relay=smtp.gmail.com[74.125.197.108]:587, delay=0.97, delays=0/0.02/0.21/0.74, dsn=2.0.0, status=sent (250 2.0.0 OK  1649285984 d5-20020a17090acd0500b001b9c05b075dsm6625289pju.44 - gsmtp)
Apr  6 22:59:44 bionic190316003 postfix/qmgr[2053]: DD43F3F07F: removed
오전에 메일을 확인하다가,

이 메일이 왜 여기 있지?!
이 메일이 왜! 여기 있냐고!?!!!

고개를 갸우뚱하게 만든 사건이 있었습니다.

차근차근 추적을 하다가 알게되었습니다.

해당 메일링으로 가입된 계정이
<soyeomul@doraji.xyz> 이며,
관련 메일링 주소는 <ding@gnus.org> 입니다.
그리고 이 ding 메일링은 아웃본드로
미국 휴스턴 대학교 수학과에 한 SMTP 서버를 활용하고 있었구요,

매일 매일 전 ding 으로 오는 메일들을 받고 있었던 거지요
하지만 보통은 구글 워크스페이스 메일서버가 바로 받게끔 되어있습니다.
soyeomul@penguin:~$ host -t mx doraji.xyz.
doraji.xyz mail is handled by 17 aspmx.l.google.com.
doraji.xyz mail is handled by 71 yw-0919.doraji.xyz.
doraji.xyz mail is handled by 95 yw-1204.doraji.xyz.
soyeomul@penguin:~$
위의 MX 목록대로 1순위는 aspmx.l.google.com 입니다.
그 다음이 yw-0919 그 다음이 마지막으로 yw-1204

셋다 실패하면 출발지 본처로 바운스(되돌아가는것)가 일어납니다.

이게 10만통의 메일들중 한통이 일어날까 말까한 그 사건이
오늘 아침에 일어난거지요,,,

aspmx.l.google.com 구글 서버가 얼매나 바빴으면
저 ding 메일링의 메일을
제가 얼마전에 맨든 서버(yw-0919)로 넘겼을까 싶네요,,,

이글의 요지는...
예!
MX 는 많을 수록 좋아요^^^

신기하고도 신기한 일을 당한 기념으로
서버들 설정파일을 오늘날짜로 갱신했네유~~~
2022-04-07 ;;;

감사합니다~~~

[크롬북에서 적었어유~~~]
^고맙습니다 감사합니다_^))//
Top
User avatar
황병희
Posts: 1071
Joined: 2009/10/18 Sun 1:47 am
Contact:
Contact 황병희

Re: 실전 메일서버 구축 경험담 ;;;

Post by 황병희 » 2022/04/11 Mon 1:48 pm

Code: Select all

soyeomul@penguin:~$ host -t mx doraji.xyz.
doraji.xyz mail is handled by 1917 aspmx.l.google.com.
doraji.xyz mail is handled by 1895 yw-1204.doraji.xyz.
doraji.xyz mail is handled by 1871 yw-0919.doraji.xyz.
soyeomul@penguin:~$ date
2022. 04. 11. (월) 13:46:47 KST
soyeomul@penguin:~$
MX 우선순위를 갱신했습니다.
구글서버 3순위
yw-1204 2순위
yw-0919 1순위

이렇게 갑니다.
좀 바빠지는데...
윗글에서도 언급했지만,
클라우드 VM 위에서 돌아가는지라..
들어오는 메일들을 VM 내부에다 저장할 수 없습니다.
저장되는 바이트 바이트 마다 돈이기에...

그래서
무조건 구글 서버로 그대로 내보내야 합니다 (강제 포워딩)

한 3일간 포워딩 실험을 했었어요.
(릴레이랑 포워딩은 다릅니다)

어느정도 괜찮다 싶어 경험담 남겨봅니다.

해당 서버 설정파일들을 오늘자로 갱신했습니다.
2022-04-11 ;;;

이 포워딩 정책이 어느정도 안정적으로 돌아가면...
구글 워크스페이스 로부터 해방 할 수도 있씁니다.
요건 몇달정도 더 추이를 지켜봐야 할거 같아요~

[크롬북에서 적었어유~~~]
^고맙습니다 감사합니다_^))//
Top
User avatar
황병희
Posts: 1071
Joined: 2009/10/18 Sun 1:47 am
Contact:
Contact 황병희

Re: 실전 메일서버 구축 경험담 ;;;

Post by 황병희 » 2022/04/12 Tue 2:38 pm

Code: Select all

soyeomul@penguin:~$ ls -l 'google.com!doraji.xyz!1649548800!1649635199!001.json'
-rw-r--r-- 1 soyeomul soyeomul 468  4월 12 14:31 'google.com!doraji.xyz!1649548800!1649635199!001.json'
soyeomul@penguin:~$ cat 'google.com!doraji.xyz!1649548800!1649635199!001.json'
{
    "organization-name":"Google Inc.",
    "date-range":{
        "start-datetime":"2022-04-10T00:00:00Z",
        "end-datetime":"2022-04-10T23:59:59Z"
    },
    "contact-info":"smtp-tls-reporting@google.com",
    "report-id":"2022-04-10T00:00:00Z_doraji.xyz",
    "policies":[
        {
            "policy":{
                "policy-type":"no-policy-found",
                "policy-domain":"doraji.xyz"
            },
            "summary":{
                "total-successful-session-count":1,
                "total-failure-session-count":0
            }
        }
    ]
}
soyeomul@penguin:~$
MTA-STS 설정을 하였는데 예전에요.
4월 10일에 첫번째 보고서를 메일로 받았습니다.

위는 구글에서 저에게 보내온 메일입니다.
보고서에 의하면 보안 연결 모두 성공입니다.

관련 링크는 다음과 같습니다:
<https://mta-sts.doraji.xyz/.well-known/mta-sts.txt>

[크롬북에서 적었어요~]
^고맙습니다 감사합니다_^))//
Top
User avatar
황병희
Posts: 1071
Joined: 2009/10/18 Sun 1:47 am
Contact:
Contact 황병희

Re: 실전 메일서버 구축 경험담 ;;;

Post by 황병희 » 2022/04/23 Sat 10:19 am

MTA-STS 세번째 보고서를 구글로부터 받았습니다.
https://gitlab.com/soyeomul/Gnus/-/comm ... b7f473ebdb

# 참고문헌:
[0] <https://mta-sts.doraji.xyz/.well-known/mta-sts.txt>
[1] _mta-sts.doraji.xyz (DNS 정보)

[데비안 11 ibus-hangul 에서 적었어요~]
^고맙습니다 감사합니다_^))//
Top
Post Reply

Return to “자유 게시판”