Depends on what you are doing. If you are relaying SMTP traffic after scanning it, not really of any one domain, then no that won’t work. My assumption though is that you are doing this for a company that has devices etc. and you need to relay e-mails. My recommendation is that you install your dkim, setup your SFP as well as implement DMARC, this would effectively prevent spoofing of your domain. Assuming that is what you are doing. Note that everyone should be looking at dmarc, dkim and spf to validate emails. ☺
Dennis Burgess, Mikrotik Certified Trainer Author of "Learn RouterOS- Second Edition” Link Technologies, Inc -- Mikrotik & WISP Support Services Office: 314-735-0270 Website: http://www.linktechs.net<http://www.linktechs.net/> Create Wireless Coverage’s with www.towercoverage.com From: AF <[email protected]> On Behalf Of Steve Jones Sent: Wednesday, November 14, 2018 9:00 AM To: AnimalFarm Microwave Users Group <[email protected]> Subject: [AFMUG] dkim dmarc implementation On alot of the networks we manage, we set up an smtp relay locally on the network for thinks like scan to email (alot of scanners and printers that were older didnt have authentication) and other notification/alert sending devices. The relay is IP restricted. We used IP SPF to allow the sending. We also did SPF to allow things like webservers to send on behalf of. If we implement dkim, will that require that the signature be attached to ALL domain emails, or will SPF still be functional for the relays and whatnot through dmarc rules?
-- AF mailing list [email protected] http://af.afmug.com/mailman/listinfo/af_af.afmug.com
