• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Question DKIM fails with plesk server as relay

M

m4xp

New Pleskian
Server operating system version
Debian
Plesk version and microupdate number
18.0.44
Hello, we are runnig plesk obsidian 18.0.44 with postfix as a mail relay for an exchange server 2019. there are multiple different mail domains on the exchange server.
in recent times mail delivery failed because dkim was not set up so i enabled dkim for domains on the exchange server. dkim fails when sending through the relay, i already tested sending without the relay and dkim passes without issue and mails get delivered.
i found following post: Resolved - DKIM issue - Route email from Exchange via Plesk VPS and we are using the same settings without success.
can i sign the mails on plesk or is there a way to to get it to work whith signing the mails on the exchange?
thank you
 
Could you try to pick a mail from the exchange outgoing queue and compare to what it looks like after it went through postfix?
Is plesk set up to use dkim for that domain?
 
mow said:
Could you try to pick a mail from the exchange outgoing queue and compare to what it looks like after it went through postfix?
Is plesk set up to use dkim for that domain?
Click to expand...
i did several tests with and withou relay, the relay adds a header.
with relay:
1699526581575.png
without:
1699526590395.png

yes, plesk is set up to use dkim for the domain but it doesnt attach a signature. for context there is one domain set up on plesk which accepts the exchange send connector and all different domains from the exchange. so for example 1.com, 2.com and 3.com from exchange all land at relay.domain.com on plesk and are send out from there.
thanks
 
m4xp said:
i did several tests with and withou relay, the relay adds a header.
Click to expand...
An extra Received: is normal. Are you sure that's everything that's changed? Any encoding issues, CR/LF conversions?
m4xp said:
yes, plesk is set up to use dkim for the domain but it doesnt attach a signature.
Click to expand...
Are you sure it doesn't replace the signature? Do the postfix logs say anything about DKIM?

By the way, your plesk is ancient and it seems you don't have reverse DNS properly configured.
 
mow said:
An extra Received: is normal. Are you sure that's everything that's changed? Any encoding issues, CR/LF conversions?

Are you sure it doesn't replace the signature? Do the postfix logs say anything about DKIM?

By the way, your plesk is ancient and it seems you don't have reverse DNS properly configured.
Click to expand...
tested again and cross checking the results doesn't show any changes beyond the extra recieved. dkim signature stays exactly the same. postfix logs don't mention anything about dkim so the relayed mails are not signed by postfix i guess.
thanks for mentioning.
 
Could you try to send a mail to a domain that is on the relaying server? In that case, it would have to check DKIM, and it'd be very interesting how that turns out.
 
mow said:
Could you try to send a mail to a domain that is on the relaying server? In that case, it would have to check DKIM, and it'd be very interesting how that turns out.
Click to expand...
dkim fails in that instance. that is weird, as mentioned before sending directly from the exchange server allowed dkim checks to pass when i tested that.
thanks
 
You must log in or register to reply here.

Similar threads

peterbinsje
Question Mails sent by plesk_virtual (local) are not delivered
Replies
4
Views
400
peterbinsje
peterbinsje
ilogus
Resolved Incoming email DKIM issue
Replies
4
Views
434
ilogus
ilogus
P
Question dmarc, spf, dkim setup problem
Replies
2
Views
298
PeterKi
P
B
Question Plesk email relay incoming emails to another server
Replies
1
Views
229
bit
B
E
Issue DKIM email control not valid
Replies
2
Views
835
Erwan
E
Back
Top