• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Problems with inbound TLS due to standard DNS template

F

fliegerhermi

Regular Pleskian
Hi everybody.
With the standard-DNS-Layout every customer has an MX-entry like MX 10 mail.customerdomainexample.com

The problem is, that inbound mailservers get a TLS warning, because the mailhostname does not match mail.companydomainexample.com, which is the domain with a valid SSL-Certificate pointing to the same server.

Wouldn't it make sense to change the default template to mail.companydomainexample.com since it is the same machine anyway?
Am I twisted up in my thinking somehow?

Thank you very much.
 
Do you mean the TLS Warning from Outlook?

If so tell your customers to use

mail.companydomainexample.com

with secure conections.

I do this with webmail, plesk and mail servers - that way customers don't get any security warnings.

Hope that helps

Kind regards

Lloyd
 
Hi Lloyd,

thank you for the fast reply. I handle the customer-connections just the way you do, which is a pain somehow, because a server-change requires the customers to change all the addresses in their computers. Hopefully Plesk remains a good system for quite a while ;)

What I was really talking about are SMTP connections from ISP to ISP.
With the default DNS template the customers MX ist mail.customerdomainexample.com which gives the other ISP MX a false certificate warning, because my MX is responding with mail.myispdomainexample.com Some ISPs drop the connection if that happens.

I like it if the customersdomain shows up as often as possible, but in this case I just don't see why you would do it this way. Does it have any negative effects if I change the default template to always point to mail.myispdomain.com?

Thanks!
 
You must log in or register to reply here.

Similar threads

skibidi
Forwarded to devs DNS template placeholder aren't replaced with right IP address when using specific muli IP setup
Replies
11
Views
3K
Peter Debik
P
Jürgen_T
Question resolv.conf problems with Ubuntu 22.04 LTS
2
Replies
25
Views
26K
learning_curve
learning_curve
Nextgen-Networks
Forwarded to devs SSL It! - Preset "modern" will break your Apache templates on Ubuntu 20.04.2 with Plesk 18.0.35
Replies
13
Views
4K
Nextgen-Networks
Nextgen-Networks
M
Resolved TLS library problem: error 42
Replies
2
Views
10K
mkul7ra
M
DerDanilo
Issue Let's Encrypt and "Assign the certificate to mail domain" problems and AutoDiscovery issues caused by this
Replies
7
Views
4K
Kaspar
K
Back
Top