Bonjour
Je souhaite assainir mon serveur de mail debian ispconfig postfix chez ovh pour que mes mails n'arrivent pas en sPAM chez certains relays.
à cet effet j'ai personalisé mon reverse ipv4 ns1.webologix.com et paramétré la zone de mon domaine surlequel j'envois mes mails pour avoir un enregistrement SPF et une signature DKIM comme suit:
$TTL 86400
@ IN SOA ns1.webologix.com. xxx.webologix.com. (
2013111701 ; serial, todays date + todays serial #
28800 ; refresh, seconds
7200 ; retry, seconds
604800 ; expire, seconds
86400 ) ; minimum, seconds
;
imap 86400 A 87.98.160.188
mail 86400 A 87.98.160.188
ns1 86400 A 87.98.160.188
pop 86400 A 87.98.160.188
referencement 86400 A 87.98.160.188
smtp 86400 A 87.98.160.188
www 86400 A 87.98.160.188
webologix.com. 86400 A 87.98.160.188
webologix.com. MX 10 mail.webologix.com.
webologix.com. NS ns1.webologix.com.
webologix.com. NS ns.kimsufi.com.
webologix.com. TXT "v=spf1 a mx ip4:87.98.160.188 mx:ns1.webologix.com -all"
webologix.com. SPF "v=spf1 a mx ip4:87.98.160.188 mx:ns1.webologix.com -all"
dkim._domainkey.webologix.com. TXT "k=rsa; t=y; p=maclépubliquersa;"
Vérifiant ma signature 1é heures plus tard par mail sur auth-results@verifier.port25.com j'obtiens un test positif:
The Port25 Solutions, Inc. team
==========================================================
Summary of Results
==========================================================
SPF check: pass
DomainKeys check: neutral
DKIM check: pass
DKIM check: pass
Sender-ID check: pass
SpamAssassin check: ham
==========================================================
Details:
==========================================================
HELO hostname: ns1.webologix.com
Source IP: 87.98.160.188
mail-from: inf@webologix.com
----------------------------------------------------------
SPF check details:
----------------------------------------------------------
Result: pass
ID(s) verified: smtp.mailfrom=inf@webologix.com
DNS record(s):
webologix.com. 86400 IN SPF "v=spf1 a mx ip4:87.98.160.188 mx:ns1.webologix.com -all"
webologix.com. 86400 IN A 87.98.160.188
----------------------------------------------------------
DomainKeys check details:
----------------------------------------------------------
Result: neutral (message not signed)
ID(s) verified: header.From=inf@webologix.com
DNS record(s):
----------------------------------------------------------
DKIM check details:
----------------------------------------------------------
Result: pass (matches From: inf@webologix.com)
ID(s) verified: header.d=webologix.com
Canonicalized Headers:
Message-ID:'20'<5288B360.6020401@webologix.com>'0D''0A'
Date:'20'Sun,'20'17'20'Nov'20'2013'20'13:15:28'20'+0100'0D''0A'
From:'20'Thierry'20'CHEN'20'<inf@webologix.com>'0D''0A'
MIME-Version:'20'1.0'0D''0A'
To:'20'check-auth@verifier.port25.com'0D''0A'
Subject:'20'test'20'SPF'20'record'20'12'0D''0A'
Content-Type:'20'multipart/alternative;'0D''0A'
'20'boundary="------------070204000504020309050806"'0D''0A'
DKIM-Signature:'20'v=1;'20'a=rsa-sha256;'20'c=simple/simple;'20'd=webologix.com;'20's=dkim;'0D''0A'
'09't=1384690306;'20'bh=F36XbIcxK7nksc72ppc95nn9i/dWqqRWJR2dG/+E8E0=;'0D''0A'
'09'h=Message-ID:Date:From:MIME-Version:To:Subject:Content-Type;'0D''0A'
'09'b=
Mais 36 heures après le résultat est devenu négatif pour DKIM:
The Port25 Solutions, Inc. team
==========================================================
Summary of Results
==========================================================
SPF check: pass
DomainKeys check: neutral
DKIM check: neutral
Sender-ID check: pass
SpamAssassin check: ham
==========================================================
Details:
==========================================================
HELO hostname: ns1.webologix.com
Source IP: 87.98.160.188
mail-from: inf@webologix.com
----------------------------------------------------------
SPF check details:
----------------------------------------------------------
Result: pass
ID(s) verified: smtp.mailfrom=inf@webologix.com
DNS record(s):
webologix.com. 86400 IN SPF "v=spf1 a mx ip4:87.98.160.188 mx:ns1.webologix.com -all"
webologix.com. 86400 IN A 87.98.160.188
----------------------------------------------------------
DomainKeys check details:
----------------------------------------------------------
Result: neutral (message not signed)
ID(s) verified: header.From=inf@webologix.com
DNS record(s):
----------------------------------------------------------
DKIM check details:
----------------------------------------------------------
Result: neutral (message not signed)
ID(s) verified:
NOTE: DKIM checking has been performed based on the latest DKIM specs
(RFC 4871 or draft-ietf-dkim-base-10) and verification may fail for
older versions. If you are using Port25's PowerMTA, you need to use
version 3.2r11 or later to get a compatible version of DKIM.
----------------------------------------------------------
Sender-ID check details:
----------------------------------------------------------
Result: pass
ID(s) verified: header.From=inf@webologix.com
DNS record(s):
webologix.com. 86400 IN SPF "v=spf1 a mx ip4:87.98.160.188 mx:ns1.webologix.com -all"
webologix.com. 86400 IN A 87.98.160.188
N'ayant rien modifié dans mes zones entre temps je suppose que c'est lié à une propagation DNS...
Merci pour vos suggestions
Comment puis-je modifier les delais refresh, retry, etc... pour obtenir les résultats DNS en quasi temps réels ?