1 Topic by patakraouzeck (edited by patakraouzeck 2020-04-08 00:52:26)

  • patakraouzeck
  • Member
  • Offline
  • Registered: 2020-04-06
  • Posts: 4

Topic: How to use opendmarc with iRedMail

- iRedMail 1.1
- Deployed with the downloadable installer
- Linux Debian 10
- Store mail accounts in MySQL
- Web server Nginx
====

Hi,

I tried to install opendmarc, but receiving mails failed from some hosts.

Configured my _dmark.domain.tld DNS entry as follow (SPF and DKIM set) : 

"v=DMARC1; p=none; rua=mailto:dmarc-reports@domain.tld; ruf=mailto:dmarc-reports@domain.tld; fo=1"

Kept /etc/opendmarc.conf as-is.

Added at the end of postfix/main.cf:

non_smtpd_milters   = unix:/var/run/opendmarc/opendmarc.sock
smtpd_milters       = unix:/var/run/opendmarc/opendmarc.sock
milter_default_action   = accept

I see that the doc is not complete to configure opendmarc: https://docs.iredmail.org/integration.opendmarc.html

Errors when trying to send email from no-log webmail:

Apr  7 18:13:38 mail1 postfix/smtpd[9460]: connect from webmail.no-log.org[80.67.172.39]
Apr  7 18:13:38 mail1 postfix/smtpd[9460]: Anonymous TLS connection established from webmail.no-log.org[80.67.172.39]: TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)
Apr  7 18:13:38 mail1 postfix/smtpd[9460]: NOQUEUE: reject: RCPT from webmail.no-log.org[80.67.172.39]: 451 4.7.1 <me@domain.tld>: Recipient address rejected: Sorry, server is busy, ...; from=<me@no-log.org> to=<me@domain.tld> proto=ESMTP helo=<webmail.no-log.org>
Apr  7 18:13:38 mail1 postfix/smtpd[9460]: disconnect from webmail.no-log.org[80.67.172.39] ehlo=2 starttls=1 mail=1 rcpt=0/1 data=0/1 rset=1 quit=1 commands=6/8

Any idea how to configure dmarc properly please ?

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 30,792

Re: How to use opendmarc with iRedMail

FYI:

- https://github.com/iredmail/iRedMail/co … 474bfd12e5
- https://github.com/trusteddomainproject … /issues/50
- https://github.com/trusteddomainproject … /issues/51

We integrated OpenDMARC in iRedMail Easy platform, but there's incorrect rejection, so we have to disable the integration. But OpenDMARC project seems dead and no more development, we may not pick it up again.

I PERSONALLY don't recommend OpenDMARC to any iRedMail users.

3 Reply by michael

  • michael
  • Member
  • Offline
  • Registered: 2011-07-07
  • Posts: 8

Re: How to use opendmarc with iRedMail

Is opendmarc running?

4 Reply by patakraouzeck (edited by patakraouzeck 2020-04-09 04:12:21)

  • patakraouzeck
  • Member
  • Offline
  • Registered: 2020-04-06
  • Posts: 4

Re: How to use opendmarc with iRedMail

Zhang: did you tried another dmarc implementation ? Maybe add a note about this issue in the doc ? This will save huge amount of time for iRedMail admins

michael: Yes, it was running.

5 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 30,792

Re: How to use opendmarc with iRedMail

hi @patakraouzeck:

The document has been removed since it's not completed and opendmarc is buggy and almost dead.