On Fri, Jul 31, 2020 at 10:08:09PM +0530, Didar Hossain wrote: > On Fri, Jul 31, 2020 at 08:00:32AM -0400, Henning Follmann wrote: > > On Fri, Jul 31, 2020 at 12:59:06PM +0530, Didar Hossain wrote: > > > Hi, > > > > > > I want to host my own email on the cloud - I don't want to use G Suite or > > > any > > > other commercial service because I would like to have control over my > > > email. > > > > > > I read around a little and it seems that most cloud providers block SMTP > > > ports > > > (25,587,465) from/t the internet as well sometimes from within their > > > network. > > > This poses a real problem for my deployment plans. Also, note that my > > > design has > > > separate MSA (submission), Mailstore (IMAP) and MTA (MX) nodes. > > > > > > I have shortlisted Digital Ocean and Linode for my use because both of > > > datacenters in India. Is anyone using either of them for MX service? > > > > > > Any and all feedback is most welcome including specialist/small VPS > > > providers > > > who I can consider to host the MX node for my domain at least. > > > > > > > I think all ISP should be fine. I sometime feel for a mailserver it is > > more important to have a decent DNS provider than where you actually > > run your mailserver. Because as a minimum you want to set up > > SPF and DKIM. > > Most ISP require to register an outgoing mail server with them. This > > is also important that they set up a reverse ptr for your host. > > Cheap US$5 cloud instances are super attractive propositions for spammers who > have absolutely abused these providers and made it difficult for legitimate > senders to host on them. > > I have DNS, SPF, DKIM and DMARC under control. But, IP/ASN reputation is > something that I have to factor in because a lot of my counter party receivers > are on Office365 and G Suite who would block ill reputed networks. > > > One note on Digital Ocean. In my experience there is a lot of spam > > originating from Digital Ocean. This potentially could cause you > > some trouble. But this might be just my personal "feeling". I never > > ran the numbers on ISP spam submission rates. > > True, I remember seeing some statistics about spam originating from them and > that is why they have recently started blocking ports 25 throughout. > > > I currently use AWS for my mailservers. In the past I used > > A1flexus for dedicated servers. They are on Long Island > > and were very "linux friendly" at that time. > > Does your AWS instance receive and send over port 25? >
Yes, AWS requires to "register" your mailserver. They allow for a small amount of out traffic without that, but if you intend to use this as a proper mail server, you have to tell them. I've never been on any dns-blocklist so far and I do check regularly for all my server. -H -- Henning Follmann | [email protected]
