I 'm having an issue running my email server at home on a dynamic IP

[G+_Eddie Foy]

I'm having an issue running my email server at home on a dynamic IP.

SpamHaus & Sorbs Duhl block me. (due to PTR record)

Can I use my VPS (it has a static IP) to relay port 25 (and any of the other mail ports if needed) to my in house router (Cisco 2851) > to my mailserver?

I'd most prefer the VPS<>House tunnel be encrypted.  Maybe over SSH?

VPS is a Unbuntu server instance.

 

 

Oh, BTW http://mxtoolbox.com/  is a nice tool. (sans the nags)

[G+_Travis Hershberger]

Trying to run a mail host off of dynamic dns just seems like cutting off your nose to spite your face to me.  You've got a server available, just enforce TLS from the VPS server.  Use a self signed certificate if you're really paranoid, like me.

[G+_Eddie Foy]

Travis Hershberger My IP rarely changes on its own.  maybe twice a year.  (It gets changed more from unplugging the modem for a while during maintenance.) So changing the A record once in a while isn't much.  Plus there are Python scripts to update the A record.

I want the server and data in house, not on someone else's computer some where I don't know. (Would you do that with your children?)

[G+_Travis Hershberger]

If you keep the TTL for the domain set to minutes instead of hours/days/years, then just put up with it for a bit?

[G+_Joshua Hamlett]

You could always just simplify everything and get a static IP. You will probably need to switch over to a business class connection, but that often comes with its own perks, including better customer service.

[G+_Ben Reese]

If you have a VPS, can that be setup as an SSL/TLS proxy?

[G+_Andre Klärner]

You all missed the point, that the only problem for Eddie Foy?? is outgoing mail. Incoming works just fine.

 

Install exim or postfix on your VPS, configure it to accept mail only from authenticated users and deliver straight to the target server. Than point your locally running mail server to your VPS as smart host (using a transport-user to authenticate to it), a voilà. ?

 

BTW: I'm doing this for 10 years or so.

[G+_Michael Heinz]

Unfortunately, few email companies will accept SMTP traffic from a dynamic IP - it was simply far too easy for spammers to hijack a PC and use it to send spam.

[G+_Eddie Foy]

Michael Heinz  Only mail that has bounced (so far.  One domain has been in house for 2 years, the other, a fat month) because of dyn IP is Trying to tell Apple of a vuln.  And Splunk.

 

Most servers don't check if an IP is static or dynamic, it just bounces via static rules and signatures and blacklists.  The overhead to go fetch the status of the IP wouldn't be worth it.

[G+_Andre Klärner]

Eddie Foy? checking against a blacklist like spamhaus costs only one DNS request - and I also do that on my system, that incidentally is behind a dynamic dial-up IP. The cost of actually receiving and storing and sorting this mail is higher than the cost of the check.