diff --git a/en_US/installation/0-setup.dns.md b/en_US/installation/0-setup.dns.md index 72417375..53fdddec 100644 --- a/en_US/installation/0-setup.dns.md +++ b/en_US/installation/0-setup.dns.md @@ -5,7 +5,7 @@ __IMPORTANT NOTE__: `A`, `MX` records are required, `Reverse PTR`, `SPF`, `DKIM` and `DMARC` are optional but __STRONGLY__ recommended. -## `A` record for server hostname +## `A` record for server hostname {: id="a" } ### What is an `A` record @@ -53,7 +53,7 @@ mail.mydomain.com. 1800 A 192.168.1.5 The end result of this record is that `www.mydomain.com` points to `192.168.1.2`, and `mail.mydomain.com` points to `192.168.1.5`. -## Reverse PTR record for server IP address +## Reverse PTR record for server IP address {: id="ptr" } ### What is a reverse PTR record @@ -83,7 +83,7 @@ PTR record `192.168.1.5` (your internet public IP address) in their reverse DNS zone. Reverse DNS zones are handled by your ISP even though you may have your own forward lookup DNS zone that you manage. -## MX record for mail domain name +## MX record for mail domain name {: id="mx" } ### What is a MX record @@ -119,7 +119,7 @@ mydomain.com. 10 mx mail.mydomain.com The end result of this record is, emails sent to `[user]@mydomain.com` will be delivered to server `mail.mydomain.com`. -## SPF record for the mail domain name +## SPF record for the mail domain name {: id="spf" } ### What is a SPF record @@ -164,7 +164,7 @@ mydomain.com. 3600 IN TXT "v=spf1 ip4:192.168.1.100 -all" There're more valid mechanisms available, please check [OpenSPF web site](http://www.openspf.org/SPF_Record_Syntax) for more details. -## DKIM record for the mail domain name +## DKIM record for the mail domain name {: id="dkim" } ### What is a DKIM record @@ -265,7 +265,7 @@ If you want to re-generate DKIM key, or need to generate one for new mail domain, please check our another tutorial: [Sign DKIM signature on outgoing emails for new mail domain](./sign.dkim.signature.for.new.domain.html). -## DMARC record for the mail domain name +## DMARC record for the mail domain name {: id="dmarc" } ### What is DMARC, and how does it combat phishing? diff --git a/html/setup.dns.html b/html/setup.dns.html index 1903d5d4..8d5e07a4 100644 --- a/html/setup.dns.html +++ b/html/setup.dns.html @@ -19,33 +19,33 @@
IMPORTANT NOTE: A
, MX
records are required, Reverse PTR
, SPF
,
DKIM
and DMARC
are optional but STRONGLY recommended.
A
record for server hostnameA
record for server hostnameA
recordA
records map a FQDN (fully qualified domain name) to an IP address. This is
usually the most often used record type in any DNS system. This is the DNS
@@ -102,7 +102,7 @@ mail.mydomain.com. 1800 A 192.168.1.5
The end result of this record is that www.mydomain.com
points to
192.168.1.2
, and mail.mydomain.com
points to 192.168.1.5
.
PTR record or more appropriately a reverse PTR record is a process of resolving
an IP address to its associated hostname. This is the exact opposite of the
@@ -125,7 +125,7 @@ server hostname is mail.mydomain.com
then ask your ISP to setup a r
PTR record 192.168.1.5
(your internet public IP address) in their reverse DNS
zone. Reverse DNS zones are handled by your ISP even though you may have your
own forward lookup DNS zone that you manage.
Mail Exchanger Record or more commonly known as MX record is an entry in the DNS server of your domain that tells other mail servers where your mail server @@ -152,7 +152,7 @@ mydomain.com. 10 mx mail.mydomain.com
The end result of this record is, emails sent to [user]@mydomain.com
will
be delivered to server mail.mydomain.com
.
SPF is a spam and phishing scam fighting method which uses DNS SPF-records to define which hosts are permitted to send e-mails for a domain. For details on @@ -185,7 +185,7 @@ SPF can also be configured in DNS using the TXT-record type.
-all
means prohibit all others.
There're more valid mechanisms available, please check OpenSPF web site for more details.
-DKIM allows an organization to take responsibility for a message in a way that can be verified by a recipient. The organization can be a direct handler of @@ -275,7 +275,7 @@ some hours to be available.
If you want to re-generate DKIM key, or need to generate one for new mail domain, please check our another tutorial: Sign DKIM signature on outgoing emails for new mail domain.
-Quote from FAQ page on dmarc.org website (it's strongly recommended to read the full FAQ page):