Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
Andrey2021-03-23 12:48:48
Mail server
Andrey, 2021-03-23 12:48:48

Removing ip info from email header?

Good afternoon, the question is not entirely trivial

In the header of the letter, information of the form is now added -

-------

Return-Path: <---- my mailbox in exchange
Delivered-To: [email protected] <----- - to whom I send
Received: from mail.mykompany.ru (mail.mykompany.ru [148.xx.xx.xx]) <---- server info

------

I removed the display of the internal ip exchange server from the header by means of rules in the "mail processing flow"

and now there is a rule that substitutes the real ip of the domain record for exchange (I will give a screen below for understanding)

spoiler
6059b95224a92876972697.jpeg


And now the question is, if I completely remove the header from the ip, or indicate the wrong ip there, can it in any way affect the flow of mail, such as falling into spam and other joys?

The task is to completely remove the visibility of the real ip on which exchange is running, I will do it using nginx and reverse proxy, but it is not clear with the header and real display of ip in letters. I would appreciate such information.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

3 answer(s)
Report
V
Vladimir, 2021-03-23
@MechanID

Your scheme is not quite clear, and what you are afraid of.
And if the exchange sends/receives letters directly (not through some kind of relay), then its real ip will be written to the headers by the servers that receive mail from it, and you won't do anything with it. Also, its ip will be in the MX record of your domain.
if you have an intermediate relay or nginx as a proxy, then you firewall your exchange from the outside world and only the relay communicates with it.

Report
C
CityCat4, 2021-03-23
@CityCat4

The task is to completely remove the visibility of the real ip on which the exchange is running

What for? Those who are afraid of something are hiding something. So I'm afraid of the theft of my card number - and I use a "pseudo-card" from Yumani. What do you want to avoid in this way?
I will do it using nginx and reverse proxy,

Will the reverse proxy have an IP from the same network as the mailer?
Except in the headers, the IP of the mailer is always reflected in the logs (well, in the sense - the IP of the server transmitting mail)

Report
A
akelsey, 2021-03-23
@akelsey

You don’t need to use transport rules, and even more so nginx (I didn’t really understand how it would cut something in smtp traffic), starting from Exchange 2013, Microsoft introduced the “ Header Firewall ” feature.
The idea to remove internal names and IP addresses is very sound, you just need to send-connector for "NT AUTHORITY\ANONYMOUS LOGON" remove ms-Exch-Send-Headers-Routing rights.
Here is a detailed article on how to do it.

Similar questions
A
Alexandepz2019-07-02 09:15:01
What are the options for organizing an "intermediate" server to collect incoming mail? 2Reply
N
Nikolai Savelyev2019-07-18 13:07:13
Can Exim continue sending after Sender rate overlimit? 1Reply
A
Anton2019-08-02 17:56:58
Is it possible to have a Mail Server option without a white ip using A and MX records of the NoIP service? 1Reply
L
Leonid2019-08-23 15:30:13
SPF: HELO does not match SPF record (softfail) in mail-tester.com - how to overcome it? 1Reply
T
tfc2019-08-28 14:04:34
Why do we need internal mail servers in principle? 10Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question