In https://askubuntu.com/questions/438756/using-dkim-in-my-server-for-multiple-domains-websites I should make some entries in postfix for milter on port 8893, but there are similar entries for milter on port 11332. As I know the postfix uses only the last config it finds for the same key I can not have milter more enrtries. So can I use 11332 for dkim too, or do the not run together on the same server? Thanks for answer Rainer
Rspamd or Amavis does DKIM signing on your system, depending on the age of your setup. Rspamd is used on recent systems while old systems use Amavis. OpenDkim is not used or required for that at all. The post you mentioned is incompatible with any ISPConfig system, so do not follow its instructions. To enable DKIM signing for a domain, all you have to do is to enable that function in mail domain settings in ISPConfig and create a DKIM key there. See the beginner tutorial on how to add your first mailbox: https://www.howtoforge.com/ispconfig-email-account/ to get started using ISPConfig. And as a side note, RoundCube is not related to OpenDkim directly. RoundCube is just an email client like Thunderbird or Outlook. It does not do Dkim signing. It also does not matter which mail client you use, so if you use RoundCube or Thunderbird, or Apple mail does not matter for Dkim.
Still one question: I relay mail (for three domains) to local (relay recipients @domain.de) users to my personal mailserver (Set up with ISPConfig too) there I do my personal SPAM filtering via rspamd before I reroute again @domain.de to my final Mail System Micro Focus Groupwise, outgoing mail went reverse GroupWise -> local Postfix -> official Postfix on my Server in the datacenter , where everything, Mail, Mailboxes for Cutommers , Websites, Primary DNS ... is running But I find nothing to create DKIM for the routed mails, where do I have to create the DKIM, I think at master mailserver, manualy. the test I im doing now is with a registrated test domain that has mailboxes on the main server Rainer
OK to clarify server1 setup with you script, has public IP address server2 mail server in a multiserver ISPConfig system has private IP address reached via NAT (Fritz Box) DSL Connection with fixed IP server1 is on a public ip address, running all services ISPConfig provides (mail, web, dns etc.) is mx for domain A, B, C, D, is primary DNS for domain A, B, C, D is mailserver for domain A, B has mailboxes for domain A, B (dovecot, roundcube) is mail relay for all users in domain C, D, configured, via mail (email routing, relay domains, relay recipiants) forwards to public address of server2 For domain A, B, the DKIM record may be created via mail -> domain. As I found out earlier if I configure domain C, D there too, the routing for these does not work any more, so I can not add teh there. So what to do, I can create the keys and add a DKIM in DNS for domain C, D manualy but where to do the private key. You store both keys under /var/lib/amavis/dkim/domainA.public respective .private and you have an entry in /etc/rspamd/local.d/ dkim_selectors.map "domainA default". I may add respective entries for domain C, D. But a) is that all, and if I do will I break the system or b) does'nt it work at all, as postfix does not care about all this when relaying Or what is your recomotation or solution. Is is not unusual to have postfix with a public address and all ist posibilities of filters and SPAM protection in front of a private mailsystem on a private network. Thanks for any help regards Rainer
