On Thu December 3 2015 11:16:04 Timothy Pearson wrote:
As you can probably infer the main problem is that my
ISP doesn't provide
enough IP addresses (at a cost I am willing to pay) for all the services
running here. From what I understand multiple rDNS records for the same
IP is likely to cause more problems than it's worth as well.
I've heard of such problems but we ran with multiple PTRs
from the mid nineties to the late noughties without problems.
I imagine there was a time when people checked the first
PTR record against the first A record but modern software
knows to retrieve all records in a doubly nested loop and
look for any match.
After the servers are relocated next year there should
be more IP
addresses available, which will make this problem go away.
With the world out of IPv4 address blocks the trend is to
giving only one IPv4 address to each virtual or physical
machine, and using RFC1918 addresses wherever possible.
Over the last two decades while growing our network we've
reduced our public IPv4 addresses in several stages from
1025 (including the router's DS1 interface) to about a dozen
public IPv4s which together support five locations across
four cities.
The only machines with two public IPv4 addresses are some
VPN+mail servers where the configuration is just too horrible
without a second public IPv4.
You still occasionally see an ISP SWIPing a /29 to get
their own utilization rate up but it's increasingly rare
and if you want a second public IPv4 on a box you will now
usually have to provide a written justification which will
be assessed by a network engineer.
I'm not all
that keen on changing the HELO string as it isn't technically the domain
that's identifying, it's that specific mail server, and over time there
may be more than one mail server (for redundancy, etc.).
The trend is toward giving a single name for each box
with matching A and PTR records. You can still have
multiple MX records pointing to multiple boxes. And
you can still use CNAMEs or additional A records without
PTRs to provide additional names for your box including
for virtual web services.
Whether you call that box
pearsoncomputing.net or
mail.pearsoncomputing.net or something else doesn't really
matter as long as A and PTR are consistent and preferably
also /etc/hostname, /etc/mailname, and smtp_helo.
--Mike