Cloudflare Domain, Hetzner Webserver - Creating & Securing an email address?

Domain: fiftytifty.net (fiftytifty.com reroutes to that)

I’ve searched for an answer, and keep getting sent to email routing. Whereas I want to set up a standalone email, and use Thunderbird to interface with it. Here’s the Cloudflare guide I keep getting sent to: https://developers.cloudflare.com/email-routing/

I am very new to all this, so assume I know nothing (because I don’t!). The furthest I’ve done with this stuff is setting up my DNS records to point to my Hetzner server:

A fiftytifty.net 213.133.104.23 Proxied Auto
A www 213.133.104.23 Proxied Auto
TXT _dmarc v=DMARC1; p=reject...
TXT *._domainkey v=DKIM1; p=
TXT fiftytifty.net google-site-verification=...
txt fiftytifty.net v=spf1 -all

Any help would be appreciated, as I’m in out of my depth; all the guides and tutorials don’t explain step by step, and assume you already know how this all works.

Cloudflare Email Routing is only for receiving emails, not for sending.

If you want full email services, you need to buy that from an email service provider and then follow their guide to connect your domain to their service.

Or does your Hetzner package include email services?

3 Likes

Yep, Hetzner includes email services. So I need to figure out how to forward the domain to that server.

I would contact Hetzner and as if it is possible to use the email service with an external domain.

I cannot find anything in their documentation about this.

1 Like

Yep, it is. Turns out Hetzner does allow for it, and can be tested from their Webmail tool. Now my current issue is that all sent and received emails are being bounced back. Apparently it’s a dmarc issue? Don’t know how to resolve it though.

For example, here’s the issue with my main email:

    SMTP error from remote mail server after pipelined end of data:
    550-5.7.26 Unauthenticated email from fiftytifty.net is not accepted due to
    550-5.7.26 domain's DMARC policy. Please contact the administrator of
    550-5.7.26 fiftytifty.net domain if this was a legitimate mail. Please visit
    550-5.7.26  https://support.google.com/mail/answer/2451690 to learn about the
    550 5.7.26 DMARC initiative. y18-20020a5d4ad2000000b0031fef700917si6619959wrs.468 - gsmtp```

According to their docs, there should be a button “Activate DKIM” somewhere. When enabling, you should be given a TXT record to add to Cloudflare.

However, I have no idea what to use for MX and SPF. I would still recommend you ask the support for that information.

https://docs.hetzner.com/konsoleh/account-management/email/mailsecurity#activating-dkim-for-your-domain

Brilliant, thanks for that info. I’ll send Hetzner an email about this, thankfully their support is quick and always on point. I assumed this was mainly a Cloudflare thng, so I asked here first.

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.