Mail server IP & Cloudflare Problems

Have an Info Message in my Dashboard under DNS called:
, An A, AAAA, CNAME, or MX record is pointed to your origin server exposing your origin IP address.,

Question 1:
Does Cloudface work properly even if I do not fix this error? couse my hoster does not change the Mailserver IP address and does not want to give me a second one.

Question 2:
What happens if I do not solve this message or the problem and just use the service all the time. Do I annihilate my website or am I an easy victim of hacking on my website ??

Question 3:
Which hosting providers offer the provision of a second mailserver IP?

  • Thank you :smile:

Absolutely, that error message is there simply to tell you that a record that you are proxying is exposed somewhere else, so it can be discovered even if it’s behind Cloudflare.

It can happen, people can find out the direct IP and attack that directly.

The reason people don’t host mail themselves, but use services like Office 365 or G Suite is for this exact reason. It’s hard to handle mail security well. You would still have an IP exposed directly to the outside that can be attacked and, depending on the actual interest attacking you can spike in someone, they can most definitely bring that down. It’s way harder to attack Google or Microsoft.

1 Like

Hi @dr.job24,

  1. Yes
  2. Your origin server IP address is exposed, and may be used by hackers to attack your website directly via IP address, if your hosting provider allows such access. Cloudflare protections won’t apply to requests aimed directly at your server via IP address.
  3. I use Siteground, and the default mail provider is on a different domain and different IP address, than the one assigned to my websites.

that sounds interesting. I would have preferred Siteground as well. Unfortunately, I come from Germany and our data protection regulations have changed drastically since May. That’s why I decided to go for “all-inkl” So I’m on the safe side to avoid warnings

1 Like

if I understand correctly, google (Gmail) is better protected. My question is: Can I also run my mail server via a Gmail address?

If the domain is is the free version that everyone can have. If you want you should use their G Suite service, which isn’t run on your server, but uses your domain, which costs a bit (not that much) per user and offers various services in addition to e-mail.

So it is possible to operate the mail server with a free Gmail account? right?

Nope. Gmail is completely unrelated. You can’t use your domain there. You cant use your server in any of those. They are services provided to you.