Mail server IP & Cloudflare Problems

dr.job24 · July 30, 2019, 4:59pm

Have an Info Message in my Dashboard under DNS called:
, An A, AAAA, CNAME, or MX record is pointed to your origin server exposing your origin IP address.,

Question 1:
Does Cloudface work properly even if I do not fix this error? couse my hoster does not change the Mailserver IP address and does not want to give me a second one.

Question 2:
What happens if I do not solve this message or the problem and just use the service all the time. Do I annihilate my website or am I an easy victim of hacking on my website ??

Question 3:
Which hosting providers offer the provision of a second mailserver IP?

Thank you

matteo · July 30, 2019, 5:50pm

Absolutely, that error message is there simply to tell you that a record that you are proxying is exposed somewhere else, so it can be discovered even if it’s behind Cloudflare.

It can happen, people can find out the direct IP and attack that directly.

The reason people don’t host mail themselves, but use services like Office 365 or G Suite is for this exact reason. It’s hard to handle mail security well. You would still have an IP exposed directly to the outside that can be attacked and, depending on the actual interest attacking you can spike in someone, they can most definitely bring that down. It’s way harder to attack Google or Microsoft.

cbrandt · July 30, 2019, 5:51pm

Hi @dr.job24,

Yes
Your origin server IP address is exposed, and may be used by hackers to attack your website directly via IP address, if your hosting provider allows such access. Cloudflare protections won’t apply to requests aimed directly at your server via IP address.
I use Siteground, and the default mail provider is on a different domain and different IP address, than the one assigned to my websites.

dr.job24 · July 30, 2019, 5:58pm

that sounds interesting. I would have preferred Siteground as well. Unfortunately, I come from Germany and our data protection regulations have changed drastically since May. That’s why I decided to go for “all-inkl” So I’m on the safe side to avoid warnings

dr.job24 · July 30, 2019, 6:01pm

if I understand correctly, google (Gmail) is better protected. My question is: Can I also run my mail server via a Gmail address?

matteo · July 30, 2019, 6:04pm

If the domain is @gmail.com is the free version that everyone can have. If you want @example.com you should use their G Suite service, which isn’t run on your server, but uses your domain, which costs a bit (not that much) per user and offers various services in addition to e-mail.

dr.job24 · July 30, 2019, 6:10pm

So it is possible to operate the mail server with a free Gmail account? right?

matteo · July 30, 2019, 7:01pm

Nope. Gmail is completely unrelated. You can’t use your domain there. You cant use your server in any of those. They are services provided to you.

Topic		Replies	Views
Problem with setup Getting Started dns , caching , WordPress , dash-getting-started , dash-errors , dash-troubleshooting	13	3283	October 8, 2018
DNS Management - Question DNS & Network	2	2186	May 12, 2021
Denial of service DNS & Network dns , dash-getting-started , dash-errors , dash-troubleshooting	3	2017	August 25, 2018
Need help to configure our DNS record to make email work under the cloud DNS & Network dash-troubleshooting	4	3412	August 7, 2019
This record exposes the ip behind mail.myserver.com DNS & Network	2	3038	September 1, 2021

Mail server IP & Cloudflare Problems

Related topics