Digital Ocean, G Suite, SendGrid, Namecheap

Ich habe große Schwierigkeiten, E-Mails mit meinem neuen Discourse-Server zum Laufen zu bringen.

Ich hoste bei DigitalOcean. Dort scheint kein Problem vorzuliegen. Der Server läuft, und ich kann mich anmelden.

Als Admin-E-Mail nutze ich G Suite, aber nicht für den E-Mail-Versand der Website.

Für DNS und Registrierung bin ich bei Namecheap.

Als SMTP-Anbieter für die Website verwende ich SendGrid. Ich habe jede erdenkliche Kombination zur Verifizierung ausprobiert: mit der Hauptdomain, mit der Subdomain, indem ich die von SendGrid bereitgestellten DNS-Einträge entfernt und erneut in Namecheap eingegeben habe, sowie indem ich die Domain in eine Whitelist von G Suite aufgenommen habe (ist das überhaupt notwendig?).

E-Mails werden gesendet. Laut SendGrid wurden Test-E-Mails von Discourse versendet, aber sie kommen nie an. Im Fehlerbericht von SendGrid steht Folgendes:

Empfangen von gmail-smtp-in.l.google.com

Blockiert

Der Gmail-Server hat die Zustellung dieser Nachricht blockiert. Wir werden versuchen, diese Nachricht nicht erneut zu senden, aber zukünftige Nachrichten an diese Adresse werden erneut versucht.

Sie können alle blockierten Adressen in Ihrem [Blocks]-Bereich einsehen.

Vollständige Antwort des Gmail-Servers:

550 5.7.1 Unauthentifizierte E-Mail von do.c wird aufgrund der DMARC-Richtlinie 5.7.1 der Domain nicht akzeptiert. Bitte kontaktieren Sie den Administrator der Domain do.c, falls es sich um eine legitime E-Mail handelt. Weitere Informationen zur DMARC-Initiative finden Sie unter 5.7.1. m55-v6si4266550qtc.214 - gsmtp

Schränkt das mein Problem also ausschließlich auf SendGrid und die Domainverifizierung ein, oder liegt etwas anderes vor? In jedem Fall möchte SendGrid die Verifizierung nicht abschließen, sobald ich die von ihnen bereitgestellten Informationen in den DNS-Bereich bei Namecheap eingefügt habe.

As it says, Your dmarc record is not correct.
You can find the correct dmarc value in sendgrid and that should be updated into your dns.
Please correct it or contact sendgrid for assistance.

Just by chance, is it a one-click install app from DO?

@itsbhanusharma, yes. I did the one-click Discourse setup. Everything went very smoothly up until the SMTP setup. I’ve put in a ticket with SendGrid and am waiting for their response.

What is the notification email in your discourse admin? I think that needs to be corrected.

It is currently set at noreply@unconfigured.discourse.org.

When going through the setup wizard I chose for the system to handle mail so the one G Suite account I have to accompany the site info@mydomain.com is not flooded with messages, if I’m even understanding it correctly.

It can’t be @unconfigured.discourse.org in any case.

Please change it to @(your-discourse-domain) or the domain that’s verified with sparkpost first. I hope that’ll fix it.

Also, you may have to tweak your smtp port as DO may be blocking common SMTP ports on your account.

@itsbhanusharma, I made your suggested changes and it worked, although the message did go to my spam folder and is still showing “via SendGrid”. I’m guessing the way to solve that is through domain verification with SendGrid and that will be between me and them.

Exactly. They should have provided you some DNS records to create. Those records take care of the whole verification process.

Great. Thanks so much for the help. Now I’m wondering if I need to go back and undo some of the things I did like whitelisting my G Suite account with SendGrid and stuff like that.

Not immediately, first step that I’d take is to make sure sendgrid is happy with my domain and then I’d test the quality of emails sent using mail-tester.com or similar service.

Once that’s all fixed then only I’d lax any whitelist

As it’s set up now, while going through all the various forums trying to troubleshoot my problem I followed one tutorial that had me go into my G Suite settings and whitelist Digital Ocean, not SendGrid like I said. Because that wasn’t related to my actual problem is it necessary anymore or could it cause any problems in the future?

It actually wasn’t even whitelisting. It was SMTP relay service where I added my droplet IP address.

While it won’t really cause any problems as long as you retain the IP it can possibly cause spam whitelist if you leave the IP and other owner is a notorious spammer.

So it’s okay to remove it. Also, DO is not sending emails from it’s own IP either. Those are sent from sendgrid.

Great. Thanks again for the help.

While I’m able to get emails delivered to people who register for the forum now (albeit in their spam folder), I now am having trouble sending admin emails. When I attempt to make a member of the forum and admin, I get the message saying to check my email. My single G suite email address is info@mydomain.com. SendGrid can never seem to send a message from info@mydomain.com to info@mydomain.com. This is quite a problem because I can’t make anyone else an admin because I can never finish the process. There error I get from SendGrid is:

The mydomain.com server blocked this message from being delivered. While we won’t try to send this message again, we will attempt to send new messages to this address in the future.

You can view all addresses in your Blocks suppression group. Learn more.

Full response from the mydomain.com server:

error dialing remote address: dial tcp 167.89.106.64:0->162.255.119.167:25: i/o timeout

You should check the mail debugging document. The problem is between sendgrid and your mail server that is refusing connections from sendgrid.

I’m using Namecheap, so I had set up all of my SendGrid information CNAME records, but in the “Mail Settings” portion of the Advanced DNS page I didn’t have anything selected. Once I selected Gmail everything began to work. I swear I’d thought I had read something about if you’re setting up SendGrid you don’t need anything the Mail Settings section. Things appear to be working now.