I was trying to set up mail for my server, to send status emails, gitlab emails, etc. I know this can be done with relays but I was interested in sending mail directly using SMTP. Apparently my ATT residential internet blocks outbound signals on that port by default, although there are several reports of people calling customer support and getting that changed.

The most recent thing I can find was someone on Reddit 3 years ago:

xnojack: Probably depends on the rep. Just got mine unblocked a week ago. I read online though its better to say you’re looking to allow SMTP outbound rather than port 25 outbound. Cause on the reps end its called something like SMTP outbound filter. (link)

I tried to call in and get this changed, the rep was very helpful but either something’s changed on their end or he was looking in the wrong place. Anyways, I was wondering if any of you have gone through this process recently and know if this is still a thing, or have any advice.

  • Brkdncr@lemmy.worldEnglish
    1·
    7 hours ago

    Port reflector or smtp relay. But the cost approaches the cost of hosted mails service.

    If i had to do this myself i would look at a vps or a business-class ISP.

  • SheeEttin@lemmy.zipEnglish
    18·
    2 days ago

    Yeah, residential ISPs do that because if they don’t, spammers will just turn every botnet member into a spam host. You’ll probably have to get a business connection or change ISPs.

    Or just don’t self-host email. I wouldn’t recommend it unless you’re a masochist.

    • Quokka@mastodon.au
      2·
      2 days ago

      @SheeEttin @AdrianTheFrog +1 Email for me is basically irrelevant. MFA resets, adverts from companies I forgot to unsubscribe from and a couple of bills. No personal correspondence or anything I would think is worth self-hosting it for these days. Other than many headaches.

    • kevincox@lemmy.mlEnglish
      1·
      2 days ago

      Yes, blocking port 25 outbound is incredibly common by default. Even on some server connections. It is probably better overall for exactly the reasons that you mentioned.

      Or just don’t self-host email

      IMHO this is a bit overblown. Hosting inbound is fairly easy. Mail senders (probably for the worst) are very forgiving even if your TLS cert is expired you will probably get mail. Plus senders are supposed to retry for days if you have downtime.

      However it is unfortunately true that due to spam sending is a huge pain because IPv4 reputation is a huge component. Sure you can get GMail to trust your domain after a month or so of sending if you have decent volume. But other providers who you may mail once a year are just going to go off of IP reputation. However email was basically designed for forwarding and you can use a service like AWS SES to forward your email from a trusted IP pretty easily. If you are low volume (like personal mail) there are tons of services that will do this for free.

      • SheeEttin@lemmy.zipEnglish
        2·
        2 days ago

        Inbound spam is also a problem. Gmail’s filter is pretty good, and it responds to what you personally mark as spam. Other providers aren’t as good, and I don’t know if there’s any good self-hosted filter at all.

        • AdrianTheFrog@lemmy.worldOPEnglish
          1·
          2 days ago

          I don’t really stay on top of my gmail that often, but my spam folder has basically exactly the same stuff in it that my inbox has. Just a bunch of random emails from services that I signed up for an account on or bought something from and none of which I particularly care about. There’s not really much that I can tell differentiating what gets marked as spam or not either.

        • kevincox@lemmy.mlEnglish
          1·
          2 days ago

          Its a problem but it isn’t a major problem. I am using rspamd without any sort of exotic configuration (basically just enabling things that are provided, not my own rules) and I only get a few spam messages leaking through a week. Maybe slightly worse than GMail but not considerably slow.

          IMHO the only real missing thing out of the box is contacts checking. Which is a huge thing because it is great to have reliable delivery from contacts. But my false-positive ratio is so low anyways that it isn’t a big issue and things like the known_senders module mostly mitigates it.

  • sludgewife@lemmy.blahaj.zoneEnglish
    6·
    2 days ago

    even if you get port 25 unblocked your IP won’t pass the sniff test. you must have a PTR record on the IP pointing to your domain for the large email hosts to accept mail from you. i use amazon SES to handle outbound because of this hurdle. it sucks

  • hperrin@lemmy.caEnglish
    4·
    2 days ago

    I did this about four years ago. You have to be really specific, because to them, it doesn’t look blocked (it’s not a total block, just outbound traffic, which I guess is a different system). Took a few hours on the phone with them, but we got it working.

    • 3dcadminAEnglish
      2·
      2 days ago

      I run an SMTP relay… very few takers, most just pay for managed email hosting. I run an smtp relay so multiple wordpress sites and services I self host can send mail. My lemmy instance is one

      • cmeu@lemmy.worldEnglish
        1·
        8 hours ago

        Some of us are just built different, I guess Thanks for doing the Lord’s work