Page 2 of 2 FirstFirst 12
Results 21 to 25 of 25

Thread: The domain name of at least one of your mail servers does not match the domain name

  1. #21
    Join Date
    Aug 2015
    Ah, thank you so much, so that is the "problem", as they do not support SNI.

    Thank you for taking time. All the best.

    Kind regards, Fred

  2. #22
    Join Date
    Sep 2017
    I have some more questions about this. I'm also running one VPS for multiple websites but I'm not sure if my setup is correct since I'm also getting the certificate mismatch in like Filezilla and Thunderbird.

    The server name is and I created a certificate for it (Let's Encrypt) via:

    cd /usr/local/directadmin/scripts
    ./ request 4096
    Now for my emails I want to use so I added to vi /usr/local/directadmin/conf/ca.san_config
    Reran the ./ request 4096 and it looks like that was working.

    So now for the other domain do I also use as in and outgoing server or do I use If so do I just create a certificate for via de Let's Encrypt panel?

    I do have mail_sni=1 in the da settings. And in my case do I also have to do those TASK QUEUE settings?

    And one more thing. Since I use Cloudflare for my DNS I just added these values to is this also correct?

    A	points to 123.456.789.11
    A ftp	points to 123.456.789.11
    A mail	points to 123.456.789.11
    A www	points to 123.456.789.11
    MX mail handled by 1
    TXT _dmarc	v=DMARC1;p=none
    TXT _domainkey	o=~
    TXT	v=spf1 a mx ip4:123.456.789.11 ~all
    TXT x._domainkey	v=DKIM1;k=rsa;p=long_string_here

  3. #23
    Join Date
    Apr 2005
    GMT +7.00
    Hello, as in and outgoing server or do I use
    You should decide. The both variants are possible, depending on what devices you use.

    Filezilla does not care about your MX records.

    Thunderbird can use autodiscovery/autoconfig, so you might can use this functionality or rely on MX records.

    And the server should have a valid SSL/TLS cert for the names used for MX.

  4. #24
    Join Date
    Dec 2018
    Sorry to revice and old topic but I'm in the same boat. My problem is however I dont seem to be able to issue a Let Encrypt SSL certificate that includes the domain. I have tried adding it as subdomain from the main domain and even as seperate domain but I end up with the same error as shown below. What am I doing wrong? Because of this I'm getting an SSL error trying to setup POP3 mail within Gmail.

    Requesting new certificate order...
    Processing authorization for
    Error: is not reachable. Aborting the script.
    dig output for
    Please make sure /.well-known alias is setup in WWW server.

  5. #25
    Join Date
    Apr 2005
    GMT +7.00
    Make sure you see letsencrypt=1 when running the command:

    /usr/local/directadmin/directadmin c | grep letsencrypt=

    and try and see whether or not it helps:

    cd /usr/local/directadmin/custombuild/
    ./build update 
    ./build letsencrypt
    ./build rewrite_confs

Page 2 of 2 FirstFirst 12

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts