We build. You grow.

Get best community software here

Start a social network, a fan-site, an education project with oxwall - free opensource community software

how to set up cloudflare and get your mails into inboxes | Forum

tammy harris
tammy harris Dec 7 '15
When you set up cloudflare and set your nameservers
cloudflare will grab most of your dns entries
but there some important dns entries it misses and theres sfa on the net as to how to get your mail server working on cloudflare and get your mails into inboxes 
you need to add 3 text records
spf and dkim records ask your hosting for these
the records will be like these

spf           "v=spf1 +a +mx +ip4:208.37.20.21 ~all"
dkim      default_domainkey "v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5sRx7Ep4UsDEoZ5+yJiUJQ8GPiNnrst

pB45J1UQ7ZxzcfkkfdefederedtsF23HczTWHT//goWcL9Uv5vS5i11k7ejhVH4rjDnkEc6PYnEGxf7K

0y+OOn+97KgMBbChmYWT9/P1aSk08qGguCKiIxCt7tlMzbekC4/Z27vmtY51ZjTQUBrz9g3YGFyQHsLWzj" nU2SaaasacAZsrZKefefeffefe4x4bgYVr1mxWGZd0QFZjBASbfhUgpj+5XZF7CYsKja6XiHaeFDDyzAJqN/4aF

2NnEYhH/sKubQHR8X5E6JGTE8yk2h2mCJSQ+Jy2AilO+1DKVy+srDn7Y22F/0tRwIDAQAB\;


now to enter sfp record on cloudflare 
when input you sfp key you need to remove the "" from it
select txt entry
name          yourdomainname.com

entry         v=spf1 +a +mx +ip4:208.37.20.21 ~all

dkim is a bit tricky if you have a smaller key just remove the " at the beginning of the key if you have a large key like mine remove the " at the beginning and the one in the middle and the space after it 

select txt record
name  default_domainkey 
entry  v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5sRx7Ep4UsDEoZ5+yJiUJQ8GPiNnrst

pB45J1UQ7ZxzcfkkfdefederedtsF23HczTWHT//goWcL9Uv5vS5i11k7ejhVH4rjDnkEc6PYnEGxf7K

0y+OOn+97KgMBbChmYWT9/P1aSk08qGguCKiIxCt7tlMzbekC4/Z27vmtY51ZjTQUBrz9g3YGF

yQHsLWzjnU2SaaasacAZsrZKefefeffefe4x4bgYVr1mxWGZd0QFZjBASbfhUgpj+5XZF7CYsKja6XiHaeFDDyzAJqN/4aF

2NnEYhH/sKubQHR8X5E6JGTE8yk2h2mCJSQ+Jy2AilO+1DKVy+srDn7Y22F/0tRwIDAQAB\;


once you have them set wait for dns to propagate then use https://www.mail-tester.com/ to verify the records 
once they are done at set add the 3rd record
dmarc
select text
name  _dmarc

entry   v=DMARC1; p=none; sp=none; rua=mailto:abuse@yoursite.com


change the email addy to your valid email addy

if your mail is not working at all you may need add a mx record
the entry it your mail sever 
select mx 
name    yourdomain.com

entry    mail.yourdomain.com       or    yourdomain.com 

 

tammy harris
tammy harris Dec 7 '15
now you have mail all set and running good 
make cloudflare do all the work on your site
go to speed
set javascript css and html to auto minify
rocket loader may confilct with some plugins and even some ads code if
it does set to off

then go to caching set to standard

then go to page rules and add 2 rules 
first one
http://www.yoursite.com/admin/*
and turn everything off

second one 
http://www.theopenretreat.com/*
set to cache everything and the rest the setting to your liking

tammy harris
tammy harris Dec 7 '15
some more test sites
http://dkimcore.org/tools/keycheck.html
selector      default
domain       yourdomain.com

and
http://dkimvalidator.com/


tammy harris
tammy harris Dec 18 '15
if you find some images not showing and get some 522 errors in console 
you need to whitelist cloudflare ips in your server firewall
if you dont know how ask your hosting to do it 
cloudflare ip ranges
https://www.cloudflare.com/ips/
tammy harris
tammy harris Dec 19 '15
to get to a perfect score here
https://www.mail-tester.com/

you will need to add cloudflare nameservers to you domains dns zone
if you have whm its easy to do 
go to edit dns zones  click you domain and in the 2 ns records put cloudflare nameservers in 

remember if you take your site off cloudflare you will need to change them back to default nameservers 







tammy harris
tammy harris Jan 10 '16
and install mod cloudflare on your server 
so you get the right users ip addys 
or lol like me you will start blocking cloudflare ips