DMARC and server migration...

rivermobster

Well-Known Member
Dec 16, 2020
68
10
8
SoCal
cPanel Access Level
Root Administrator
Hey all,

I'm moving my clients from a shared server to a new cloud server. Mainly to avoid all the email issues (blacklisting) associated with a shared server!

I have DMARC records installed for all of my clients...

Do these records need to be modified before or after the move? I am unsure if these records are server sensitive, or not.

I suppose the same question will apply to the DKIM and SPF records as well as any other email records involved.

Thanks in advance!

@cPRex
 

andrew.n

Well-Known Member
Jun 9, 2020
397
97
28
EU
cPanel Access Level
Root Administrator
The question is do you host those domain names on the server? i.e are they using the nameservers of the server?
 

ffeingol

Well-Known Member
PartnerNOC
Nov 9, 2001
493
144
343
cPanel Access Level
DataCenter Provider
The short answer is DMARC records no, SPF yes.

DMARC records are just a feeedback loop. It tells MTA's (that have implemented DMARC) where to send reports to. There is nothing in that record that is server specific. Here is a spec of what a DMARC record looks like: What is a DMARC Record? - What does it look like? - MxToolbox

SPF records, on the other hand (the way cPanel sets them up) have IP addresses in them. They tell other MTA's where you mail 'should' come from. If you can use the WHM transfer facility (which I doubt you can) it would adjust the SPF records. If not (and as @andrew.n said) you'll have to adjust SPF record (if you manage DNS) post migration.

Depending on how you can migrate, you'll want to review each DNS zone post migration. There are search/replace browser plugins that we use to make quick work of those kind of changes. You just plug in the old/new IP and then let it search/replace on the Zone Edit page. It's a bit more tedious on the "new and improved" (not IMHO) DNS editor as you have to do it record by record.
 

rivermobster

Well-Known Member
Dec 16, 2020
68
10
8
SoCal
cPanel Access Level
Root Administrator
The short answer is DMARC records no, SPF yes.

DMARC records are just a feeedback loop. It tells MTA's (that have implemented DMARC) where to send reports to. There is nothing in that record that is server specific. Here is a spec of what a DMARC record looks like: What is a DMARC Record? - What does it look like? - MxToolbox

SPF records, on the other hand (the way cPanel sets them up) have IP addresses in them. They tell other MTA's where you mail 'should' come from. If you can use the WHM transfer facility (which I doubt you can) it would adjust the SPF records. If not (and as @andrew.n said) you'll have to adjust SPF record (if you manage DNS) post migration.

Depending on how you can migrate, you'll want to review each DNS zone post migration. There are search/replace browser plugins that we use to make quick work of those kind of changes. You just plug in the old/new IP and then let it search/replace on the Zone Edit page. It's a bit more tedious on the "new and improved" (not IMHO) DNS editor as you have to do it record by record.
Thanks for typing all that out for me. I appreciate it!

The same hosting company that is hosting my shared server account, is also hosting my new cloud account. They will be doing the migration for me this weekend.

I asked them the same question, and the answer was...

When performing a migration of the data cPanel should attempt to update the SPF and DKIM records with the IP address of the new server.

So I guess we are good then?

Would there be anything else I need to be aware of, as far as email goes, due to the migration? Thanks for all of your help!
 

ffeingol

Well-Known Member
PartnerNOC
Nov 9, 2001
493
144
343
cPanel Access Level
DataCenter Provider
You "should" be fine. The WHM transfer system is very good and moving things, updating the DNS etc.

The only suggestion I'd have is preparation. Depending on what you have your TTL set to (the time that DNS is cached) I'd lower it. The default on cPanel is 14400 (seconds) which is 4 hours. That means the sites will appear to be down for 4 hours while DNS is cached. I'd suggest lowering it to something like 1200 (20 minutes) to speed that up.
 
  • Like
Reactions: rivermobster

rivermobster

Well-Known Member
Dec 16, 2020
68
10
8
SoCal
cPanel Access Level
Root Administrator
You "should" be fine. The WHM transfer system is very good and moving things, updating the DNS etc.

The only suggestion I'd have is preparation. Depending on what you have your TTL set to (the time that DNS is cached) I'd lower it. The default on cPanel is 14400 (seconds) which is 4 hours. That means the sites will appear to be down for 4 hours while DNS is cached. I'd suggest lowering it to something like 1200 (20 minutes) to speed that up.
Thank you. I'm pretty sure I have access to that in my WHM reseller account. I'll check into that in a bit and report back. :thumbsup:
 
  • Like
Reactions: cPRex

rivermobster

Well-Known Member
Dec 16, 2020
68
10
8
SoCal
cPanel Access Level
Root Administrator
@ffeingol

After thinking about it, I wasn't sure if you meant the source or destination server, so I changed the TTL on both servers to 1200. It was set to 3600 on both of them before I changed it.

Thanks for the tip! :thumbsup"