Is it practical to run a private SMTP server on a static IP in 2020/2021?

networking email spam-prevention smtp

I have a small piece of static IP4 space (5 IPs, /29) and general Linux sysadmin capabilities. I have run SMTP servers before, but I don't know what the current state-of-the-art for email and spam-filtering is.

I can set up the necessary authentication features to prevent spammers from abusing my server, but I'm concerned that mail from my site will be spamholed, RBL'd or refused for some authentication thing that I either don't know about or can't reasonably implement. (I guess one example would be if a neighboring /29 block was spamming, and the RBLs just kicked everything in the /24 out. That would be miserable.)

I would prefer to run my own server, because my experience with non-Google service providers is mixed (I'm not a big enough customer to get or afford RIGHT NOW tech support when they have problems) and I don't want Google reading my mail any more than they do already.

Is SMTP something that a "small company"-level entity can reasonably run themselves in 2020/2021? Or is the attack surface too large (so it requires a lot of administration)? Or do other mail exchangers downgrade/refuse mail from non-backbone sources in order to cut down on their spam?


If you are technically competent and if your IP block is not mapped to a DSL/home user range, yes its practical. You will want SPF records and reverse DNS at a minimum. You will also not want very large bursty volumes. Save for spam filtering incoming mail its fairly low effort to maintain - although doing decent spam filtering can be time consuming.

Another thought - your incoming and outgoing SMTP servers can be different, and I think most mailnservers arnt to concerned about reputation of who they send mail to (while being very concerned a out who they receive mail from)

If your ISP offers it, you can often set your outbound mail server to relay all outbound mail through them, which further reduces your delivery reputation concerns.


Good answer from @davidgo and a shortcut might be to first look up your IPs - do a 'spam blocklist check' - google mentions first:

  1. https://mxtoolbox.com/blacklists.aspx
  2. https://www.dnsbl.info

If they're a mess to start, you'll see and maybe give up.

Beyond SPF, I you'll also need to know about rDNS, DMARC and DKIM if you're not relaying through your ISP's mail server for outgoing.

Related

Windows7 hardlink over two different drives
Nothing happens when I right-click the taskbar
Is there a way to display a watermark on the screen at all times?
Launch batch script from keyboard software
Intel 82574L Gigabit NIC - WoL option missing in driver settings?
How do I quickly circle part of an image to highlight it in Photoshop as I would in Paint?
How to know details of an HEIC file?
Create the simplest Windows 7 sleep keyboard shortcut
Does Microsoft publish a list of localized month/ day names
Explanation to understand a VBA code for percentage change
Windows 10 Two Wifi Adapters. Can I force a specific adapter to connect AUTOMATICALLY to a specified Access Point
how to stop MS edge from causing problems?