Dear friends, I tell you that I have configured a server nethserver, but it is presenting some flaws with the use of the zimbra mail server.
The server nethserver has the interfaces and zones: external, internal, dmz. In the dmz segment is the zimbra mail server with a private IP of that segment.
I have 4 public ips available, the main public ip is assigned to the interface of the external segment.
As an alias add the other 03 ips to this network interface.
In the port forwarding configuration, configure the relation of a public IP of an alias of the network card of the external segment, towards the private IP of the zimbra mail server, with its necessary ports. This same public ip is configured in the provider’s dns records, mx dns, ptr, a, spf, dkim, dmarc, etc., so that the mail server works.
Some emails that are sent from our domain, to others, do not arrive or are banned by security systems of other email servers, verified logs and analyzing on the web of www.mail-tester.com, I can see that the emails arrive As the public IP of the one that has the main IP of the external card, but it does not go with the IP assigned to the domain, which is configured in the alias.
Please any one of you can tell me that you are missing the configuration.
The main idea that the emails that come out of my zimbra server that is in the dmz behind the nethserver, should come out with the public IP that is registered in the domain, which was created in an alias to the external network card.
Port forwarding and SNAT need to be enabled, or only one option is required.
The fault is that the emails arrive with the header of the main public IP that has the network card of the external segment. Some mail servers ban me because they qualify it as an error, because that IP is not registered in the dns of the mail domain, the IP that is configured is in the alias of the network card of the external segment.