Your MX record exposes your origin IP - What does this mean?

If you are hosting your own mail server and this is located on the same webserver as your website you will receive the message “Your MX record exposes your origin IP”. This means that attackers can learn the location of your server through your MX records and therefore learn where your website is hosted.

As an example: 


The main website is proxying through Cloudflare and therefore will return Cloudflare IP’s when queried:
dig scott.cf +short
104.20.32.72
104.20.95.71


However if I query the MX records for this domain I am able to determine the location of the origin web server:

dig scott.cf mx +short
1 dc-010c3db3.scott.cf.

dig dc-010c3db3.scott.cf +short 123.45.53.55


To eliminate this risk we recommend hosting your email externally or on a separate server to your website.

Still not finding what you need?

The CloudFlare team is here to help. 95% of questions can be answered using the search tool, but if you can’t find what you need, submit a support request.

Powered by Zendesk