No DMARC Record found

Discussion in 'ISPConfig 3 Priority Support' started by conductive, Jan 28, 2018.

  1. conductive

    conductive Member HowtoForge Supporter

    https://mxtoolbox.com/domain/
    Gives me the following errors:

    dmarc mydomain.com DNS Record not found
    mx mydomain.com No DMARC Record found

    My DMARC record is:
    Hostname _dmarc.mydomain.com.
    Text v=DMARC1; p=none
    TTL 3600
    Active x
     
  2. conductive

    conductive Member HowtoForge Supporter

    I deleted my DMARC and DKIM recouds, changed my SPF Record form v=spf1 mx a ~all to
    v=spf1 mx a ip4:xx.xx.xx.170 -all

    I then recreated my DMARC and DKIM records and I still get
    dmarc mydomain.com DNS Record not found
    mx mydomain.com No DMARC Record found

    My DMARC Record is:
    hostname: _dmarc.mydomain.com.
    Text: v=DMARC1; p=quarantine
    Active x

    Why is this record not being seen and/or how do I publish it?
     
  3. till

    till Super Moderator Staff Member ISPConfig Developer

    Check if the dmarc record is listed in the zone file, or if there is a copy of the zone file with .err file ending with that record, which would mean that bind did not accept the record due to a failure.
     
  4. conductive

    conductive Member HowtoForge Supporter

    Thanks for the reply. My zone file looks like:
    /etc/bind# cat pri.mydomain.com
    $TTL 3600
    @ IN SOA server1.mydomain.com. zwebmin.mydomain.com. (
    2018013101 ; serial, todays date + todays serial #
    7200 ; refresh, seconds
    540 ; retry, seconds
    604800 ; expire, seconds
    86400 ) ; minimum, seconds
    ;

    * 3600 A 1.2.3.4
    mail 3600 A 1.2.3.4
    mydomain.com. 3600 A 1.2.3.4
    www 3600 A 1.2.3.4
    mydomain.com. 3600 MX 10 mail.mydomain.com.
    mydomain.com. 3600 NS server1.mydomain.com.
    mydomain.com. 3600 NS server1.mydomain.com.
    default._domainkey.mydomain.com. 60 TXT "v=DKIM1; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCvnZccVAPW2QEtvloNCQL/bh0xaFm1IDRaKo8vA2Gsd4oHGFqLznHWvFdF07ZUY6kcCW0JIjKMpmXIqlc4sDbPdkmL9vsnEi7LYWCQk0yxuq88nRW8ACJkvqYnRceV7LJrBAC46KbHLwqY5FoaeMYqJy/h5Ez7H4Tl0y8CuSTtyQIDAQAB"
    mydomain.com. 3600 TXT "v=spf1 mx a ip4:1.2.3.4 -all"
    _dmarc.mydomain.com. 3600 TXT "v=DMARC1; p=quarantine"

    The only .err file was:
    /etc/bind# cat pri.1.2.3.in-addr.arpa.err
    $TTL 3600
    @ IN SOA server1.mydomain.com. zwebmin.mydomain.com. (
    2018011602 ; serial, todays date + todays serial #
    7200 ; refresh, seconds
    540 ; retry, seconds
    604800 ; expire, seconds
    3600 ) ; minimum, seconds
    ;
    170 3600 PTR mydomain.com
     
  5. till

    till Super Moderator Staff Member ISPConfig Developer

    Ok, so the record has been written to the zone file. Are you sure that the dns server where you added the record is the authoritative dns server for that domain? Maybe you added this record to your ispconfig server but the authoritative dns server for the domain is at your ISP where you ordered the domain name.
     
  6. conductive

    conductive Member HowtoForge Supporter

    I have a domain registrar and have a server running ISPConfig. The registrar just points to the ISPConfig server. I have not added any records to the registrar control panel.
    The Name server sections shows 5 nameservers
    dns?.name-services.com
     
  7. till

    till Super Moderator Staff Member ISPConfig Developer

    Ok, and these 5 servers are your ISPConfig servers, or at least the first one is your ispconfig server? If not, then your server is not the primary dns server of that domain and yu have to add the dmarc record on these 5 servers and not your server.
     

Share This Page