Problems with SPF configuration

Discussion in 'General' started by Joffar, May 30, 2006.

  1. Joffar

    Joffar New Member

    I have added a SPF entry in the DNS manager, but for some reason when running the http://www.dnsreport.com/ it keeps giving me a warning that my domain doesn't have a SPF record.
    When checking my pri.domain.org it indicates that I have a SPF record.

    I have two email accounts to the same domain, so I would think that if I have a SPF record for the domain that would be sufficient..

    Any idea as to what I do wrong?

    Any help is appreciated.

    Output from /etc/bind/pri.domain.org
    (Tried to add the mail.domain.org but it seems that it didnt help any.)
    Code:
    $TTL        86400
    @       IN      SOA     domain.org. admin.domain.org. (
                            2006052805       ; serial, todays date + todays serial #
                            28800              ; refresh, seconds
                            7200              ; retry, seconds
                            604800              ; expire, seconds
                            86400 )            ; minimum, seconds
    ;
                    NS      domain.org.              ; Inet Address of name server 1
                    NS      domain.org.              ; Inet Address of name server 2
    ;
    
      MX      10 domain.org.
    www  MX      10 domain.org.
    
    domain.org.      A        1.2.3.4
    www       A       1.2.3.4
    gallery       A       1.2.3.4
    blog       A       1.2.3.4
    
    domain.org.       TXT  "v=spf1 a mx ~all"
    www.domain.org.       TXT  "v=spf1 a mx ~all"
    
    ;;;; MAKE MANUAL ENTRIES BELOW THIS LINE! ;;;;
    mail.domain.org.      IN TXT  "v=spf1 a ~all"
    
     
  2. falko

    falko Super Moderator Howtoforge Staff Moderator HowtoForge Supporter ISPConfig Developer

    Is your ISPConfig server the authoritative name server for the domain? Do you see it in the output of
    Code:
    dig ns domain.com
    ?
     
  3. Joffar

    Joffar New Member

    I guess not since I am using no-ip to redirect to my server...Heres the output...

    Code:
    ; <<>> DiG 9.3.2 <<>> ns blumonkey.org
    ;; global options:  printcmd
    ;; Got answer:
    ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 30852
    ;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 5
    
    ;; QUESTION SECTION:
    ;blumonkey.org.                 IN      NS
    
    ;; ANSWER SECTION:
    blumonkey.org.          86400   IN      NS      ns3.no-ip.com.
    blumonkey.org.          86400   IN      NS      ns4.no-ip.com.
    blumonkey.org.          86400   IN      NS      ns5.no-ip.com.
    blumonkey.org.          86400   IN      NS      ns1.no-ip.com.
    blumonkey.org.          86400   IN      NS      ns2.no-ip.com.
    
    ;; ADDITIONAL SECTION:
    ns4.no-ip.com.          82004   IN      A       198.65.102.15
    ns5.no-ip.com.          82004   IN      A       212.100.249.200
    ns1.no-ip.com.          82004   IN      A       216.66.37.13
    ns2.no-ip.com.          82004   IN      A       204.16.252.6
    ns3.no-ip.com.          82004   IN      A       63.208.74.226
    
    ;; Query time: 186 msec
    ;; SERVER: 192.168.0.1#53(192.168.0.1)
    ;; WHEN: Tue May 30 19:41:21 2006
    ;; MSG SIZE  rcvd: 210
    
     
  4. falko

    falko Super Moderator Howtoforge Staff Moderator HowtoForge Supporter ISPConfig Developer

    This means your server is not authoritative for your domain. You must create the SPF record on those no-ip name servers.
     

Share This Page