Dec 29, 2023: iRedMail-1.6.8 has been released.

**noob** · 2014-12-16 19:09:46

noob
Member
Offline

Registered: 2014-03-26
Posts: 65

Topic: dkim signature problem or spf?

==== Required information ====
- iRedMail version: 0.8.7
- Store mail accounts in which backend (LDAP/MySQL/PGSQL):
- Linux/BSD distribution name and version: Ubuntu 14.04
- Related log if you're reporting an issue:
====

I did everything according to this tutorial

http://www.iredmail.org/wiki/index.php? … omain/RHEL

;company1.com dns

company1.com.     IN      TXT     "v=spf1  a mx a:company1.com  a:company2.com ip4:xxx.xxx.xxx.xxx  ~all"

; key#1, domain company1.com, /var/lib/dkim/company1.com.pem
dkim._domainkey.company1.com.    3600 TXT (
  "v=DKIM1; p="
  "MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCdnJlAAVZe3vECCyy70RpQrQ7"
  "V/68X+jQkjNd5RnAxK6nTCNJhzYh00rA+vv2pKkJ7I2XAY6i0bWjcaSvsidgZhvF"
  "zpsyKt/Y8QHl57lHiuXFYOMbUGY36hRegleBFFoVuO32JU8xmLiQoEoTZfxjPpsa"
  "cavcOoNRglzj3MuOgwIDAQAB")

;company2.com. dns

company2.com.     IN      TXT     "v=spf1  a mx a:company2.com. ip4:xxx.xxx.xxx.xxx  ~all"


; key#2, domain company2.com, /var/lib/dkim/company2.com.pem
dkim._domainkey.company2.com.    3600 TXT (
  "v=DKIM1; p="
  "MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC/Mt/SozE9wJyuk3VXaUDjIdF8"
  "4qhiCyrXZhDc2lOp9vI4H2YTXRSWxKX1XTvN19BfDgdtCVwGrl2RK0mZ3bP7FUCv"
  "dB+Xc7UR4nXo/mS/eEBZdhqZWkMEJfG/JqGsq1gi0jHOQEZUasWII86xJtPCVj6D"
  "a/e9IE9nZpuf2YVOnwIDAQAB")

company1.com is the main domain of the server, after i restart bind I have this in mu log

zone company1.com/IN: 'company1.com' found SPF/TXT record but no SPF/SPF record found, add matching type SPF record
......
zone company2.com/IN: 'company2.com' found SPF/TXT record but no SPF/SPF record found, add matching type SPF record

Mails from company2.com are sent to spam folder on gmail accounts(those from company1.com are ok)

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

**gabrielpe** · 2014-12-17 15:02:42

gabrielpe
Member
Offline

Registered: 2014-12-16
Posts: 4

Re: dkim signature problem or spf?

I am having a similar problem
http://www.iredmail.org/forum/topic8399 … -spam.html

Not only a DKIN record will make your emails "green".

To resolve my problem I am trying to pass in all validations of this site

http://www.port25.com/support/authentic … ification/

as you can see in the thread above, my emai server is not a complete success yet but at least I am not a spammer to gmail or other domain i have.

**ZhangHuangbin** · 2014-12-17 17:15:51

ZhangHuangbin
iRedMail Developers
Offline

Registered: 2009-05-06
Posts: 30,770

Re: dkim signature problem or spf?

noob wrote:

zone company1.com/IN: 'company1.com' found SPF/TXT record but no SPF/SPF record found, add matching type SPF record

Looks like Bind supports use 'SPF' as record type, so you can replace 'TXT by 'SPF' in its record.

**noob** · 2014-12-18 15:12:01

noob
Member
Offline

Registered: 2014-03-26
Posts: 65

Re: dkim signature problem or spf?

ZhangHuangbin wrote:

noob wrote:
zone company1.com/IN: 'company1.com' found SPF/TXT record but no SPF/SPF record found, add matching type SPF record
Looks like Bind supports use 'SPF' as record type, so you can replace 'TXT by 'SPF' in its record.

Replace for both(dkim record and spf record)?

I tried all 3 combinations(only for company2.com)

the same log warning
spf => SPF
dkim=> TXT

zone company2.com/IN: 'company2.com' found SPF/SPF record but no SPF/TXT record found, add matching type TXT record

spf=>TXT
dkim=>SPF

zone company2.com/IN: 'company2.com' found SPF/TXT record but no SPF/SPF record found, add matching type SPF record
zone company2.com/IN: 'dkim._domainkey.company2.com' found SPF/SPF record but no SPF/TXT record found, add matching type TXT record

spf=>SPF
dkim=>SPF

zone company2.com/IN: 'company2.com' found SPF/SPF record but no SPF/TXT record found, add matching type TXT record
zone company2.com/IN: 'dkim._domainkey.company2.com' found SPF/SPF record but no SPF/TXT record found, add matching type TXT record

**Dexus** · 2014-12-18 19:21:05

Dexus
Member
Offline

From: Germany
Registered: 2014-10-23
Posts: 21

Re: dkim signature problem or spf?

First: what says your resolv.conf?

On what a DNS Server you change the settings?
Is it the public DNS server? Or the system own DNS server?

For me it looks like you ask a other DNS server that dont have the Informations that you setup.

I'm sorry, but you Nick can be right if i read the thread from the beginn...

**ZhangHuangbin** · 2014-12-18 20:43:23

ZhangHuangbin
iRedMail Developers
Offline

Registered: 2009-05-06
Posts: 30,770

Re: dkim signature problem or spf?

I suggest you check Bind document instead.

Dec 29, 2023: iRedMail-1.6.8 has been released.

dkim signature problem or spf?

Posts: 6

1 Topic by noob 2014-12-16 19:09:46

Topic: dkim signature problem or spf?

2 Reply by gabrielpe 2014-12-17 15:02:42 (edited by gabrielpe 2014-12-17 15:08:11)

Re: dkim signature problem or spf?

3 Reply by ZhangHuangbin 2014-12-17 17:15:51

Re: dkim signature problem or spf?

4 Reply by noob 2014-12-18 15:12:01 (edited by noob 2014-12-18 15:13:16)

Re: dkim signature problem or spf?

5 Reply by Dexus 2014-12-18 19:21:05

Re: dkim signature problem or spf?

6 Reply by ZhangHuangbin 2014-12-18 20:43:23

Re: dkim signature problem or spf?

Posts: 6