Dkim not updating dns record

ReN

Verified User
Joined
Jul 2, 2005
Messages
202
hey guys as the subject says

the ./dkim_create.sh domain.com is used

its writes the command to

/usr/local/directadmin/data/task.queue

i made sure there was no keys in /etc/virtual/domain.com

the dns record is updating the serial for the domain but there is no

x._domainkey being written to the domains dns record

Any suggestions or ideas would be great.
 
What happens if you restart named?
Code:
service named restart
 
Named is restarted via the /usr/local/directadmin/data/task.queue after the dkim command is run

but i manually restarted it also to test and nothing is added. to the .db file
 
Are you sure you set dkim=1 in directadmin.conf?
 
yep , and restarted directadmin and checked dkim=1 was in there for good measure
 
Which skin are you using?

And does it only not make die x_domainkey?
Does it make this?
Code:
_domainkey      14400   IN      TXT     "o=~"
 
skin = enhanced

and no , nothing is changed or added except the serial
 
I presume you're using the latest DA version.

I remember that in some rare cases a blank line is needed at the end.
Can you check this?
Code:
cd /usr/local/directadmin
./directadmin c | grep ^dkim=

If you don't get 1 at the end, then put a blank line at the end of directadmin.conf and restart DA.

If that won't help then I'm out of idea's, maybe a debug output of DA could bring some light on it. Maybe ZeiTeR can be of some help if he reads this.
 
yeah , thank you for the ideas Richard, no love there either i'm afraid
 
yeah , thank you for the ideas Richard, no love there either i'm afraid

Do you want to do the following:

Remove DKIM files from /etc/virtual/domain.com
Add new DKIM records with ./dkim_create.sh domain.com
Run this command /usr/local/directadmin/datasql d100
Then again /usr/local/directadmin/datasql d100

Do you get an error message?
 
Run this command /usr/local/directadmin/datasql d100

file does not exist
 
arhh yes sorry should have relized

in any case

root@server:/etc/httpd/conf/extra # cd /usr/local/directadmin/scripts
root@server:/usr/local/directadmin/scripts # ./dkim_create.sh domain.com
root@server:/usr/local/directadmin/scripts # /usr/local/directadmin/dataskq d100
Debug mode. Level 100

starting queue
dataskq: command: action=rewrite&value=dkim&domain=domain.com&dns=yes
done queue
root@server:/usr/local/directadmin/scripts # /usr/local/directadmin/dataskq d100
Debug mode. Level 100

starting queue
dataskq: command: action=named&value=reload
done queue
root@server:/usr/local/directadmin/scripts # /usr/local/directadmin/dataskq d100
Debug mode. Level 100

starting queue
done queue

so basically that where i started
the task queue is there and runs fine , the dkim entry just doesn't get written to the dns .db file
 
Does the file /etc/exim.dkim.conf exist?

Do you have a /etc/virtual/domain.com/dkim.private.key for the domain you tested with?

And which version of Exim are you using, which version exim.conf are you using and which version exim.pl are you using?
 
Last edited:
Yes /etc/exim.dkim.conf exists

yes the files are being written to /etc/virtual/domain.com

root@server:/usr/local # exim -bV
Exim version 4.91 #2 built 11-May-2018 01:07:46

SpamBlockerTechnology* powered exim.conf, Version 4.5.9

#!/usr/bin/perl
#VERSION=24
 
That's all the best and newest. So it's pure an issue with only the DNS records not being made. The exim entry's are ok.
I presume you skipped step 2 the install guide, as the newer spamblocker exim.conf files already have this change in place by default, so you don't have it twice. I don't know if that could cause trouble though.

ZeiTeRrrrrrrrrrrr.... shed some light please.:)

Or you can put in a ticket too at tickets.directadmin.com if you want.
I'm very curious what's causing this now.
 
Hello,

If DNS zones are not updated with DKIM keys, then directadmin is not configured in a proper way.

So I would still like to see output of (copy and paste here what you get when you run the commands):

Code:
/usr/local/directadmin/directadmin c | grep ^dkim=


It might be directadmin.conf was updated without a final empty line or line-break.

Then I'd see /var/named/ content (feel free to mask domains, other data is important):

Code:
ls -la /var/named/*.db

and (feel free to mask domains, other data is important):


Code:
lsattr /var/named/*.db
 
Thank Zeiter

sorry the server is FreeBSD

so output is as follows

root@server:/usr/home/ren # /usr/local/directadmin/directadmin c | grep ^dkim=
dkim=1

empty line is at the bottom on the file

root@server:/etc/namedb # ls -la /etc/namedb/*.db
-rw-r--r-- 1 bind bind 1343 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1108 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1108 Jun 9 10:59 /etc/namedb/xxxxx.net.au.db
-rw-r--r-- 1 bind bind 776 Aug 15 2016 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1087 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1224 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1129 Jun 12 22:04 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1003 Jun 9 10:59 /etc/namedb/xxxxx.net.au.db
-rw-r--r-- 1 bind bind 778 Aug 15 2016 /etc/namedb/xxxxx.net.db
-rw-r--r-- 1 bind bind 948 Aug 15 2016 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 818 Aug 15 2016 /etc/namedb/xxxxx.au.db
-rw-r--r-- 1 bind bind 1159 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 818 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1149 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1066 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1099 Jun 9 10:59 /etc/namedb/xxxxx.net.au.db
-rw-r--r-- 1 bind bind 1212 Apr 26 02:14 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1219 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1239 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1209 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1219 Jun 9 10:59 /etc/namedb/xxxxx.info.db
-rw-r--r-- 1 bind bind 1239 Jun 9 10:59 /etc/namedb/xxxxx.org.au.db
-rw-r--r-- 1 bind bind 1209 Jun 9 10:59 /etc/namedb/xxxxx.org.db
-rw-r--r-- 1 bind bind 1182 Jun 9 10:59 /etc/namedb/xxxxx.net.au.db
-rw-r--r-- 1 bind bind 1038 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1010 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1089 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1149 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1147 Jun 9 10:59 /etc/namedb/xxxxx.institute.db
-rw-r--r-- 1 bind bind 1066 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1066 Jun 9 10:59 /etc/namedb/xxxxx.net.au.db
-rw-r--r-- 1 bind bind 1160 Jun 9 10:59 /etc/namedb/xxxxx.xyz.db
-rw-r--r-- 1 bind bind 1139 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1179 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1038 Jun 9 10:59 /etc/namedb/xxxxx.net.au.db
-rw-r--r-- 1 bind bind 1179 Jun 9 10:59 /etc/namedb/xxxxx.net.db
-rw-r--r-- 1 bind bind 1079 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 812 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1002 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 989 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 876 Aug 15 2016 /etc/namedb/xxxxx.org.au.db
-rw-r--r-- 1 bind bind 1169 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 848 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 824 Aug 15 2016 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1119 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1116 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1209 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1169 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1289 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 782 Aug 15 2016 /etc/namedb/xxxxx.net.au.db
-rw-r--r-- 1 bind bind 1119 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1129 Jun 9 10:59 /etc/namedb/xxxxx.org.db
-rw-r--r-- 1 bind bind 956 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1109 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1149 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1160 Jun 9 10:59 /etc/namedb/xxxxx.org.db
-rw-r--r-- 1 bind bind 1089 Jun 9 10:59 /etc/namedb/xxxxx.net.db
-rw-r--r-- 1 bind bind 1215 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1172 Apr 26 02:14 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1038 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1281 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1069 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1039 Jun 9 10:59 /etc/namedb/xxxxx.net.db
-rw-r--r-- 1 bind bind 1465 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1067 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 976 Jun 9 10:59 /etc/namedb/xxxxx.org.db
-rw-r--r-- 1 bind bind 1361 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1199 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 770 Aug 15 2016 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1139 Jun 9 10:59 /etc/namedb/xxxxx.net.au.db
-rw-r--r-- 1 bind bind 1129 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 836 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 846 Aug 15 2016 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1149 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1196 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1119 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1179 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1099 Jun 9 10:59 /etc/namedb/xxxxx.net.db
-rw-r--r-- 1 bind bind 1169 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 836 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1099 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 950 Apr 26 02:14 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1109 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1731 Jun 9 10:59 /etc/namedb/xxxxx.media.db
-rw-r--r-- 1 bind bind 818 Aug 15 2016 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 818 Aug 15 2016 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1263 Jun 9 10:59 /etc/namedb/xxxxx.xyz.db
-rw-r--r-- 1 bind bind 1203 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1141 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 794 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1226 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1049 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1099 Jun 9 10:59 /etc/namedb/xxxxx.us.db
-rw-r--r-- 1 bind bind 1169 Jun 9 10:59 /etc/namedb/xxxxx.biz.db
-rw-r--r-- 1 bind bind 1199 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1039 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 850 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 997 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1129 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1147 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1223 Jun 9 10:59 /etc/namedb/xxxxx.net.db
-rw-r--r-- 1 bind bind 806 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 818 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1129 Jun 9 10:59 /etc/namedb/xxxxx.com.db

not sure what the final command you wanted was
 
What do you have under /usr/local/directadmin/scripts/custom?

Code:
ls -la /usr/local/directadmin/scripts/custom

I see the most files have last modified date Jun 9, and only one Jun 12. According to your posts, I'd expect it to be Jun 13. Does the last modification date get updated when you try and install DKIM keys for domains?

Does the OS version in DA license match your actual version of FreeBSD?
What is the version?

What do you have as a result for
Code:
[/COLOR]/usr/local/directadmin/directadmin  c | grep named
?

What named version you have?

What errors you have from named in system logs?
 
here is the info Zeiter ty for your asistance on this

root@server:/etc/namedb # ls -la /usr/local/directadmin/scripts/custom
total 12
drwx------ 2 diradmin diradmin 512 Mar 23 05:04 .
drwx--x--x 4 diradmin diradmin 2048 Jun 12 11:39 ..
-rwx------ 1 diradmin diradmin 6295 Mar 23 05:04 README
root@server:/etc/namedb # /usr/local/directadmin/directadmin c | grep named
named_checkzone=0
named_checkzone_level=fail
named_rename_hostname_zone=1
namedconfig=/etc/namedb/named.conf
nameddir=/etc/namedb
root@server:/etc/namedb # named -v
BIND 9.11.3 (Extended Support Version) <id:a375815>

Yes the .db records are getting updated to the correct date, serial is even being adjusted

no the exact version isn't in the current license , sent a support request before

as far as i can see , no errors in the system or bind log
 
Last edited:
Back
Top