Dkim not updating dns record

ReN

Verified User
Joined
Jul 2, 2005
Messages
186
hey guys as the subject says

the ./dkim_create.sh domain.com is used

its writes the command to

/usr/local/directadmin/data/task.queue

i made sure there was no keys in /etc/virtual/domain.com

the dns record is updating the serial for the domain but there is no

x._domainkey being written to the domains dns record

Any suggestions or ideas would be great.
 

Awd

Verified User
Joined
Aug 9, 2015
Messages
316
What happens if you restart named?
Code:
service named restart
 

ReN

Verified User
Joined
Jul 2, 2005
Messages
186
Named is restarted via the /usr/local/directadmin/data/task.queue after the dkim command is run

but i manually restarted it also to test and nothing is added. to the .db file
 

Awd

Verified User
Joined
Aug 9, 2015
Messages
316
Are you sure you set dkim=1 in directadmin.conf?
 

ReN

Verified User
Joined
Jul 2, 2005
Messages
186
yep , and restarted directadmin and checked dkim=1 was in there for good measure
 

Richard G

Verified User
Joined
Jul 6, 2008
Messages
4,221
Location
Maastricht
Which skin are you using?

And does it only not make die x_domainkey?
Does it make this?
Code:
_domainkey      14400   IN      TXT     "o=~"
 

ReN

Verified User
Joined
Jul 2, 2005
Messages
186
skin = enhanced

and no , nothing is changed or added except the serial
 

Richard G

Verified User
Joined
Jul 6, 2008
Messages
4,221
Location
Maastricht
I presume you're using the latest DA version.

I remember that in some rare cases a blank line is needed at the end.
Can you check this?
Code:
cd /usr/local/directadmin
./directadmin c | grep ^dkim=
If you don't get 1 at the end, then put a blank line at the end of directadmin.conf and restart DA.

If that won't help then I'm out of idea's, maybe a debug output of DA could bring some light on it. Maybe ZeiTeR can be of some help if he reads this.
 

ReN

Verified User
Joined
Jul 2, 2005
Messages
186
yeah , thank you for the ideas Richard, no love there either i'm afraid
 

dave097

Verified User
Joined
May 8, 2014
Messages
113
yeah , thank you for the ideas Richard, no love there either i'm afraid
Do you want to do the following:

Remove DKIM files from /etc/virtual/domain.com
Add new DKIM records with ./dkim_create.sh domain.com
Run this command /usr/local/directadmin/datasql d100
Then again /usr/local/directadmin/datasql d100

Do you get an error message?
 

ReN

Verified User
Joined
Jul 2, 2005
Messages
186
Run this command /usr/local/directadmin/datasql d100

file does not exist
 

ReN

Verified User
Joined
Jul 2, 2005
Messages
186
arhh yes sorry should have relized

in any case

root@server:/etc/httpd/conf/extra # cd /usr/local/directadmin/scripts
root@server:/usr/local/directadmin/scripts # ./dkim_create.sh domain.com
root@server:/usr/local/directadmin/scripts # /usr/local/directadmin/dataskq d100
Debug mode. Level 100

starting queue
dataskq: command: action=rewrite&value=dkim&domain=domain.com&dns=yes
done queue
root@server:/usr/local/directadmin/scripts # /usr/local/directadmin/dataskq d100
Debug mode. Level 100

starting queue
dataskq: command: action=named&value=reload
done queue
root@server:/usr/local/directadmin/scripts # /usr/local/directadmin/dataskq d100
Debug mode. Level 100

starting queue
done queue

so basically that where i started
the task queue is there and runs fine , the dkim entry just doesn't get written to the dns .db file
 

Richard G

Verified User
Joined
Jul 6, 2008
Messages
4,221
Location
Maastricht
Does the file /etc/exim.dkim.conf exist?

Do you have a /etc/virtual/domain.com/dkim.private.key for the domain you tested with?

And which version of Exim are you using, which version exim.conf are you using and which version exim.pl are you using?
 
Last edited:

ReN

Verified User
Joined
Jul 2, 2005
Messages
186
Yes /etc/exim.dkim.conf exists

yes the files are being written to /etc/virtual/domain.com

root@server:/usr/local # exim -bV
Exim version 4.91 #2 built 11-May-2018 01:07:46

SpamBlockerTechnology* powered exim.conf, Version 4.5.9

#!/usr/bin/perl
#VERSION=24
 

Richard G

Verified User
Joined
Jul 6, 2008
Messages
4,221
Location
Maastricht
That's all the best and newest. So it's pure an issue with only the DNS records not being made. The exim entry's are ok.
I presume you skipped step 2 the install guide, as the newer spamblocker exim.conf files already have this change in place by default, so you don't have it twice. I don't know if that could cause trouble though.

ZeiTeRrrrrrrrrrrr.... shed some light please.:)

Or you can put in a ticket too at tickets.directadmin.com if you want.
I'm very curious what's causing this now.
 

zEitEr

Super Moderator
Joined
Apr 11, 2005
Messages
13,902
Location
GMT +7.00
Hello,

If DNS zones are not updated with DKIM keys, then directadmin is not configured in a proper way.

So I would still like to see output of (copy and paste here what you get when you run the commands):

Code:
/usr/local/directadmin/directadmin c | grep ^dkim=

It might be directadmin.conf was updated without a final empty line or line-break.

Then I'd see /var/named/ content (feel free to mask domains, other data is important):

Code:
ls -la /var/named/*.db
and (feel free to mask domains, other data is important):


Code:
lsattr /var/named/*.db
 

ReN

Verified User
Joined
Jul 2, 2005
Messages
186
Thank Zeiter

sorry the server is FreeBSD

so output is as follows

root@server:/usr/home/ren # /usr/local/directadmin/directadmin c | grep ^dkim=
dkim=1

empty line is at the bottom on the file

root@server:/etc/namedb # ls -la /etc/namedb/*.db
-rw-r--r-- 1 bind bind 1343 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1108 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1108 Jun 9 10:59 /etc/namedb/xxxxx.net.au.db
-rw-r--r-- 1 bind bind 776 Aug 15 2016 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1087 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1224 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1129 Jun 12 22:04 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1003 Jun 9 10:59 /etc/namedb/xxxxx.net.au.db
-rw-r--r-- 1 bind bind 778 Aug 15 2016 /etc/namedb/xxxxx.net.db
-rw-r--r-- 1 bind bind 948 Aug 15 2016 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 818 Aug 15 2016 /etc/namedb/xxxxx.au.db
-rw-r--r-- 1 bind bind 1159 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 818 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1149 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1066 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1099 Jun 9 10:59 /etc/namedb/xxxxx.net.au.db
-rw-r--r-- 1 bind bind 1212 Apr 26 02:14 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1219 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1239 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1209 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1219 Jun 9 10:59 /etc/namedb/xxxxx.info.db
-rw-r--r-- 1 bind bind 1239 Jun 9 10:59 /etc/namedb/xxxxx.org.au.db
-rw-r--r-- 1 bind bind 1209 Jun 9 10:59 /etc/namedb/xxxxx.org.db
-rw-r--r-- 1 bind bind 1182 Jun 9 10:59 /etc/namedb/xxxxx.net.au.db
-rw-r--r-- 1 bind bind 1038 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1010 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1089 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1149 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1147 Jun 9 10:59 /etc/namedb/xxxxx.institute.db
-rw-r--r-- 1 bind bind 1066 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1066 Jun 9 10:59 /etc/namedb/xxxxx.net.au.db
-rw-r--r-- 1 bind bind 1160 Jun 9 10:59 /etc/namedb/xxxxx.xyz.db
-rw-r--r-- 1 bind bind 1139 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1179 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1038 Jun 9 10:59 /etc/namedb/xxxxx.net.au.db
-rw-r--r-- 1 bind bind 1179 Jun 9 10:59 /etc/namedb/xxxxx.net.db
-rw-r--r-- 1 bind bind 1079 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 812 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1002 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 989 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 876 Aug 15 2016 /etc/namedb/xxxxx.org.au.db
-rw-r--r-- 1 bind bind 1169 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 848 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 824 Aug 15 2016 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1119 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1116 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1209 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1169 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1289 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 782 Aug 15 2016 /etc/namedb/xxxxx.net.au.db
-rw-r--r-- 1 bind bind 1119 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1129 Jun 9 10:59 /etc/namedb/xxxxx.org.db
-rw-r--r-- 1 bind bind 956 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1109 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1149 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1160 Jun 9 10:59 /etc/namedb/xxxxx.org.db
-rw-r--r-- 1 bind bind 1089 Jun 9 10:59 /etc/namedb/xxxxx.net.db
-rw-r--r-- 1 bind bind 1215 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1172 Apr 26 02:14 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1038 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1281 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1069 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1039 Jun 9 10:59 /etc/namedb/xxxxx.net.db
-rw-r--r-- 1 bind bind 1465 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1067 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 976 Jun 9 10:59 /etc/namedb/xxxxx.org.db
-rw-r--r-- 1 bind bind 1361 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1199 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 770 Aug 15 2016 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1139 Jun 9 10:59 /etc/namedb/xxxxx.net.au.db
-rw-r--r-- 1 bind bind 1129 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 836 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 846 Aug 15 2016 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1149 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1196 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1119 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1179 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1099 Jun 9 10:59 /etc/namedb/xxxxx.net.db
-rw-r--r-- 1 bind bind 1169 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 836 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1099 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 950 Apr 26 02:14 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1109 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1731 Jun 9 10:59 /etc/namedb/xxxxx.media.db
-rw-r--r-- 1 bind bind 818 Aug 15 2016 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 818 Aug 15 2016 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1263 Jun 9 10:59 /etc/namedb/xxxxx.xyz.db
-rw-r--r-- 1 bind bind 1203 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1141 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 794 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1226 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1049 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1099 Jun 9 10:59 /etc/namedb/xxxxx.us.db
-rw-r--r-- 1 bind bind 1169 Jun 9 10:59 /etc/namedb/xxxxx.biz.db
-rw-r--r-- 1 bind bind 1199 Jun 9 10:59 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1039 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 850 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 997 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1129 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1147 Jun 9 10:59 /etc/namedb/xxxxx.com.db
-rw-r--r-- 1 bind bind 1223 Jun 9 10:59 /etc/namedb/xxxxx.net.db
-rw-r--r-- 1 bind bind 806 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 818 Aug 15 2016 /etc/namedb/xxxxx.com.au.db
-rw-r--r-- 1 bind bind 1129 Jun 9 10:59 /etc/namedb/xxxxx.com.db

not sure what the final command you wanted was
 

zEitEr

Super Moderator
Joined
Apr 11, 2005
Messages
13,902
Location
GMT +7.00
What do you have under /usr/local/directadmin/scripts/custom?

Code:
ls -la /usr/local/directadmin/scripts/custom
I see the most files have last modified date Jun 9, and only one Jun 12. According to your posts, I'd expect it to be Jun 13. Does the last modification date get updated when you try and install DKIM keys for domains?

Does the OS version in DA license match your actual version of FreeBSD?
What is the version?

What do you have as a result for
Code:
[/COLOR]/usr/local/directadmin/directadmin  c | grep named
?

What named version you have?

What errors you have from named in system logs?
 

ReN

Verified User
Joined
Jul 2, 2005
Messages
186
here is the info Zeiter ty for your asistance on this

root@server:/etc/namedb # ls -la /usr/local/directadmin/scripts/custom
total 12
drwx------ 2 diradmin diradmin 512 Mar 23 05:04 .
drwx--x--x 4 diradmin diradmin 2048 Jun 12 11:39 ..
-rwx------ 1 diradmin diradmin 6295 Mar 23 05:04 README
root@server:/etc/namedb # /usr/local/directadmin/directadmin c | grep named
named_checkzone=0
named_checkzone_level=fail
named_rename_hostname_zone=1
namedconfig=/etc/namedb/named.conf
nameddir=/etc/namedb
root@server:/etc/namedb # named -v
BIND 9.11.3 (Extended Support Version) <id:a375815>

Yes the .db records are getting updated to the correct date, serial is even being adjusted

no the exact version isn't in the current license , sent a support request before

as far as i can see , no errors in the system or bind log
 
Last edited:
Top