IPV6: missing entries in the DNS database

[interfasys]

I thought I reported this before, but couldn't find the post...

The spf entry in the DNS database is incomplete when using IPv6.
Only the IPv4 is inserted.

Also, the IPv6 for localhost is missing.

Edit: Solution:
http://directadmin.com/features.php?id=1549

 

[scsi]

Are those entries missing from the template files?

They are in /usr/local/directadmin/data/templates/

The files are preceeded by dns_

 

[interfasys]

Yes, they are.

 

[interfasys]

The DNS templates need a better system than |*if IS_IPV6="yes"|. We need |IP| and |IP6|.

 

[Arieh]

Today I noticed in gmail that it gets my mail delivered through ipv6, as I've got exim listening on it. I noticed in the mail headers that it didn't pass the SPF check. No wonder, since I don't have ipv6 listed in the spf records. Maybe this should indeed be added somehow?

I've added it manually by copying dns_txt.conf to /usr/local/directadmin/data/templates/custom - changing it to

|DOMAIN|.="v=spf1 a mx ip4:|SERVER_IP| ip6:my::ip::v6::address::1 ~all"

Followed by

perl -pi -e 's/\ip4:my.main.ipv4.address/\ip4:my.main.ipv4.address ip6:my::ip::v6::address::1/' *.db

in the bind directory, and at last

echo "action=rewrite&value=named" >> /usr/local/directadmin/data/task.queue
/usr/local/directadmin/dataskq d400

and now it gets a Pass on spf.

On a side note, I think google's spf check also accepts it if you have a aaaa ipv6 record for the mail.domain.tld.

 

[explosive]

2013 and still DA have this issue

IF server (DA) have added IPv6 address then EXIM respond via IPv6 but SPF is only for IPv4

Received-SPF: [B][U]softfail[/U][/B] (google.com: domain of transitioning [email protected] does not designate 2a02:xxxx:yyyy::2 as permitted sender)

after add ip6:2a02:xxxx:yyyy::2 in SPF

Received-SPF: [B][U]pass[/U][/B] (google.com: domain of [email protected] designates 2a02:xxxx:yyyy::2 as permitted sender)

--

So HOW put in the template IP6 address? (as variable)