-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
hey,
I am trying to get spf working and it just doesn't want to take. On my
Tiny/DJB server it was easy. Anyway here is my entry.
$ORIGIN net.
itadmins 14400 IN SOA ns1.itadmins.net.
hostmaster.itadmins.net. (
2012102201 16384 2048 1048576 2560 )
14400 IN A 178.15.51.221
14400 IN MX 10 mail.itadmins.net.
14400 IN NS ns1.itadmins.net.
14400 IN NS ns2.itadmins.net.
14400 IN NS ns3.itadmins.net.
60 IN TXT "v=spf1 a mx -all"
any ideas?
oh and the TTL entry is just for testing. later it will be raised of
course.
:hey,
:
:I am trying to get spf working and it just doesn't want to take. On my
:Tiny/DJB server it was easy. Anyway here is my entry.
:
:$ORIGIN net.
:itadmins 14400 IN SOA ns1.itadmins.net.
:hostmaster.itadmins.net. (
: 2012102201 16384 2048 1048576 2560 )
: 14400 IN A 178.15.51.221
: 14400 IN MX 10 mail.itadmins.net.
: 14400 IN NS ns1.itadmins.net.
: 14400 IN NS ns2.itadmins.net.
: 14400 IN NS ns3.itadmins.net.
: 60 IN TXT "v=spf1 a mx -all"
:
:any ideas?
@ IN TXT "v=spf1 +mx ~all"
This works perfectly for me, and has for many years.
Obvious questions:
- did you bump your SOA?
- do your dns slaves have it?
(ns1 and ns3 seem to have it, but not ns2)
- which server are you testing against?
- negative caching?
It does seem to work for me:
$ dig +short TXT @ns1.itadmins.net itadmins.net
"v=spf1 mx -all"