Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsIT Pro and developersDKIM using Cloudflare DNS

xpd



Chief Trash Bandit
10092 posts

Uber Geek

Mod Emeritus
Trusted
Lifetime subscriber

# 260019 6-Nov-2019 21:26
Send private message quote this post

Trying to setup DKIM for my domain but hitting issue. DNS is via Cloudflare.

 

Following the info here - https://www.hmailserver.com/forum/viewtopic.php?t=29402

 

But Im getting an error 1004 from Cloudflare when trying to save the TXT record

 

Lets say this is what Im entering...

 

Type : TXT Record

 

Name : dkim._domainkey.xpd.co.nz 

 

v=DKIM1; t=s; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8nxXPJLVrZycHRDJgL1l/Euut3yPAGHS8CIqMUrwn7PmNoNUEYsoMkiBfRTXLTCpzU2+BceZ9CFyR9N3mJhndvgg6e6JBuVBYyqofAmfDqbuHz7FqF3H6bTdR5l9/5AQM3XFJeerzOO8cPY3VwYnhfUFswCU/suTcTK0+uMV1ewIDAQAB

 

Gives me a 1004 error - Validation error. 

 

If I remove the key, it saves fine. 

 

What am I missing ??

 

Ive seen people say to use CNAME, DNSKEY, use quotes, dont use quotes etc etc.....

 

 




XPD / Gavin / DemiseNZ

 

Server : i5-3470s @ 3.50GHz  16GB RAM  Win 10 Pro    Workstation : i5-3570K @ 3.40GHz  20GB RAM  RX580 4GB Win 10 Pro    Console : Xbox One

 

https://www.xpd.co.nz - Games, emulation, geekery, and my attempts at photography.     Now on BigPipe 100/100 and 2Talk

 

http://storm.xpd.co.nz - NZ Rock at its finest (WIP)

 

Add me on Steam

Create new topic
BDFL - Memuneh
64803 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 2349116 6-Nov-2019 21:40
Send private message quote this post

The type is TXT. The name is dkim._domainkey only. The value is without quotes.




Sharesies investment funds | Geekzone broadband switch | Backblaze backup (Geekzone aff) | Amazon (Geekzone aff) | MightyApe (Geekzone aff)

 

My technology disclosure | Digital Transformation | Enterprise Content Management | Customer Relationship Management | Data Insights, Business Intelligence and Advanced Analytics 

 

 

xpd



Chief Trash Bandit
10092 posts

Uber Geek

Mod Emeritus
Trusted
Lifetime subscriber

  # 2349117 6-Nov-2019 21:46
Send private message quote this post

freitasm:

 

The type is TXT. The name is dkim._domainkey only. The value is without quotes.

 

 

Yup, doing that, but still errors on me.  :-/

 

Its gonna be something really simple but for life of me I cant see it :)

 

 




XPD / Gavin / DemiseNZ

 

Server : i5-3470s @ 3.50GHz  16GB RAM  Win 10 Pro    Workstation : i5-3570K @ 3.40GHz  20GB RAM  RX580 4GB Win 10 Pro    Console : Xbox One

 

https://www.xpd.co.nz - Games, emulation, geekery, and my attempts at photography.     Now on BigPipe 100/100 and 2Talk

 

http://storm.xpd.co.nz - NZ Rock at its finest (WIP)

 

Add me on Steam

 
 
 
 


BDFL - Memuneh
64803 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 2349119 6-Nov-2019 21:49
Send private message quote this post

It is a TXT record. Contact their support...




Sharesies investment funds | Geekzone broadband switch | Backblaze backup (Geekzone aff) | Amazon (Geekzone aff) | MightyApe (Geekzone aff)

 

My technology disclosure | Digital Transformation | Enterprise Content Management | Customer Relationship Management | Data Insights, Business Intelligence and Advanced Analytics 

 

 

22603 posts

Uber Geek

Trusted
Subscriber

  # 2349122 6-Nov-2019 21:54
Send private message quote this post

If you are copypastaing the record, put it into notepad or something first. I have had a problem in the past where there was some invisible crap in the middle that was not showing till it went into notepad and came up as a square for a missing character.




Richard rich.ms

926 posts

Ultimate Geek

Trusted

  # 2349123 6-Nov-2019 21:54
Send private message quote this post

xpd:

 

freitasm:

 

The type is TXT. The name is dkim._domainkey only. The value is without quotes.

 

 

Yup, doing that, but still errors on me.  :-/

 

Its gonna be something really simple but for life of me I cant see it :)

 

 

 

 

Not sure if this helps but I just checked my DKIM records and they are set to 'default._domainkey' instead of 'dkim._domainkey'.

 

 

defiant
1034 posts

Uber Geek

Lifetime subscriber

  # 2349124 6-Nov-2019 21:57
Send private message quote this post

Have you setup the hmailserver component as well? 

 

Cloudflare might be trying to validate the keys

 

Edit: Or it might be a cloudflare issue with the new GUI https://community.cloudflare.com/t/dns-validation-error-code-1004-when-trying-to-add-dkim/104396/5 and https://community.cloudflare.com/t/adding-the-dkim-key-to-dns-record/105815

BDFL - Memuneh
64803 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 2349125 6-Nov-2019 21:58
Send private message quote this post

The bit before _domainkey is the selector - it can be anything providing it corresponds to something your server is generating, so it will likely not be the problem. In my case I have three different records:

 

selector1._domainkey
selector2._domainkey
dec2013._domainkey

 

The first two were generated by Office 365. The last one is a key I've created on my own SMTP server (which is barely used these days - gosh, started using DKIM six years ago!)




Sharesies investment funds | Geekzone broadband switch | Backblaze backup (Geekzone aff) | Amazon (Geekzone aff) | MightyApe (Geekzone aff)

 

My technology disclosure | Digital Transformation | Enterprise Content Management | Customer Relationship Management | Data Insights, Business Intelligence and Advanced Analytics 

 

 

 
 
 
 


xpd



Chief Trash Bandit
10092 posts

Uber Geek

Mod Emeritus
Trusted
Lifetime subscriber

  # 2349136 6-Nov-2019 22:28
Send private message quote this post

Right, managed to get CF to accept it..... now when testing though, I'm getting "key not in DNS" as a DKIM failure in the headers of the test emails.

 

Yet I can check my DNS records from various servers and they see it......

 

 




XPD / Gavin / DemiseNZ

 

Server : i5-3470s @ 3.50GHz  16GB RAM  Win 10 Pro    Workstation : i5-3570K @ 3.40GHz  20GB RAM  RX580 4GB Win 10 Pro    Console : Xbox One

 

https://www.xpd.co.nz - Games, emulation, geekery, and my attempts at photography.     Now on BigPipe 100/100 and 2Talk

 

http://storm.xpd.co.nz - NZ Rock at its finest (WIP)

 

Add me on Steam

707 posts

Ultimate Geek

Trusted

  # 2350838 9-Nov-2019 20:32
Send private message quote this post

https://www.dmarcanalyzer.com/dkim/dkim-check/ might be useful?




No signature to see here, move along...

Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Microsoft launches first Experience Center worldwide for Asia Pacific in Singapore
Posted 13-Nov-2019 13:08

Disney+ comes to LG Smart TVs
Posted 13-Nov-2019 12:55

Spark launches new wireless broadband "Unplan Metro"
Posted 11-Nov-2019 08:19

Malwarebytes overhauls flagship product with new UI, faster engine and lighter footprint
Posted 6-Nov-2019 11:48

CarbonClick launches into Digital Marketplaces
Posted 6-Nov-2019 11:42

Kordia offers Microsoft Azure Peering Service
Posted 6-Nov-2019 11:41

Spark 5G live on Auckland Harbour for Emirates Team New Zealand
Posted 4-Nov-2019 17:30

BNZ and Vodafone partner to boost NZ Tech for SME
Posted 31-Oct-2019 17:14

Nokia 7.2 available in New Zealand
Posted 31-Oct-2019 16:24

2talk launches Microsoft Teams Direct Routing product
Posted 29-Oct-2019 10:35

New Breast Cancer Foundation app puts power in Kiwi women's hands
Posted 25-Oct-2019 16:13

OPPO Reno2 Series lands, alongside hybrid noise-cancelling Wireless Headphones
Posted 24-Oct-2019 15:32

Waikato Data Scientists awarded $13 million from the Government
Posted 24-Oct-2019 15:27

D-Link launches Wave 2 Unified Access Points
Posted 24-Oct-2019 15:07

LG Electronics begins distributing the G8X THINQ
Posted 24-Oct-2019 10:58


Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.