I know why TXT records does not work on pdns !

[Spacedust]

http://wiki.powerdns.com/trac/ticket/595

There seems to be 3.2 inside epel repo while we need 3.3.

Here is some newer repo: http://www.monshouwer.eu/download/3rd_p ... l6/x86_64/

[MRatWork]

Powerdns from monshouwer.eu is different named (pdns-server versus pdns) and different directory for config and exe.

I am just no time for compile new version.

[Spacedust]

I'm trying to test it anyway.

[Spacedust]

I know what's the problem !

Your are adding dots at the end domain name in TXT entries. When I remove then all works fine !!!

Without dots:

Code: [Select]

dig @192.168.1.8 private._domainkey.nowosci.org TXT

; <<>> DiG 9.9.3-rpz2+rl.13208.13-P2-RedHat-9.9.3-4.P2.el6 <<>> @192.168.1.8 private._domainkey.nowosci.org TXT
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 42831
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 2800
;; QUESTION SECTION:
;private._domainkey.nowosci.org.        IN      TXT

;; ANSWER SECTION:
private._domainkey.nowosci.org. 86000 IN TXT    "v=DKIM1; g=*; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC+gJh2UdMMHjlJRcssPMe0t4wemhLpewL1SMSJZwMZ/BxBYN+NF9djyaipbJP2fSC1X6az1P/UfUlGb+N/HxbELHC8deoZ2Z4ot1z1OMN6k9rD7QqD+zZVBYtErJC7oREoDrGVVDUpW7C4XbF7otO2BRej+vnK7Q/+eT/LDw4XVQIDAQAB"

;; Query time: 6 msec
;; SERVER: 192.168.1.8#53(192.168.1.8)
;; WHEN: ?ro wrz 25 14:45:57 CEST 2013
;; MSG SIZE  rcvd: 311

With dots:

Code: [Select]

dig @192.168.1.9 private._domainkey.nowosci.org TXT                  
; <<>> DiG 9.9.3-rpz2+rl.13208.13-P2-RedHat-9.9.3-4.P2.el6 <<>> @192.168.1.9 private._domainkey.nowosci.org TXT
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62128
;; flags: qr aa rd; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 2800
;; QUESTION SECTION:
;private._domainkey.nowosci.org.        IN      TXT

;; AUTHORITY SECTION:
nowosci.org.            1800    IN      SOA     ns1.nowosci.org. admin.adminonline.gr. 2013092526 3600 1800 604800 1800

;; Query time: 9 msec
;; SERVER: 192.168.1.9#53(192.168.1.9)
;; WHEN: ?ro wrz 25 14:51:15 CEST 2013
;; MSG SIZE  rcvd: 119


[Spacedust]

Update of pdns is not needed. We just need to remove these dots.

So:

Code: [Select]

_domainkey.nowosci.org.
private._domainkey.nowosci.org.
Would become:

Code: [Select]

_domainkey.nowosci.org
private._domainkey.nowosci.org

[MRatWork]

It;s also for SPF?.

[Spacedust]

It;s also for SPF?.

I will test it. I've contacted CentALT and they've updated pdns in their repo so you don't have to worry about update.

[Spacedust]

Yes. Remove dots from SPF too. Then all works fine

Code: [Select]

[root@nowosci /]# dig @ns1.nowosci.org nowosci.org TXT

; <<>> DiG 9.9.3-rpz2+rl.13208.13-P2-RedHat-9.9.3-4.P2.el6 <<>> @ns1.nowosci.org nowosci.org TXT
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 63733
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 2800
;; QUESTION SECTION:
;nowosci.org.                   IN      TXT

;; ANSWER SECTION:
nowosci.org.            86000   IN      TXT     "v=spf1 a mx  -all"

;; Query time: 5 msec
;; SERVER: 62.21.44.49#53(62.21.44.49)
;; WHEN: ?ro wrz 25 19:15:14 CEST 2013
;; MSG SIZE  rcvd: 70

and

Code: [Select]

[root@nowosci /]# dig @ns1.nowosci.org nowosci.org SPF

; <<>> DiG 9.9.3-rpz2+rl.13208.13-P2-RedHat-9.9.3-4.P2.el6 <<>> @ns1.nowosci.org nowosci.org SPF
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 18099
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 2800
;; QUESTION SECTION:
;nowosci.org.                   IN      SPF

;; ANSWER SECTION:
nowosci.org.            86000   IN      SPF     "v=spf1 a mx  -all"

;; Query time: 3 msec
;; SERVER: 62.21.44.49#53(62.21.44.49)
;; WHEN: ?ro wrz 25 19:16:15 CEST 2013
;; MSG SIZE  rcvd: 70


[Spacedust]

Just change inside /home/pdns/tpl/domains.conf.tpl

Code: [Select]

               case "txt":
                                $key = $o->hostname;
                                $value = $o->param;

                                if ($o->param === null) {
                                        continue;
                                }

                                if ($key !== "__base__") {
                                        $key = "$key.$domainname.";
                                } else {
                                        $key = "$domainname.";
                                }

to

Code: [Select]

               case "txt":
                                $key = $o->hostname;
                                $value = $o->param;

                                if ($o->param === null) {
                                        continue;
                                }

                                if ($key !== "__base__") {
                                        $key = "$key.$domainname";
                                } else {
                                        $key = "$domainname";
                                }

then run /script/fixdns and all will work