Author Topic: My nameservers are missing TrustedHosts and KeyTable - Is this normal?  (Read 4134 times)

0 Members and 1 Guest are viewing this topic.

Offline
*
hi

My 2 nameservers which are run on my CWP server are eg:

  • ns1.mydomain.com
  • ns2.mydomain.com

I have DKIM and SPF enables and running and all my other domains including the hostname for the server have all green ticks in the DKIM & SPF Manager.

I looked in the following files/locations and found no reference to the nameserver domains

  • TruestedHosts File Location: /etc/opendkim/TrustedHosts
  • SigningTable File Location: /etc/opendkim/SigningTable
  • KeyTable File Location: /etc/opendkim/KeyTable
  • User Keys Files Location: /etc/opendkim/userkeys/

The Domains shown in the DKIM & SPF manager for the nameservers do not have entries for the following but still show as green
  • v=DKIM1
  • v=spf1


So my questions are:
  • Is this normal?
  • Is this a bug or should i report a feature request to get the nameserver scripts add these records in
  • Can I add these in manually for the time being and is there any instructions out there on how to generate the keys? Add the entries should be easy to do manually unless there is a script that does it all


Offline
*
Re: My nameservers are missing TrustedHosts and KeyTable - Is this normal?
« Reply #1 on: December 28, 2021, 01:46:14 PM »
you need to have dkim i opnedkim configuration and the same on your dns zone on the domain nameservers.
Meaning that if you don't use cwp for name servers then you need to manually copy it to your nameservers.

Note: this info is only if you send emails from your cwp server.
VPS & Dedicated server provider with included FREE Managed support for CWP.
http://www.studio4host.com/

*** Don't allow that your server or website is down, choose hosting provider with included expert managed support for your CWP.

Offline
*
Re: My nameservers are missing TrustedHosts and KeyTable - Is this normal?
« Reply #2 on: December 28, 2021, 01:58:29 PM »
I am not what your instructions above mean :(

I am using CWP as my name servers.

I am sending emails from my server.

These are example domains I am using (obviously) but both ns1 and ns2 resolve to my CWP servers real IP address. 31.x.x.x

The keys and records for DKIM are never created for ns1.mydomain.com or ns2.mydomain.com

The DNS zones are also not updated  with SPK/DKIM even though the Dkim & SPF mananger say they have been with green ticks.

Is this intentional because the nameservers are assumed to never send emails?

Offline
***
Re: My nameservers are missing TrustedHosts and KeyTable - Is this normal?
« Reply #3 on: December 29, 2021, 01:55:48 PM »
In my dkim manager I have 1 domain that has RED for trusted host.  The other 20 domains are GREEN.  Cert is ok.

Why is only 1 domain not trusted.
Listen to everything Pixelpadre says.

Offline
*
Re: My nameservers are missing TrustedHosts and KeyTable - Is this normal?
« Reply #4 on: January 02, 2022, 09:56:23 AM »
@namaste

Just a thought, can you re-apply the DKIM for the untrusted domain using:

Email --> DKIM Manager --> Add DKIM & SPF --> Add DKIM