[Techtalk] spf records stuff

Ben Knowles adric at adric.net
Sat Sep 22 15:15:37 UTC 2007 

Hi,

Hmm, okay that snip looks fine. If you want to generally troubleshoot
your DNS, start with a WHOIS query to see what the nameservers are, then
query them directly and compare this what you get from other
nameservers. I often ask ns2.mindspring.com (207.69.188.186), an old
host from a closed local ISP. There are several websites like
dnstools.com that will help you query dns and whois or you can just do
it from the command line:

lorelei-lee:~/Work adric$ whois shadlen.org | grep -i ns
Name Server:NS1.MYDOMAIN.COM
Name Server:NS2.MYDOMAIN.COM
Name Server:DNS.SHADLEN.ORG

lorelei-lee:~/Work adric$ for isis in NS1.MYDOMAIN.COM NS2.MYDOMAIN.COM
DNS.SHADLEN.ORG; do dig @"$isis" shadlen.org txt | grep TXT; done
;shadlen.org.                   IN      TXT
shadlen.org.            86400   IN      TXT     "'v=spf1
ip4:128.208.108.0/25 ip4:140.142.32.135 ip4:140.142.33.4
ip4:140.142.32.166 ip4:140.142.32.178 ip4:140.142.32.134 ip4:1"
"40.142.33.19 a ~all'"
;shadlen.org.                   IN      TXT
shadlen.org.            86400   IN      TXT     "'v=spf1
ip4:128.208.108.0/25 ip4:140.142.32.135 ip4:140.142.33.4
ip4:140.142.32.166 ip4:140.142.32.178 ip4:140.142.32.134 ip4:1"
"40.142.33.19 a ~all'"

Your dns.shadlen.org did not respond, but the first two have the same
txt you quoted before.

Hmm.. not sure.

hth,
Ben
Maria McKinley wrote:
> Ben Knowles wrote:
>   
>> Hi
>>
>> When I dig your mail domain for txt records, I get this:
>>
>> ;; ANSWER SECTION:
>> shadlen.org.            86400   IN      TXT     "'v=spf1
>> ip4:128.208.108.0/25 ip4:140.142.32.135 ip4:140.142.33.4
>> ip4:140.142.32.166 ip4:140.142.32.178 ip4:140.142.32.134 ip4:1"
>> "40.142.33.19 a ~all'"
>>
>> Is your record broken into multiple strings? It looks like it breaks at
>> the 140.142 addy, and maybe that's the trouble? Other than that the SPF
>> syntax looks okay to me..
>>
>> Perhaps you could post a snippet of your Bind (et alia) zone? If it is
>> bind then you might try named-checkzone, as it can catch syntax errors.
>>
>> hth,
>> Ben
>>     
>
> Not sure if this is what you mean by a snippet of my Bind zone, but here 
> is my syntax from the bind file:
>
> "v=spf1 ip4:128.208.108.0/25 ip4:140.142.32.135
> ip4:140.142.33.4 ip4:140.142.32.166 ip4:140.142.32.178 
> ip4:140.142.32.134 ip4:140.142.33.19 a ~all"
>
> When I copy it into the SPF record checker it comes up valid, and I 
> think if I were having a syntax problem, I would get a different error 
> message. It is more like, there is more than one way to ask my dns 
> server (or to find out where my dns server is?) and it just isn't 
> reading my txt record at all at certain times or for certain purposes.
>
> ~maria
> _______________________________________________
> Techtalk mailing list
> Techtalk at linuxchix.org
> http://mailman.linuxchix.org/mailman/listinfo/techtalk
>

More information about the Techtalk mailing list