add new multiple domains to sign dkim

September 11, 2014 4.5k views
reshadfar
By:
reshadfar
  • iRedMail version: 0.8.7
  • Store mail accounts in which backend (LDAP/MySQL/PGSQL): MySQL
  • Linux/BSD distribution name and version: Ubuntu 14.04

Hello guys I have got my iredmail up and running. The only thing is when I get to send emails they go to spam in gmail and don't arrive at all in hotmail or outlook.

After testing it says that the dkim is not signed. How can I solve this? I have more than 1 virtual domain.

I tried to generate a new RSA key for my second domain. But in /etc/amavis/
there is no amavisd.conf or anything like that.. But there is the following:

/etc/amavis/conf.d# ls
01-debian 15-contentfiltermode 30-templatelocalization
05-domainid 20-debiandefaults 40-policybanks
05-nodeid 21-ubuntudefaults 50-user
15-avscanners 25-amavishelpers 50-user.2014.09.08.16.08.53

Can someone guide me through this to add the next domain?

2 comments
  • rustx September 11, 2014

    Hi reshadfar,

    For I can help you with your setup, can you show the headers for mail that arrives in gmail as spam ?

    The mail headers can help to know why a mailserver decided to consider your mail as spam.

    Thanks for the information !

    --
    rustx

  • reshadfar September 11, 2014

    Hi rustx see below posts for the email headers.

Log In to Comment
2 Answers
vps September 11, 2014

I am not familiar with iredmail but the config file you edit is the 50-user.

http://www.ijs.si/software/amavisd/amavisd-new-docs.html#dkim has a good info on amavisd and dkim signing.

Reply
  • reshadfar September 11, 2014

    Thanks it is was very useful the new domain gets a bad RSA signature though causing it to fail.

    Could it be possible that the DNS needs time to update?

  • vps September 11, 2014

    Yes it can take some time to update. Double check the txt record with you config. Then check it again.

    You can see what amavis uses by
    amavisd-new showkeys

    Just run
    amavisd-new testkeys

    To check things out.

  • reshadfar September 11, 2014

    Ok so I have added the new key like so

    dkimkey("originaldomain.nl", "dkim", "/var/lib/dkim/originaldomain.nl.pem");
    dkim    key("newdomain.nl", "dkim", "/var/lib/dkim/newdomain.nl.pem"); in the config file.

    I double checked the dkim keys so I have to wait now until it accepts the RSA signature and thats it? and what about the headers are those correct? ( see other post )

  • reshadfar September 11, 2014

    edit

    All the tests passed and I reloaded amavisd but it still says that the mails are not signed with DKIM..

  • vps September 11, 2014

    Since I am not familiar with iredmail not sure I can be much more help. Not sure how it setups config files.

    You can try comparing your setup with http://www.ijs.si/software/amavisd/amavisd-new-docs.html#dkim

    Just make sure you backup your current config in case you break something. Or better yet snapshot the server and bring snapshot up as test server. I can give you examples of my setup config files if needed. They are close to whats in the link above.

reshadfar September 11, 2014

See below I have changed some confidential stuff :) the mail is sent to a gmail account since the hotmail and outlook accounts don't receive mail at all. The mail is send with Laravel so I guess those should be fine..

Delivered-To: email@gmail.com
Received: by 10.112.181.97 with SMTP id dv1csp550274lbc;
Thu, 11 Sep 2014 00:00:40 -0700 (PDT)
X-Received: by 10.180.187.76 with SMTP id fq12mr15922wic.4.1410418840431;
Thu, 11 Sep 2014 00:00:40 -0700 (PDT)
Return-Path: no-reply@domain.nl
Received: from hostname.nl (hostname.nl. [188.226.xxx.xxx])
by mx.google.com with ESMTPS id yw4si15174wjc.94.2014.09.11.00.00.40
for email@gmail.com
(version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
Thu, 11 Sep 2014 00:00:40 -0700 (PDT)
Received-SPF: pass (google.com: domain of no-reply@domain.nl designates 188.226.xxx.xxx as permitted sender) client-ip=188.226.xxx.xxx;
Authentication-Results: mx.google.com;
spf=pass (google.com: domain of no-reply@domain.nl designates 188.226.xxx.xxx as permitted sender) smtp.mail=no-reply@domain.nl
Received: by hostname.nl (Postfix, from userid 33)
id 9A72F20A2F; Thu, 11 Sep 2014 03:00:39 -0400 (EDT)
To: User Name info@domain.nl
Subject: Subscription
X-PHP-Originating-Script: 0:SimpleMailInvoker.php
Message-ID: 44a09f0df9f24b02680e7c180a874ea4@domain.nl
Date: Thu, 11 Sep 2014 07:00:39 +0000
From: Tcr no-reply@domain.nl
Cc: User Name email@gmail.com
MIME-Version: 1.0
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: quoted-printable

Thanks in advance

And see my email test
https://www.mail-tester.com/web-9aA7Ti

Reply
Have another answer? Share your knowledge.