LukeSmithxyz
commented
10 months ago Just to be clear, supposing they have not set an AAAA record, this will create a blank ip6 entry in the record. Will this fix the problem as well?
Closed tfasano1 closed 10 months ago
LukeSmithxyz
commented
10 months ago Just to be clear, supposing they have not set an AAAA record, this will create a blank ip6 entry in the record. Will this fix the problem as well?
tfasano1
commented
10 months ago Just to be clear, supposing they have not set an AAAA record, this will create a blank ip6 entry in the record. Will this fix the problem as well?
Now that you mention it, it would be blank and that certainly wouldn't fix anything. One other way to go about this is to have the script exit with a helpful warning if it detects you haven't set up your A/AAAA records or other records for that matter. I see it's at the top of the script, but probably best to include in the prereq instructions "Add A and AAAA records with your DNS registrar". I've added some of these record checks in latest commit.
Someone can forget to setup their AAAA record and the script will still appear to work (certbot doesn't need ipv6). This pr adds a safeguard to include ipv4 and ipv6 into the spf record. Martin found by adding it he could send to gmail even without the AAAA record.
I guess what's happening here is some people are not watching the video tutorial so they skip over adding AAAA record since it's not explicitly stated to do so in the text based guides.