Domain not found MX records

Hello

My domain haciendalachimba.com has MX records issues
Action: delayed Status: 4.1.8 Remote-MTA: dns; mailus.hikvision.com. (66.171.125.156, the server for the domain hikvision.com.) Diagnostic-Code: smtp; 450 4.1.8 : Sender address rejected: Domain not found Last-Attempt-Date: Thu, 22 Apr 2021 10:10:09 -0700 (PDT)

As well the Cloudfare Panel says Name servers update pending
and this google tool says domain not found

https://toolbox.googleapps.com/apps/dig/#NS/_spf.google.com

All your help is highy appreciadted

Kind Regards

That domain has DNSSEC enabled, which is most likely blocking the name server update. You need to disable DNSSEC at your registrar before changing name servers to Cloudflare.

https://dnsviz.net/d/haciendalachimba.com/dnssec/

3 Likes

Thank you so much for the quick reply . I don’t seem to find that option on my registar
banahosting.com

I ve found this using this tool

The parent zone ‘192.5.6.30’ sent a DS mail, but the daughter zone ‘108.162.194.97’ did not send a DNSKEY mail.

You’ll have to ask your registrar. It clearly has a DS record in the registry for your domain:
https://dnssec-debugger.verisignlabs.com/haciendalachimba.com

Hello

Look at this please
Should I create a new key instead ?

Thank you !!!

Not yet.

@sdayman I do appreciate the feedback

The DNSSEC keys was not enabled on my cloudflare account and is disabled on my registar

DNSSEC

DNSSEC protects against forged DNS answers. DNSSEC protected zones are cryptographically signed to ensure the DNS records received are identical to the DNS records published by the domain owner.

Success! haciendalachimba.com is protected with DNSSEC.

Looks great now!

1 Like

One last question should I import the cloudflare DNSSEC key on my register now ?

I’d say no. It looks good as is.

1 Like

sdayman
You are a great help , pat in the back for you
GRACIAS !!!

1 Like