Help
FortiADC
FortiADC enhances the scalability, performance, and security of your applications whether they are hosted on premises or in the cloud.
Khidzir_MN
Staff
Staff

Created on ‎02-27-2023 09:28 PM Edited on ‎02-27-2023 09:29 PM By Community Manager

Article Id 247431

Technical Tip: How to setup DNS TXT record with text length that has more than 255 characters

Description This article describes how to set up a DNS TXT record with a text length that has more than 255 characters.
It is maybe necessary to preconfigure other respective DNS setups and refer to the documentation at the end of this article for more information on configuring DNS zone.
Scope FortiADC.
Solution

FortiADC will prompt the below error if the TXT record text length has more than 255 characters.

 

txt_record_error.PNG

 

As an example, the TXT record for smtp._domainkey.example.com as below.

 

V=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAraC3pqvqTkAfXhUn7Kn3JUNMwDkZ65ftwXH58anno/bElnTDAd/idk8kWpslrQIMsvVKAe+mvmBEnpXzJL+0LgTNVTQctUujyilWvcONRd/z37I34y6WUIbFn4ytkzkdoVmeTt32f5LxegfYP4P/w7QGN1mOcnE2Qd5SKIZv3Ia1p9d6uCaVGI8brE/7zM5c/zMthVPE2WZKA28+QomQDH7ludLGhXGxpc7kZZCoB5lQiP0o07Ful33fcED73BS9Bt1SNhnrs5v7oq1pIab0LEtHsFHAZmGJDjybPA7OWWaV3L814r/JfU2NK1eNu9xYJwA8YW7WosL45CSkyp4QeQIDAQAB

 

The TXT record above needs to be separated with two quotes “ “ as below example before it can be use in the FortiADC TXT record. Note that there’s a space between the quotes.

 

v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAraC3pqvqTkAfXhUn7Kn3JUNMwDkZ65ftwXH58anno/bElnTDAd/idk8kWpslrQIMsvVKAe+mvmBEnpXzJL+0LgTNVTQctUujyilWvcONRd/z37I34y6WUIbFn4ytkzkdoVmeTt32f5LxegfYP4P/" "w7QGN1mOcnE2Qd5SKIZv3Ia1p9d6uCaVGI8brE/7zM5c/zMthVPE2WZKA28+QomQDH7ludLGhXGxpc7kZZCoB5lQiP0o07Ful33fcED73BS9Bt1SNhnrs5v7oq1pIab0LEtHsFHAZmGJDjybPA7OWWaV3L814r/JfU2NK1eNu9xYJwA8YW7WosL45CSkyp4QeQIDAQAB


From GUI:

1) Go to the Global Load Balance -> Zone Tools -> Zone (tab) -> <respective zone> to add the record.

2) Under the Zone Records, select Create New and select TXT Record. In the Name option, input smtp._domainkey (example). In the Text option, input the separated TXT record value.

3) Select Save.

 

txt_record_menu.PNG

 

txt_record_main.PNG

 

From CLI:

 

Note that in CLI, additional backslash \ needed before each quotes \" \"

 

# config global-dns-server zone
        edit "fqdn_generate_example.com."
        set type fqdn-generate
        set domain-name example.com.
        config txt-record
            edit 1
                set name smtp._domainkey
                set text "v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAraC3pqvqTkAfXhUn7Kn3JUNMwDkZ65ftwXH58anno/bElnTDAd/idk8kWpslrQIMsvVKAe+mvmBEnpXzJL+0LgTNVTQctUujyilWvcONRd/z37I34y6WUIbFn4ytkzkdoVmeTt32f5LxegfYP4P/\" \"w7QGN1mOcnE2Qd5SKIZv3Ia1p9d6uCaVGI8brE/7zM5c/zMthVPE2WZKA28+QomQDH7ludLGhXGxpc7kZZCoB5lQiP0o07Ful33fcED73BS9Bt1SNhnrs5v7oq1pIab0LEtHsFHAZmGJDjybPA7OWWaV3L814r/JfU2NK1eNu9xYJwA8YW7WosL45CSkyp4QeQIDAQAB"
                next
           end
    end

 

Refer to the below documentation for more information on configuring DNS zone:
https://docs.fortinet.com/document/fortiadc/7.2.0/handbook/436760/configuring-dns-zones

 

 

935
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.