; the use of V4NET and V6NET. These networks should be such that no real
; host ever uses them.
+; really short neg-cache interval, for testing NXDOMAIN caching
+example.com. SOA exim.test.ex. hostmaster.exim.test.ex 1430683638 1200 120 604800 2
+
example.com. NS exim.example.com.
+; The real example.com has an SPF record; duplicate that here
+
+example.com. TXT v=spf1 -all
+
+double TXT v=spf1 include:_spf.google.com ~all
+ TXT v=spf1 +a +mx -all
+
+doubleplus TXT v=spf1 include:_spf.google.com ~all
+ TXT google-site-verification=q-4MSVLjluQIsBztu5jzJBxAcJXzNcHAk0jHTZEamB8
+ TXT v=spf1 +a +mx -all
+
+uppercase TXT v=sPf1 +all
+passme.helo TXT v=spf1 +all
+
; Alias A record for the local host, under the name "server1"
-server1 A HOSTIPV4
+server1 A HOSTIPV4
+serverbadname A HOSTIPV4
+serverchain1 CNAME server1
+alternatename.server1 CNAME server1
; DANE testing
;
;
DNSSEC danebroken7 A 127.0.0.1
-DNSSEC _1225._tcp.danebroken7 TLSA 2 0 1 3110db5e73708d6fc3ffed8dcd1eef2bcd3c35d8da86ed048a332cb9d9538a0f
+DNSSEC _1225._tcp.danebroken7 TLSA 2 0 1 7b7f27746dafe59e5b419ee4c5ea97f04fcf100f65567d92b1b91f88cf199055
; the same, EE-mode
;
; | openssl pkey -pubin -outform DER | openssl dgst -sha256 | awk '{print $2}'
;
DNSSEC danebroken8 A 127.0.0.1
-DNSSEC _1225._tcp.danebroken8 TLSA 3 1 1 5384398f502c423736dcc42295808f7a84769eb96d009816fa077e00bebc768e
+DNSSEC _1225._tcp.danebroken8 TLSA 3 1 1 403071b52f61ba0ab13013b68a97b08325ce8d5e13ba6b6b6f42c2da89ed1b21
; End