I have a separate DNS, and so disabled webmin/virtualmin DNS via following:
https://forum.virtualmin.com/t/mass-disable-plugin-bind-dns/38064
Used:
virtualmin disable-feature --all-domains –dns
Note, BIND DNS server s installed, but each virtualmin is disabled
Note, on the DKIM in my DNS, I have list the signature a single long list, without the split up “ “ around each section.
So now I have v=DKIM1; k=rsa; t=s; p={very long continuous line}
I test in MXToolbox and it says the DKIM signature is good without all the split up sections, so don’t think its my DNS, I think the issue is a Webmin/Virtualmin setting
Also my DMARC is correct, tested by mxtoolbox
I installed the server with DNS, and only yesterday made the change above, which now shows as correct, so not 2 competing DNS anymore
But maybe a config issue, could be DNS or Postfix or Spamassassin
Rob