Mark A. Moore wrote: > I have setup and configured TSIG on our Bind 9. DNS servers. How can you > verify/test that it is working correctly?
Check your logging: xfer.log:20-Jan-2009 20:06:24.677 xfer-out: info: client 149.20.XX.XX#60073: transfer of '154.XX.XX.in-addr.arpa/IN': AXFR-style IXFR started: TSIG KEYNAME-HERE You can also use the -y option on dig to force your query/transfer from the command line to use TSIG: dig @SERVER -y KEYNAME-HERE:KEYING-MATERIAL ZONE-NAME axfr (and then check your logs) :) AlanC
signature.asc
Description: OpenPGP digital signature
_______________________________________________ bind-users mailing list [email protected] https://lists.isc.org/mailman/listinfo/bind-users
