I am seeing the below error when a zone is signed without an A record for zone. However there is a an CNAME record for the same top-level domain (zone), could this be causing the below error and why?
dnssec-signzone: error: dns_master_load: :33: zonename: CNAME and other data dnssec-signzone: fatal: failed loading zone from : CNAME and other data On Wednesday, April 11, 2018, 5:56:01 PM EDT, Carl Byington <c...@byington.org> wrote: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 On Wed, 2018-04-11 at 21:06 +0000, praveen via bind-users wrote: > Is an "A" record mandatory entry for top-level domain (zone) when > using DNSSEC, DKIM, SPF and DMARC configuration? No. I have zones with all of that, with no A record at the apex, and have not seen any interoperability problems. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.14 (GNU/Linux) iEYEAREKAAYFAlrOfYMACgkQL6j7milTFsEX3wCdEPzfLvv+AD7ya88VNZg9cfDk OJEAn3mmxOfAeW/AfJeyND5V2LoYj3dO =DF0y -----END PGP SIGNATURE----- _______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
_______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users