At Thu, 25 Apr 2013 13:42:00 -0500,
"C. B." wrote:
> I was wondering if there were any well known (or otherwise) historical
> issues with query performance by an authoriative BIND server answering
> queries for records in a zone it was in the middle of performing an
> AXFR/IXFR on? Particularly i
Hello,
I have a weird issue with a zone configured with auto-dnssec maintain
and inline-signing yes. The zone is maintaned with dynamic updates. If I
add, say, a TXT record, it appears in the signed zone just fine. A
records are ignored. They do appear in the unsigned zone just fine, but
the event
> dnssec-signzone -d /path/to/dsset -K /path/to/keys -3 00 -f
> zone.signed -e +3024000 -j 1800 -o zone.edu -r /dev/urandom -S -T 12h
> /path/to/input
>
> dnssec-signzone: warning: NSEC3 generation requested with no DNSKEY;
> ignoring
> Fetching ZSK 59544/RSASHA256 from key repository.
Hello,
I was wondering if there were any well known (or otherwise) historical
issues with query performance by an authoriative BIND server answering
queries for records in a zone it was in the middle of performing an
AXFR/IXFR on? Particularly in the 9.5.x code branch?
Cheers,
CB
We're upgrading from bind 9.8 to 9.9, and there's a new warning from
dnssec-signzone that's confusing me. We are using a locally developed
mechanism for signing that predates the auto and in-line signing
mechanisms currently available in bind, and run the command like this:
dnssec-signzone -d
5 matches
Mail list logo
