bind slave errors....
RB
rbaki2002 at yahoo.com
Tue Sep 20 13:31:29 UTC 2005
I'm building a 9.2.2 slave DNS server (RH ES 3.0) for an internal TEST upgrade network. I cannot seem to get the slave talking to the master. The syslog and named error file are completely clean. The only error message I'm seeing is the following when I run named-checkconf
named-checkconf -t /chroot/named
/etc/Kserver1-server2.+157+16451.key:1: unknown option 'server1-server2.'
The following are the config files. Can anyone provide insight as to what is erring out?
Thanks in advance...
# Start of rndc.conf
options {
default-key "rndc-key";
default-server 127.0.0.1;
default-port 953;
};
server localhost {
key "rndc-key";
};
# End of rndc.conf
# start of rndc.key
key "rndc-key" {
algorithm hmac-md5;
secret "stcVO8LLN6c7kx73XbcCJg==";
};
# End of rndc.key
>more Kserver1-server2.+157+16451.key
server1-server2. IN KEY 512 3 157 stcVO8LLN6c7kx73XbcCJg==
>more Kserver1-server2.+157+16451.private
Private-key-format: v1.2
Algorithm: 157 (HMAC_MD5)
Key: stcVO8LLN6c7kx73XbcCJg==
# Start of named.conf
// generated by named-bootconf.pl
options {
directory "/etc/namedb";
pid-file "/var/run/named.pid";
statistics-file "/var/run/named.stats";
version "[secured]";
allow-query { any; };
recursion no;
blackhole { bad-nets; };
};
controls {
inet 127.0.0.1 port 953
allow { localhost; } keys { "rndc-key"; };
inet 10.10.0.166 allow { localhost;
10.10.0.165;
} keys { "rndc-key"; };
};
acl bad-nets {0.0.0.0/8; 1.0.0.0/8; 2.0.0.0/8; 192.0.2.0/24; 224.0.0.0/3; 10.0.0
.0/8; 172.16.0.0/16; };
zone "." IN {
type hint;
file "db.root";
};
zone "localhost" IN {
type master;
file "db.localhost";
allow-update { none; };
notify no;
};
zone "0.0.127.in-addr.arpa" IN {
type master;
file "db.localhost.rev";
allow-update { none; };
notify no;
};
zone "0.10.10.in-addr.arpa" in {
type slave;
file "db.0.10.10";
masters { 10.10.0.165 key server1-server2.; };
};
zone "domain1.com" IN {
type slave;
file "slave/db.domain1.com";
masters { 10.10.0.165 key server1-server2.; };
};
zone "domain2.com" in {
type slave;
file "slave/db.domain2.com";
masters { 10.10.0.165 key server1-server2.; };
};
zone "domain3.com" in {
type slave;
file "slave/db.domain3.com";
masters { 10.10.0.165 key server1-server2.; };
};
key server1-server2. {
algorithm hmac-md5;
secret "stcVO8LLN6c7kx73XbcCJg==";
};
include "/etc/rndc.key";
include "/etc/Kserver1-server2.+157+16451.key";
server 10.10.0.165 {
keys {netsadm-netsadm1. ; };
};
logging {
channel "sys_chan" {
file "/etc/sys.log" versions 4 size 10m;
print-severity yes;
print-time yes;
print-category yes;
severity debug 11;
};
category "general" {
"sys_chan";
};
};
# End of named.conf
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
More information about the bind-users
mailing list