Adding a new domain with DNSSEC
Eric Germann
ekgermann at semperen.com
Sun Apr 10 15:01:56 UTC 2022
Are you missing a left paren before "1-16”?
Eric Germann
ekgermann {at} semperen {dot} com || ekgermann {at} gmail {dot} com
LinkedIn: https://www.linkedin.com/in/ericgermann <https://www.linkedin.com/in/ericgermann>
Medium: https://ekgermann.medium.com <https://ekgermann.medium.com/>
Twitter: @ekgermann
Telegram || Signal || Skype || Phone +1 {dash} 419 {dash} 513 {dash} 0712
GPG Fingerprint: 89ED 36B3 515A 211B 6390 60A9 E30D 9B9B 3EBF F1A1
> On Apr 10, 2022, at 4:40 AM, @lbutlr <kremels at kreme.com> wrote:
>
> I have an several domains setup in bind, all with DNSSEC implemented, and am trying to add a new domain, and seem to have missed a step.
>
>
> # dnssec-keygen -a 13 example,com
> # dnssec-keygen -f KSK -a 13 example,com
>
> Add $INLCUDE to the zone file for each of these 4 keys.
>
> # dnssec-signzone -3 $(head -c 1000 /dev/random | shasum | cut -b 1-16) -o example.com -t example.com
>
> dnssec-signzone: warning: keys/Kexample.com.+013+55923.private:1: unknown RR type 'v1.3'
> dnssec-signzone: fatal: failed loading zone from 'example.com': unknown class/type
>
>
> --
> "Are you pondering what I'm pondering?"
> "I think so, Brain! But ruby-studded stockingswould be mighty
> uncomfortable wouldn't they?"
>
> --
> Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list
>
> ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information.
>
>
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20220410/2e4aa5b0/attachment.htm>
More information about the bind-users
mailing list