Bind 9.1.0b Problem
Jon Bibeau
jbibeau at c-i-s.com
Wed Dec 20 16:46:40 UTC 2000
Greetings,
I've forgot to include the message log and the nsupdate instructions...
Sorry...
options {
directory "/var/named";
recursion yes;
auth-nxdomain yes;
};
key "voyager-ns2." {
algorithm hmac-md5;
secret
"VGtMu+66M3+idUchqeFWF7B6EStMZ5ao7kxM4kBQojy2cwOlsvbUm6jhpxlocjmXmjwcQ/JktpN
xiAo+Wzx2gQ==";
};
key "modem_test-ns2." {
algorithm hmac-md5;
secret
"JCONIUt0YubeSslPrayOc6O05mOKpG/NQTRV65Adc25Y+82zeHNf1cJCp0n2bv9oSg8NfMs3+HC
xePkY/azRlQ==";
};
zone "." IN {
type hint;
file "named.ca";
};
zone "localhost" IN {
type master;
file "localhost.zone";
allow-update { none; };
};
zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.local";
allow-update { none; };
};
zone "dynamic.managedinet.net" {
type master;
file "/var/named/dynamic.managedinet.net.hosts";
allow-update {
key "modem_test-ns2.";
};
};
Here is the modem_test key file:
Private-key-format: v1.2
Algorithm: 157 (HMAC_MD5)
Key:
JCONIUt0YubeSslPrayOc6O05mOKpG/NQTRV65Adc25Y+82zeHNf1cJCp0n2bv9oSg8NfMs3+HCx
ePkY/azRlQ==
Now when I try and run the following commands from nsupdate I get the
following messages:
[root at modem_test /etc]# nsupdate -d -k Kmodem_test-ns2.+157+22005.private
keycreate
> server ns2.c-i-s.com
> zone dynamic2.managedinet.net
> update delete modem_test A
> update add modem_test 3600 A 10.0.1.25
>
dns_request_getresponse: tsig verify failure
On the DNS server the message log says:
Dec 20 10:27:55 ns2 named[16171]: client 10.0.2.1#1029: request has invalid
signature: tsig verify failure
Jon Bibeau <jbibeau at c-i-s.com>
Homepage: http://people.ne.mediaone.net/jbibeau/
System Administrator,
CIS Technical Services
33 Main Street, Suite 303
Nashua, NH 03060
(603) 889-4684 (Local)
(603) 889-0534 (Fax)
"Some men see things the way they are and say, why?
I dream of things that never where and say, why not?"
-- Robert F. Kennedy
More information about the bind-users
mailing list