Problems with TSIG/DNSSEC
Danny Mayer
mayer at gis.net
Thu Aug 16 14:56:38 UTC 2001
Check the system date/time on both machines. They should be in
agreement. If you are not running ntp, you should be.
Danny
At 10:19 AM 8/16/01, Vinson Armstead - PA wrote:
>While experimenting with TSIG & DNSSEC I am receiving the following errors
>on my master name server:
>
>Aug 16 10:08:03.318 dnssec: debug 2: tsig key 'server.domain.com': signature
>is in the future
>Aug 16 10:08:03.318 security: error: client x.x.x.x#1024: request has
>invalid signature: tsig verify failure
>Aug 16 10:08:03.825 dnssec: debug 2: tsig key 'server.domain.com': signature
>is in the future
>Aug 16 10:08:03.825 security: error: client x.x.x.x#1024: request has
>invalid signature: tsig verify failure
>
>I have checked the "key" & "server" statement on both the master and slave
>(basically copied the text from one to the other).
>
>Zone updates and transfers work fine without using TSIG.
>
>Any suggestion??
>
>Thanks in advance
>
> > Vinson
>
More information about the bind-users
mailing list