RNDC troubles

Niamien ATTA niamien.atta at atosorigin.com
Wed Jul 4 15:25:02 UTC 2001 

Hi,

You have get your answer on
http://www.boran.com/security/sp/bind9_20010430.html




-----Message d'origine-----
De : bind-users-bounce at isc.org [mailto:bind-users-bounce at isc.org]De la
part de Godfried Duodu
Envoye : mardi 3 juillet 2001 22:08
A : bind-users at isc.org; comp-protocols-dns-bind at moderators.isc.org
Objet : RNDC troubles



I have successfully compiled bind-9.1.1 on RH 6.2 and a 2.4.2 kernel and
generated a key from the dnssec-keygen

command for rndc.conf file.
When I run the rndc reload command I get the error messages:
"rndc:connection refused".
When I issued rndc stop command, named gets stopped.
I generated the keys a couple of times and still getting the same error
messages. I have included the log messages

and the relevant files below for scrutiny.
 What am I doing wrong?
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

statement in named.conf:

key rndc_key {
     algorithm hmac-md5;
     secret "vf3nm1L95/qYmsLz2pfQCA==";
};
controls {
         inet * allow { any; } keys { rndc_key; };

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
statement in rndc.conf:
options {
        default-server 127.0.0.1;
        default-key   rndc_key;
};
server localhost {
   key  rndc_key
key rndc_key {
     algorithm  hmac-md5;
     secret "vf3nm1L95/qYmsLz2pfQCA==";
};
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
error report from /var/log/messages:
Apr 14 07:45:19 linuxserv ./named[896]: starting BIND 9.1.1
Apr 14 07:45:19 linuxserv ./named[896]: using 1 CPU
Apr 14 07:45:19 linuxserv ./named[896]: loading configuration from
'/etc/named.conf'
Apr 14 07:45:19 linuxserv ./named[896]: no IPv6 interfaces found
Apr 14 07:45:19 linuxserv ./named[896]: listening on IPv4 interface lo,
127.0.0.1#53
Apr 14 07:45:19 linuxserv ./named[896]: listening on IPv4 interface eth0,
192.168.0.131#53
Apr 14 07:45:19 linuxserv ./named[896]: couldn't find key rndc_keys for use
with command channel 0.0.0.0#953
Apr 14 07:45:19 linuxserv ./named[896]: command channel listening on
0.0.0.0#953
Apr 14 07:45:19 linuxserv ./named[896]: running

More information about the bind-users mailing list