TSIG Zone Transfer Failed
Jim Reid
jim at rfc1035.com
Tue Nov 6 18:25:44 UTC 2001
>>>>> "Chee-Wai" == Chee-Wai Yeung <cheewai at cs.ust.hk> writes:
Chee-Wai> I am having problems with setting up TSIG: I have setup
Chee-Wai> a few tested zones (one forward, 8 reverse). When I
Chee-Wai> restarted the primary and slave servers, zone transfer
Chee-Wai> worked ONLY for the 8 reverse zones.
TSIG includes a timestamp to prevent replay attacks. Are you sure all
of the servers you're using have their time of clocks synchronised?
BTW if you turn on the dnssec debugging, you should see why the
Transaction Signatures are failing.
More information about the bind-users
mailing list