RDNC key question
Vigilance Monitoring
no_spam at aracnet.com
Mon Nov 21 05:13:03 UTC 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
bind-9.2.4-2 on RHEL4
I recently built a slave DNS server and everything seems to be
working fine. However, /etc/init.d/named stop|restart does not work
(doesn't stop named). I think the problem may be with the rdnc key.
[root at plain named]# rndc -V status
rndc: connection to remote host closed
This may indicate that the remote server is using an older version of
the command protocol, this host is not authorized to connect,
or the key is invalid.
/var/log/messages:
Nov 20 22:22:33 plain named[13030]: invalid command from
127.0.0.1#34229: bad auth
Nov 20 22:25:38 plain named[13609]: /etc/named.conf:63: couldn't find
key 'rndc-key' for use with command channel 127.0.0.1#953
Nov 20 22:25:43 plain named[13609]: invalid command from
127.0.0.1#34274: bad auth
Nov 20 22:25:43 plain named[13609]: invalid command from
127.0.0.1#34275: bad auth
Nov 20 22:25:50 plain named[13609]: invalid command from
127.0.0.1#34276: bad auth
Nov 20 22:26:54 plain named[13609]: invalid command from
127.0.0.1#34291: bad auth
/etc/named.conf:
include "/etc/rndc.key";
controls {
inet 127.0.0.1 port 953
allow { 127.0.0.1; } keys { "rndc-key"; };
};
What do I need to do to fix this please? TIA!!!
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>
Comment: foobar
iQA/AwUBQ4FXXFPfRV42MJPXEQLTOQCfZ7V3swg0NQzAu6BjBjJPcaTF9OkAnRp/
zdWcjlHw1lWk4Qhoqfi/3pOE
=BzDw
-----END PGP SIGNATURE-----
More information about the bind-users
mailing list