bind slave errors....

Tue Sep 20 13:31:29 UTC 2005

I'm building a 9.2.2 slave DNS server (RH ES 3.0) for an internal TEST upgrade network.  I cannot seem to get the slave talking to the master.  The syslog and named error file are completely clean.  The only error message I'm seeing is the following when I run named-checkconf

named-checkconf -t /chroot/named
/etc/Kserver1-server2.+157+16451.key:1: unknown option 'server1-server2.'

The following are the config files.  Can anyone provide insight as to what is erring out?

Thanks in advance...

# Start of rndc.conf
options {
        default-key "rndc-key";
        default-server 127.0.0.1;
        default-port 953;
};
server localhost {
        key "rndc-key";
};
# End of rndc.conf

# start of rndc.key
key "rndc-key" {
        algorithm hmac-md5;
        secret "stcVO8LLN6c7kx73XbcCJg==";
};
# End of rndc.key

>more Kserver1-server2.+157+16451.key
server1-server2. IN KEY 512 3 157 stcVO8LLN6c7kx73XbcCJg==

>more Kserver1-server2.+157+16451.private
Private-key-format: v1.2
Algorithm: 157 (HMAC_MD5)
Key: stcVO8LLN6c7kx73XbcCJg==

# Start of named.conf
// generated by named-bootconf.pl
options {
        directory "/etc/namedb";
        pid-file "/var/run/named.pid";
        statistics-file "/var/run/named.stats";
        version "[secured]";
        allow-query { any; };
        recursion no;
        blackhole { bad-nets; };
};
controls {
        inet 127.0.0.1 port 953
                allow { localhost; } keys { "rndc-key"; };
        inet 10.10.0.166 allow { localhost;
                                        10.10.0.165;
                                } keys { "rndc-key"; };
};
acl bad-nets {0.0.0.0/8; 1.0.0.0/8; 2.0.0.0/8; 192.0.2.0/24; 224.0.0.0/3; 10.0.0
.0/8; 172.16.0.0/16; };
zone "." IN {
        type hint;
        file "db.root";
};
zone "localhost" IN {
        type master;
        file "db.localhost";
        allow-update { none; };
        notify no;
};
zone "0.0.127.in-addr.arpa" IN {
        type master;
        file "db.localhost.rev";
        allow-update { none; };
        notify no;
};
zone "0.10.10.in-addr.arpa" in {
        type slave;
        file "db.0.10.10";
        masters { 10.10.0.165 key server1-server2.; };
};
zone "domain1.com" IN {
      type slave;
      file "slave/db.domain1.com";
      masters { 10.10.0.165 key server1-server2.; };
};
zone "domain2.com" in {
        type slave;
        file "slave/db.domain2.com";
        masters { 10.10.0.165  key server1-server2.; };
};
zone "domain3.com" in {
        type slave;
        file "slave/db.domain3.com";
        masters { 10.10.0.165 key server1-server2.; };
};
key server1-server2. {
        algorithm hmac-md5;
        secret "stcVO8LLN6c7kx73XbcCJg==";
};
include "/etc/rndc.key";
include "/etc/Kserver1-server2.+157+16451.key";
server 10.10.0.165 {
        keys {netsadm-netsadm1. ; };
};
logging {
        channel "sys_chan" {
        file "/etc/sys.log" versions 4 size 10m;
        print-severity yes;
        print-time yes;
        print-category yes;
        severity debug 11;
        };
        category "general" {
        "sys_chan";
        };
};
# End of named.conf
__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 