Moving an AD Zone from Windows to BIND
Mark Andrews
marka at isc.org
Tue Jul 28 21:09:11 UTC 2009
Mark Andrews writes:
>
> In message <20090728175246.BF0A8174C4 at britaine.cis.anl.gov>, bsfinkel at anl.gov writes:
> > I do not want any dynamic DNS to my BIND servers, as I am not sure
> > how that DDNS would interface with DNSSEC.
>
> DNSSEC is easier with a DDNS zone than a non-DDNS zone as named
> can ensure the signatures get re-generated when required.
> 9.6.0 onwards.
The main thing is to tell named where the keys are via
the key-directory statement.
> --
> Mark Andrews, ISC
> 1 Seymour St., Dundas Valley, NSW 2117, Australia
> PHONE: +61 2 9871 4742 INTERNET: marka at isc.org
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: marka at isc.org
More information about the bind-users
mailing list