dynamic update is not working for signed zone
Mark Andrews
marka at isc.org
Mon Apr 25 14:29:21 UTC 2011
In message <BANLkTikhZkL0S_fGLwNSWbtV-sK67-yj1w at mail.gmail.com>, rams writes:
> Hi,
> When i do a dynamic update using nsupdate, i am unable to add record into
> signed zone.
> steps followed:
> [root at stulcqacustbind2 muktha]# nsupdate
> > server <server ip>
> > update add net.rameshnu.sun. 86400 IN A 1.2.3.4
> > send
> update failed: SERVFAIL
> >
>
> Bind log:
> 25-Apr-2011 12:43:22.166 update: info: client ip#47830: updating zone
> 'net.rameshnu.sun/IN': adding an RR at 'net.rameshnu.sun' A
> 25-Apr-2011 12:43:22.167 update: error: client ip#47830: updating zone
> 'net.rameshnu.sun/IN': found no private keys, unable to generate any
> signatures
> 25-Apr-2011 12:43:22.167 update: error: client ip#47830: updating zone
> 'net.rameshnu.sun/IN': RRSIG/NSEC/NSEC3 update failed: not found
You need to tell named where to find the keys. Named will
look for then in the key-directory which defaults to the
working directory listed in named.conf.
> Please clarify me.
>
> Thanks & Regards,
> Ramesh
>
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: marka at isc.org
More information about the bind-users
mailing list