BIND question
praveen
kpcb_la at yahoo.com
Wed Apr 11 22:13:16 UTC 2018
I am seeing the below error when a zone is signed without an A record for zone. However there is a an CNAME record for the same top-level domain (zone), could this be causing the below error and why?
dnssec-signzone: error: dns_master_load: :33: zonename: CNAME and other data
dnssec-signzone: fatal: failed loading zone from : CNAME and other data
On Wednesday, April 11, 2018, 5:56:01 PM EDT, Carl Byington <carl at byington.org> wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
On Wed, 2018-04-11 at 21:06 +0000, praveen via bind-users wrote:
> Is an "A" record mandatory entry for top-level domain (zone) when
> using DNSSEC, DKIM, SPF and DMARC configuration?
No. I have zones with all of that, with no A record at the apex, and
have not seen any interoperability problems.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)
iEYEAREKAAYFAlrOfYMACgkQL6j7milTFsEX3wCdEPzfLvv+AD7ya88VNZg9cfDk
OJEAn3mmxOfAeW/AfJeyND5V2LoYj3dO
=DF0y
-----END PGP SIGNATURE-----
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list
bind-users mailing list
bind-users at lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20180411/b4610753/attachment.html>
More information about the bind-users
mailing list