Filter out TSIG records from zone transfer
Daniel Stirnimann
daniel.stirnimann at switch.ch
Mon Dec 7 07:25:21 UTC 2020
Hello Anand
this works for me:
dig -k KEY @PRIMARY ZONE +noall +answer +noidnout +onesoa AXFR
Daniel
On 06.12.20 15:31, Anand Buddhdev wrote:
> Hi folks,
>
> When I use "dig" to do a zone transfer, using TSIG, then the resulting
> zone is interspersed with TSIG records. Some tools, such as
> "dnssec-verify", don't like these records.
>
> Is there any way to tell dig not to print these TSIG records? Currently,
> I pass the zone through an awk script to filter out these records, but
> it would be nice if I could tell dig itself to suppress them.
>
> Regards,
> Anand Buddhdev
> _______________________________________________
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list
>
> ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information.
>
>
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
--
SWITCH
Daniel Stirnimann, SWITCH-CERT
Werdstrasse 2, P.O. Box, 8021 Zurich, Switzerland
phone +41 44 268 15 15, direct +41 44 268 16 24
daniel.stirnimann at switch.ch, www.switch.ch
More information about the bind-users
mailing list