Certbot rfc2136
Paul van der Vlis
paul at vandervlis.nl
Sun Oct 24 19:39:02 UTC 2021
Hello,
I am trying to get Certbot working using rfc2136. But during the
validation I get these errors:
-------
Oct 24 02:14:21 ns1 named[343]: client @0x7f70e43b7d08
45.95.238.187#57242/key test3.hallo24.nl: updating zone 'hallo24.nl/IN'
: adding an RR at '_acme-challenge.test3.hallo24.nl' TXT
"qYxXiH34V8T0lFtsUOd_BPMZCBiA-FgAiJ-0nUGHsYE"
Oct 24 02:14:21 ns1 named[343]: dns_dnssec_findzonekeys2: error reading
Khallo24.nl.+013+02962.private: file not found
Oct 24 02:14:21 ns1 named[343]: dns_dnssec_findzonekeys2: error reading
Khallo24.nl.+013+01290.private: file not found
-------
These files are in /etc/bind/keys/, and normally that's no problem.
I've tried to specify the "key-directory" in the bind configuration, but
when I do that I get an error during "rndc reload", so I cannot specify
a key-directory. This is Bind 9.16.15 from Debian 11.
What do I wrong?
Does somebody know a good howto to get this working? I use now this:
https://certbot-dns-rfc2136.readthedocs.io/en/stable/
but in my opinion it's not complete enough.
With regards,
Paul
--
Paul van der Vlis Linux systeembeheer Groningen
https://www.vandervlis.nl/
More information about the bind-users
mailing list