new dnssec zone OK, error "zone_rekey:dns_zone_getdnsseckeys failed: not found" only in local bind logs ?
PGNet Dev
pgnet.dev at gmail.com
Fri Oct 14 15:00:13 UTC 2022
> Which parental-agent to use is up to you. Something you trust.
for the moment, let's say 1.1.1.1
> But if you don't have parental-agents set up, the list of keys to check will be empty. Hence the "not found" result.
i added
zone "example.com" IN {
type master; file "/namedb/master/example.com.zone";
dnssec-policy "pgnd";
key-directory "/keys/dnssec/example.com";
++ parental-agents { 1.1.1.1; };
update-policy { grant pgnd-external-rndc-key zonesub txt; };
};
but, on restart, still see
dnssec: error: zone example.com/IN/external: zone_rekey:dns_zone_getdnsseckeys failed: not found
something additional needed?
More information about the bind-users
mailing list