I am seeing the below error when a zone is signed without an A record for zone.
However there is a an CNAME record for the same top-level domain (zone), could
this be causing the below error and why?
dnssec-signzone: error: dns_master_load: :33: zonename: CNAME and other data
dnssec-signzone: fatal: failed loading zone from : CNAME and other data
On Wednesday, April 11, 2018, 5:56:01 PM EDT, Carl Byington
<[email protected]> wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
On Wed, 2018-04-11 at 21:06 +0000, praveen via bind-users wrote:
> Is an "A" record mandatory entry for top-level domain (zone) when
> using DNSSEC, DKIM, SPF and DMARC configuration?
No. I have zones with all of that, with no A record at the apex, and
have not seen any interoperability problems.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)
iEYEAREKAAYFAlrOfYMACgkQL6j7milTFsEX3wCdEPzfLvv+AD7ya88VNZg9cfDk
OJEAn3mmxOfAeW/AfJeyND5V2LoYj3dO
=DF0y
-----END PGP SIGNATURE-----
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
[email protected]
https://lists.isc.org/mailman/listinfo/bind-users
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
[email protected]
https://lists.isc.org/mailman/listinfo/bind-users
