Am 02.09.19 um 11:06 schrieb Havard Eidnes:
>> thanks for all the help, I finally got it working. My named wasn't
>> capable using tsig with edns in the default view.
>> Adding the following in the default view made it work:
>>
>> server 127.0.0.1 {
>> keys { opendnssec-out; };
>> edns no;
>> };
>>
>> Regards
>> Uli
>
> Oh, this is trying to mix "modern BIND" with OpenDNSSEC?
>
> This could then be an instance related to
>
> https://issues.opendnssec.org/browse/SUPPORT-242
>
> which is OpenDNSSEC which fails to skip over the cookie option
> newer BIND now sends.
>
> Regards,
>
> - Håvard
It's BIND 9.11.9-RedHat-9.11.9-1.fc30 with a self compiled opendnssec
version 2.1.4.
Are there any recommendations for a "modern" replacement for opendnssec?
Regards
Uli
_______________________________________________
Opendnssec-user mailing list
[email protected]
https://lists.opendnssec.org/mailman/listinfo/opendnssec-user
