Hello again, I found ods-signerd started by commandline works fine. I can then connect via ods-signer. The error only occurs with systemd starting ods-signerd. I forgot to mention that I'm on fedora 32.
Best Am 24.06.20 um 11:18 schrieb Ulrich-Lorenz Schlüter: > Hello there, > > when configuring bind and opendnssec with ansible I get following output: > > Jun 23 19:24:27 ods-signerd[19994]: [engine] starting signer > Jun 23 19:24:27 ods-signerd[19994]: [parser] check cfgfile > /etc/opendnssec/conf.xml with rngfile /usr/share/opendnssec/conf.rng > Jun 23 19:24:27 ods-signerd[19994]: [file] open file > file=/etc/opendnssec/conf.xml mode=reading > Jun 23 19:24:27 ods-signerd[19994]: [file] openfile > /etc/opendnssec/conf.xml count 1 > Jun 23 19:24:27 ods-signerd[19994]: [config] read cfgfile: > /etc/opendnssec/conf.xml > Jun 23 19:24:27 ods-signerd[19994]: [parser] added 127.0.0.1:51 > interface to listener > Jun 23 19:24:27 ods-signerd[19994]: [parser] added SoftHSM repository to > repositorylist > Jun 23 19:24:27 ods-signerd[19994]: [engine] setup signer engine > Jun 23 19:24:27 ods-signerd[19994]: [cmdhandler] create socket > /var/run/opendnssec/engine.sock > Jun 23 19:24:27 ods-signerd[19994]: [socket] create udp socket > '127.0.0.1:51': No such file or directory > Jun 23 19:24:27 ods-signerd[19994]: [socket] bind udp/ipv4 socket > '127.0.0.1:51': No such file or directory > Jun 23 19:24:27 ods-signerd[19994]: [socket] unable to bind udp/ipv4 > socket '127.0.0.1:51': bind() failed (Permission denied) > Jun 23 19:24:27 ods-signerd[19994]: [socket] socket listening to > 127.0.0.1:51 > Jun 23 19:24:27 ods-signerd[19994]: [dnshandler] unable to start: > sock_listen() failed (Unable to bind socket) > Jun 23 19:24:27 ods-signerd[19994]: [engine] setup: unable to listen to > sockets (Unable to bind socket) > Jun 23 19:24:27 ods-signerd[19994]: OpenDNSSEC signer engine version 2.1.6 > Jun 23 19:24:27 ods-signerd[19994]: [engine] setup failed: XFR handler error > Jun 23 19:24:27 ods-signerd[19994]: [zonelist] cleanup zonelist > > As the log says engine.sock does not exist. What may I have missed > configuring? Who should create that socket? > > Thanks in advance > Uli > _______________________________________________ Opendnssec-user mailing list [email protected] https://lists.opendnssec.org/mailman/listinfo/opendnssec-user
