On 2/9/2022 2:36 AM, Tony Finch wrote:
John Thurston wrote:
Are we not able to use catalog zones to propagate zone-configuration for
anything other than 'master' zones?
>
It is only for configuring authoritative secondary zones.
That's unfortunate, but thanks for the confirmation. I
Hi Larry,
Without more information it is hard to tell what is going on.
Can you share your dnssec-policy and the contents of the key state file?
And if you have useful logs (grep for keymgr) that would be handy too to
see what is going on.
If you prefer to share them off list, you can mail
John Thurston wrote:
> Are we not able to use catalog zones to propagate zone-configuration for
> anything other than 'master' zones?
It is only for configuring authoritative secondary zones. You are right
that this isn't completely clear in the documentation, uless you read the
whole section
That's right, catalog zones are for synchronizing the list of zones served by
the primary, so that the secondaries can retrieve those zones using AXFR/IXFR.
You can't even use "allow-transfer" on a forward zone, so it is not meant to be
transferred to secondaries.
A couple of observations
4 matches
Mail list logo
