t;> Ok, but does sig-validity-interval affect too, after the key deletion date?.
>> Or does it affect only from the inactivation date to the deletion date of a
>> key?.
sig-validity-interval and re-signing is independent of inactive and
delete dates.
> Mark
>
> Best reg
eletion date of a
>> key?.
sig-validity-interval and re-signing is independent of inactive and
delete dates.
> Mark
>
> Best regards
>
> On 25 Jan 2022, at 05:21, egoitz--- via bind-users
> wrote:
>
> Hi!!
>
> Thanks a lot for your answer!!
>
> I tri
lidity-interval affect too, after the key deletion date?.
>> Or does it affect only from the inactivation date to the deletion date of a
>> key?.
sig-validity-interval and re-signing is independent of inactive and
delete dates.
> Mark
>
> Best regards
>
> On
ays to
> which you have to add the record TTL.
>
> OK, BUT DOES SIG-VALIDITY-INTERVAL AFFECT TOO, AFTER THE KEY DELETION DATE?.
> OR DOES IT AFFECT ONLY FROM THE INACTIVATION DATE TO THE DELETION DATE OF A
> KEY?.
>
> Mark
>
> BEST REGARDS
>
> On 25
No
> pinche en los enlaces ni abra los adjuntos a no ser que reconozca el
> remitente y sepa que el contenido es seguro.
>
> egoitz--- via bind-users wrote:
>
>> These are the contents of a cat of the private file I have renamed to
>> samename.private-OLD :
>>
&
he signed zone with pipe grep the key id, no matches
> appear... so should not exist rrsigs for that key
>
> These are the contents of a cat of the private file I have renamed to
> samename.private-OLD :
>
> Created: 20211031230338
> Publish: 20211110220241
> Activate: 20
e: 20211110220341
> Inactive: 20211215230338
> Delete: 20211217230338
>
> Not understandable
>
> Cheers,
>
> El 2022-01-24 14:58, egoitz--- via bind-users escribió: Hi Klaus,
>
> Thank you so much for your answer but when Bind deletes a key from a zone, if
> These are the contents of a cat of the private file I have renamed to
> samename.private-OLD :
>
> Created: 20211031230338
> Publish: 2020220241
> Activate: 2020220341
> Inactive: 20211215230338
> Delete: 20211217230338
>
> Not understandable
r that key
These are the contents of a cat of the private file I have renamed to
samename.private-OLD :
Created: 20211031230338
Publish: 2020220241
Activate: 2020220341
Inactive: 20211215230338
Delete: 20211217230338
Not understandable
Cheers,
El 2022-01-24 14:58, egoitz--- via bind-users escri
er key deactivation I waited the RRSIG lifetime
> before deleting them.
>
> regards
>
> Klaus
>
> VON: bind-users IM AUFTRAG VON egoitz---
> via bind-users
> GESENDET: Montag, 24. Jänner 2022 13:00
> AN: bind-users@lists.isc.org
> BETREFF: Bind 9, dnssec, and .key
Good morning,
I have a DNSSEC "bump in wire" server, which uses "inline-signing yes;"
and "auto-dnssec maintain;" for that reason.
I do the task of ensuring always are valid keys in the zone with an
script that generates them whenever is needed. All fine until here and
all working.
I have
11 matches
Mail list logo