I have a suspect: May it be that "rndc signing nsec3param" adds the
NSEC3PARAM RR internally to the unsigned zone file. Thus, calling "rndc
signing nsec3param" does not work before the initial zone transfer.
This would mean I have to check when the initial transfer succeeded
before calling "rndc s
Hi!
Today I managed that Bind 9.9.5 created a signed zone with all RRs
signed except the SOA. The private RRs showed "finshed signing". Only
after another "rndc loadkeys" also the SOA was signed.
Unfortunately I can not reproduce the problem, but I suspect it may be
related to the order how I add
2 matches
Mail list logo