Casey;
I do have the allow-query { any; }; statement posted in all zones;
The server is working fine! It has been serving the domain www.bonsi.org
and another FQDN with not problems. When I dig from the inside it show
that everything is ok.
; <<>> DiG 9.6-ESV-R4-P3 <<>> bonsi.org
;; global op
On Sun, Nov 13, 2011 at 1:50 PM, Eduardo Bonsi wrote:
> Mark and everybody, Thanks for the checking. I had a suspicion that was
> the issue but I need a second opinion since when I checked my DNS from the
> inside the "refused" status is not happening. Here is what I am getting:
>
>
What does you
Mark and everybody, Thanks for the checking. I had a suspicion that was
the issue but I need a second opinion since when I checked my DNS from
the inside the "refused" status is not happening. Here is what I am getting:
user:~ user1$ dig bonsi.org +norec @63.200.45.19
; <<>> DiG 9.6-ESV-R4-P3
Fix your normal DNS before attempting to turn on DNSSEC. The NS
RRset is inconsistent between the .ORG zone and zone itself.
n1.bonsi.orgns1.name.com
n2.bonsi.orgvs ns2.name.com
n1.name.com ns3.name.com
n2.name.com ns4.
On Sat, 12 Nov 2011, Eduardo Bonsi wrote:
I am trying to DNSSEC validate my external zone bonsi.org but I am hitting a
wall here. This is my first time trying to validate DNSSEC with some obvious
frustration. Maybe some one can point me what I am failing to do here.
As Evan said, your signed
> The external zone has been signed using the Algorithm: 5 (RSASHA1):
> Here is the public key:
>
> bonsi.org. IN DNSKEY 257 3 5
> AwEAAeAzIIujd7iu+pGOhvSzHHkakbyVorVAeZC1IS9AIWL2jk4v8HWo
> fuHaAMfAJyBnnr+lIWnMWzZSkdI6ustf+z1WTC5Es9f+kFsLpljRTr8G
> cktr1XsbIPyZcfgbky5mrVU2qCaLmv9RhMyQHM2iNyyCXt8M/
I am trying to DNSSEC validate my external zone bonsi.org but I am
hitting a wall here. This is my first time trying to validate DNSSEC
with some obvious frustration. Maybe some one can point me what I am
failing to do here. Thanks!
The external zone has been signed using the Algorithm: 5 (RSA
7 matches
Mail list logo
