First of all, I don't recommend copying the configuration and having two
primaries signing the same zone. It would at least need some key
management synchronizing the signing keys.
I see that the DNSKEY set from ns1 differs from ns2 (there are two more
keys there, where do they come from?)
What does the logs say? Have you checked them?
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 15. 6. 2023, at 15:54, Michael Martinell via bind-users
>
Anybody have any ideas on why my dnssec records don't always automatically
update on my NS2 authoritative server? On my NS1 authoritative server the
records update without issue.
NS2 is an exact copy of NS1. We SCP all of the config files from the first
server to the second server and do "rndc
3 matches
Mail list logo
