bind9 / rndc questions
William H. Magill
magill at me.com
Tue Jan 4 16:16:04 PST 2011
The saga continues.... This is my first crack at rndc under Bind 9 and never used ndc under BInd 8...
I've run ">sudo rndc-confgen -a"
The /opt/local/etc/rndc.key file contains:
-------------------------<cut here>----------
key "rndc-key" {
algorithm hmac-md5;
secret "stuff";
};
-------------------------<cut here>----------
Then I run and get:
-------------------------<cut here>----------
>sudo named-checkconf named.conf
/opt/local/etc/rndc.key:1: unknown option 'key'
-------------------------<cut here>----------
My named.conf has the following controls section:
-------------------------<cut here>----------
controls {
unix "/opt/local/var/named/ndc" perm 0660 owner 0 group 0;
// --------------------------------------------------------------------
// Define the rndc key for rndc command. Use "rndc-confgen -a -b 512"
// to create a new key
// --------------------------------------------------------------------
include "/opt/local/etc/rndc.key";
// ------------------------------------------------------------------------
// Only allow localhost access from rndc
// ------------------------------------------------------------------------
inet 127.0.0.1 port 953
allow { 127.0.0.1; } keys { "rndc-key"; };
};
-------------------------<cut here>----------
If I delete the "include"
I get:
-------------------------<cut here>--------------
> sudo named-checkconf named.conf
named.conf:87: unknown key 'rndc-key'
-------------------------<cut here>---------------
I'm obviously not understanding something here.
T.T.F.N.
William H. Magill
# iMac6,1 Core 2 Duo [2.16GHz - 3 GB 667] OS X 10.6.5
# MacBook Pro4.1 Core 2 Duo [2.5GHz - 4GB 667] OS X 10.6.5
# Mac mini Core Duo [1.66 Ghz - 2 GB 667]OS X 10.6.5
# Flat-panel iMac (2.1) [800MHz - Super Drive - 768 Meg] OS X 10.4.11
# PWS433a [Alpha 21164 Rev 7.2 (EV56)- 64 Meg] Tru64 5.1a
# XP1000 [Alpha 21264-3 (EV6) - 256 meg] FreeBSD 5.3
# XP1000 [Alpha 21264-A (EV6-7) - 256 meg] FreeBSD 5.3
magill at mcgillsociety.org
magill at me.com
whmagill at gmail.com
More information about the macports-users
mailing list