LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Networking (https://www.linuxquestions.org/questions/linux-networking-3/)
-   -   Bind 9 rndc connection refused. (https://www.linuxquestions.org/questions/linux-networking-3/bind-9-rndc-connection-refused-9065/)

360 11-21-2001 11:52 PM
Bind 9 rndc connection refused.
 
Hello,

Running RH7.1 with Bind 9.
Bind is running fine but haveing trouble configuring rndc.
When I run the command:# rndc reload
It says: rndc: connect: connection refused

I have tried several different things from articales on the net but nothing works.
Thanks for your help.

Here are my files:

/etc/rndc.conf
options {
default-server localhost;
default-key "rndc-key";
};

Key "rndc-key" {
algorithm hmac-md5;
secret "Ytzd/Fjm2i2smxAwoTuiFq==";
};

********************
/etc/rndc.key
key "rndc" {
algorithm hmac-md5;
secret "Ytzd/Fjm2i2smxAwoTuiFq=="
};

********************
/etc/named.conf
options {
directory "/etc/named.d";
};

controls {
inet * allow { any; } keys { "rndc-key"; };

};

Key "rndc-key" {
algorithm hmac-md5
secret "Ytzd/Fjm2i2smxAwoTuiFq==";
};

360 11-23-2001 02:09 PM
I found the solution
 
Configuring rndc for bind 9
Solution for connection refused based on notes from: http://www.mail-archive.com/comp-pro.../msg03950.html

This simple little process ended up being a real pain because all the documentation from man to O'Reilly didn't seem to work for me.
However, I finally found some snippets that worked. The solution seems to be in the order in which the statements are made in each file.

Create a new file, /etc/rndc.conf and add the snip below.
Your secret code must be duplicated in each file. To create a secret code, you can use the command mmencod. Type your secret code, hit enter and your secret code is created.

You may need to restart your server for the changes to take affect. After restarting, to start named you can type the path of the server, /usr/sbin/named. Mine is located at /usr/local/sbin/named. Type wheris named, to find where named is on your server.


-------- rndc.conf snip ----------

options {
default-server localhost;
default-key "rndc-key";
};

server localhost {
key "rndc-key";
};

key "rndc_key" {
algorithm hmac-md5;
secret "put_code_here" ; # to make a secret code, use:
}; # % mmencode
# foobarsecret
# Zm9vYmFyc2VjcmV0


------- named.conf snip ----------

options {
directory "/var/named"; #my dir is /etc/named.d
};


controls { inet 127.0.0.1 allow { localhost; } keys { rndc_key; };
};

key "rndc_key" {
algorithm hmac-md5;
secret "put_code_here" ; # to make a secret code, use:
}; # % mmencode
# foobarsecret
# Zm9vYmFyc2VjcmV0



Good Luck!

rhbegin 10-15-2010 02:47 PM
I battled this one as well, make sure you remove the (.) out of
rndc.key make it rndckey or it will fail to work.


All times are GMT -5. The time now is 06:03 AM.