LinuxQuestions.org
Go Job Hunting at the LQ Job Marketplace
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Search this Thread
Old 07-22-2008, 06:06 PM   #16
xokaido
LQ Newbie
 
Registered: Jun 2008
Location: Tbilisi
Distribution: Slackware
Posts: 28

Original Poster
Rep: Reputation: 15

Mr. C.
Quote:
And now that your key is published here, you should change it.
Of course, I have generated another one with rndc-confgen utility...
But the problem still exists...

Last edited by xokaido; 07-23-2008 at 12:10 AM.
 
Old 07-28-2008, 03:27 AM   #17
xokaido
LQ Newbie
 
Registered: Jun 2008
Location: Tbilisi
Distribution: Slackware
Posts: 28

Original Poster
Rep: Reputation: 15
Thanks to everyone!...
I have solved this problem myself...
And just in case if someone has the same problem, as I realized
it is presented only on the Debian based systems...
Actually there is problem with rndc.key file, not in rndc.conf...
In /etc/bind/rndc.key file there are couple of lines that look like this:
Quote:
key "rndc-key" {
algorithm hmac-md5;
secret "xNs6leSB5Akl1Eqb7Jv3fw==";
};
and it is important to meet the same line "secret" in the /etc/bind/named.conf file...
To achieve this you need to run:
Quote:
Debian~# rndc-confgen
it would generate text similar to this:
Quote:
# Start of rndc.conf
key "rndc-key" {
algorithm hmac-md5;
secret "nV7KozncodpAs2qFxgcA+g==";
};

options {
default-key "rndc-key";
default-server 127.0.0.1;
default-port 953;
};
# End of rndc.conf

# Use with the following in named.conf, adjusting the allow list as needed:
# key "rndc-key" {
# algorithm hmac-md5;
# secret "nV7KozncodpAs2qFxgcA+g==";
# };
#
# controls {
# inet 127.0.0.1 port 953
# allow { 127.0.0.1; } keys { "rndc-key"; };
# };
# End of named.conf
Now, copy eahc block of code to its destination...
For example, first block is for rndc.key file (which is located in the /etc/bind directory),
and second block is commented for named.conf (this file is located in same directory as rndc.key e.g. /etc/bind)...
finally, we should have the same "secret" keys on both rndc.key and named.conf files...
P.S When you copy text generated by rndc-confgen utility in the named.conf file please note that lines are commented and do remove them...
Have fun!...
 
Old 07-28-2008, 03:31 AM   #18
Mr. C.
Senior Member
 
Registered: Jun 2008
Posts: 2,529

Rep: Reputation: 59
Glad you got it working. You'll kick yourself, if you read the last lines of post #2, where dkm999 says you need the same secrets in both files.
 
  


Reply

Tags
bind, domain, failed, name, service, starting


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
DNS (bind9) on Ubuntu not working right Avatar Linux - Networking 9 01-07-2008 05:01 PM
Problem on starting BIND9 satimis Linux - Server 2 10-23-2007 07:27 AM
dns configuration using Bind9 and ubuntu aljohn123 Ubuntu 0 11-13-2006 11:47 PM
emergency bind9 problem Ratclaws Linux - Software 0 09-02-2005 07:13 PM
Bind9 problem WiWa Linux - Networking 3 06-06-2004 06:27 AM


All times are GMT -5. The time now is 04:19 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration