BIND9 Blues
 

OK, I installed BIND9 on my server to act as a caching nameserver for my LAN and it works GREAT. Having a local DNS cuts web page loading greatly.

So, it's been a couple weeks and I want to update my root database and view the cache, so I start with a simple dig @a.root-servers.net > db.root and all is good. The cache is updated. So, I type in rndc reload and I get the error:

rndc: connection to remote host closed
This may indicate that the remote server is using an older version of
the command protocol, this host is not authorized to connect,
or the key is invalid.

So, I go on the web and find some hints about how to fix this, but they only deal with older versions of bind. Even one dated May of last year doesn't work.

Can anyone help out here? My 3 config files follow my sig (edited for length).

Thanks in advance,

v/r
RK


*********************
/etc/bind/named.conf
*********************
#Contains Forwarder option to router
include "/etc/bind/named.conf.options";

include "/etc/bind/rndc.key";

controls {
inet 127.0.0.1 port 953
allow { 127.0.0.1; } keys { "rndc-key"; };
};

zone "." {
type hint;
file "/etc/bind/db.root";
};

zone "localhost" {
type master;
file "/etc/bind/db.local";
};

zone "127.in-addr.arpa" {
type master;
file "/etc/bind/db.127";
};

zone "0.in-addr.arpa" {
type master;
file "/etc/bind/db.0";
};

zone "255.in-addr.arpa" {
type master;
file "/etc/bind/db.255";
};

include "/etc/bind/named.conf.local"; #Empty config

*******************
/etc/bind/rndc.conf
*******************

include "/etc/bind/rndc.key";

options {
default-key "rndc-key";
default-server 127.0.0.1;
default-port 953;
};

*******************
/etc/bind/rndc.key
*******************

key "rndc-key" {
algorithm hmac-md5;
secret "ZRS8BtmhV8DwX01wZRL4iA==";
};

I have my include /etc/rndc.key commented out.