How works bind9 package in Debian?

To: "Debian List" <debian-user@lists.debian.org>
Subject: How works bind9 package in Debian?
From: Eduardo <dutche@gmail.com>
Date: Mon, 18 Sep 2006 15:44:35 -0300
Message-id: <[🔎] 5b097d6e0609181144w2d3c282fy556f8d25a2673f36@mail.gmail.com>

Hi, I'm running Bind9 a few months and everything is right...but I
have changed the rndc config file. And I did:

- Removed the rndc.key in /etc/bind
- Created rndc.conf with the output of rndc-confgen
- Copied the commented lines to named.conf
- Tried to run 'rndc status'

But its showing me this error:

rndc status
rndc: connection to remote host closed
This may indicate that the remote server is using an older version of
the command protocol, this host is not authorized to connect,
or the key is invalid.


I checked all along the config files in /etc/bind but no one tells me
something useful about rndc.

How rndc works in Debian?? Does it have something that I miss???
My named.conf looks like this:


// This is the primary configuration file for the BIND DNS server named.
//
// Please read /usr/share/doc/bind9/README.Debian.gz for information on the
// structure of BIND configuration files in Debian, *BEFORE* you customize
// this configuration file.
//
// If you are just adding zones, please do that in /etc/bind/named.conf.local

//include "/etc/bind/named.conf.options";

// prime the server with knowledge of the root servers
zone "." {
       type hint;
       file "/etc/bind/db.root";
};

// be authoritative for the localhost forward and reverse zones, and for
// broadcast zones as per RFC 1912

zone "localhost" {
       type master;
       file "/etc/bind/db.local";
};

zone "127.in-addr.arpa" {
       type master;
       file "/etc/bind/db.127";
};

zone "0.in-addr.arpa" {
       type master;
       file "/etc/bind/db.0";
};

zone "255.in-addr.arpa" {
       type master;
       file "/etc/bind/db.255";
};

zone "minicom" {
       type master;
       file "/etc/bind/db.minicom";
};

zone "0.0.10.in-addr.arpa" {
       type master;
       file "/etc/bind/db.10.0.0";
};

// config do rndc

include "/etc/bind/rndc.key";

controls {
       inet 127.0.0.1 port 953
               allow { 127.0.0.1; } keys { "rndc-key"; };
};



The rndc.conf looks like:

# Start of rndc.conf
include "/etc/bind/rndc.key";

options {
       default-key "rndc-key";
       default-server 127.0.0.1;
       default-port 953;
};


The rndc.key is:

key "rndc-key" {
       algorithm hmac-md5;
       secret "TiR975EajvSrrIaaQFBp+g==";
};

Reply to:

Prev by Date: Re: eth0 (Realtek 8139) suddenly not working
Next by Date: Re: system is up 1 year
Previous by thread: Re: DNS queries with UDP and TCP
Next by thread: Debain with Sata & SCSI = boot problem
Index(es):
- Date
- Thread