Questions tagged [dnssec]
The dnssec tag has no summary.
14 questions
1 vote
0 answers
152 views
Debugging systemd-resolved cache / systemd-resolved returns outdated responses
I updated the DNS settings at my DNS provider for my domain. While all public DNS servers including the DNS resolver of my router have picked up the new settings after some hours, systemd-resolved ...
- 422
8 votes
4 answers
1k views
Chicken and egg problem with NTP and Bind
This a report of a problem I solved but I feel the solution could be useful to other. The problem appeared on a Raspbian 9.13. For some - probably hardware - reasons still to be discovered, my ...
- 213
0 votes
1 answer
394 views
Bind Sync Unknown Command
Could anybody please, enlighten me on the following messages in my logs for Bind: sync 127.in-addr.arpa(unknown command): 2 Time(s) sync domain.com(unknown command): 2 Time(s) It's neither an error ...
- 135
-1 votes
1 answer
1k views
shell script if output equal any ip address [closed]
If $IP output equal to any ip address must print 1, else must print 0. #!/bin/sh IP=$(/usr/local/bin/dig ns.ripe.net. a +short) if [ $IP = "[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}" ]; then ...
- 369
6 votes
1 answer
8k views
can't generate key via dnssec-keygen
$ dnssec-keygen -a HMAC-MD5 -b 512 -n HOST {host} above results in blank line and endless waiting $ dnssec-keygen -T DNSKEY -a HMAC-MD5 -b 512 -n HOST {host} the same entropy: $ cat /proc/sys/...
- 595
2 votes
1 answer
1k views
Is it possible to mix zones with DNSSEC enabled and disabled in BIND?
I have a dozen domains configured in a set of zones in BIND and I need to add a new one with DNSSEC enabled. If I enable DNSSEC: options { dnssec-enable yes; dnssec-validation yes; }; Will it ...
- 153
3 votes
2 answers
1k views
How to locally validate DNSSEC?
I want to simulate the process of chain of trust validation locally , I do the following :- 1) signed my zone. 2) unbound installed , but i can not configure it for DNSSEC validation could you help ...
