Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > comp.protocols.dns.bind > #15927
| From | Klaus Darilion <klaus.darilion@nic.at> |
|---|---|
| Newsgroups | comp.protocols.dns.bind |
| Subject | How to prepublish additional DNSKEY |
| Date | 2020-07-08 10:52 +0200 |
| Message-ID | <mailman.643.1594198340.942.bind-users@lists.isc.org> (permalink) |
| References | <3E18C1A0C550C44DA156DA5DA8ECCC6AB622808F@NICS-EXCH2.sbg.nic.at> |
Hello all! A signed zone shall be moved to another DNS provider. Hence I want to add the public KSK of the gaining DNS provider as additional DNSKEY to the zone. My setup ist: Bind1 as hidden primary --> Bind2 as bump-in-the-wire signer -> public facing secondaries I tried to add the DNSKEY to the zone file of Bind1. Bind1 accepts the DNSKEY. But Bind2 only shows the DNSKEYs from the local key-directory, the original DNSKEY is removed/ignored. I also tried to add the additonal DNSKEY into the key-directory of Bind2 (no .private file, only .key file). It did not worked too. So, how is the correct process to add an additional DNSKEY (only the public key is known). Thanks Klaus
Back to comp.protocols.dns.bind | Previous | Next | Find similar
How to prepublish additional DNSKEY Klaus Darilion <klaus.darilion@nic.at> - 2020-07-08 10:52 +0200
csiph-web