i wish to sign a zone fetched via zonefetch.xml on a host/interface which is also running an authoritative daemon on port 53. is the convention to configure a secondary address on that interface and have the [stealth] primary notify that secondary ip address on port 53? should i not be nervous about a dropped notify? randy