[Opendnssec-user] Migrating zones from file to axfr adapter?

Havard Eidnes he at uninett.no
Thu Jul 18 15:04:05 UTC 2013


>> I'm a newbie trying to find my way around OpenDNSSEC.  I started
>> with 1.3.13, and after a few failed starts and some helpful hints
>> from the people responding to bug reports, I managed to coerce
>> OpenDNSSEC to produce a signed zone file, using the zonefetch
>> method, and my /var/opendnssec tree now contains the following
>> files:
>> 
>> ./signconf/156.193.in-addr.arpa.xml
>> ./signconf/156.193.in-addr.arpa.xml.OLD
>> ./signed/156.193.in-addr.arpa
>> ./unsigned/156.193.in-addr.arpa
>> ./unsigned/156.193.in-addr.arpa.axfr
> 
> Could you just clarify - you didn't add the
> ./unsigned/156.193.in-addr.arpa.axfr file, you think this is
> something you think OpenDNSSEC has done?

Yes.

>> Now, I've installed OpenDNSSEC version 1.4.1, and did the
>> conversion of the Sqlite3 database, and want to start using the
>> "axfr in" and "axfr out" adapters for this zone instead of the
>> old signer interface which did "file in", "file out".  By the
>> looks of it, I need to modify the zonelist.xml file, and replace
>> the <Input><File> sections with <Input><Adapter type="DNS"> etc.,
>> and "ods-ksmutil update all" now accepts that config as valid.
>
> Could you send me (off-list may be better) your .xml files from
> the /etc/opendnssec/ directory? Also fuller logs from running
> the signer?

Sure, will do -- thanks!

Regards,

- Håvard



More information about the Opendnssec-user mailing list