[Opendnssec-user] Notify debugging

Fred Zwarts, KVI, Groningen F.Zwarts at KVI.nl
Fri May 16 19:55:12 UTC 2014


In the zonelist.xml I only specify the location of the adapter config file, 
not the location of the unsigned zones.
(The location for the unsigned zones is specified if no zone transfers are 
used for the input zones.)
Also, in the adapter config, I do not specify a location of the incoming 
In the config.xml a workingdirectory /var/opendnssec/tmp is specified for 
the signer.
That is all I can find.


-----Oorspronkelijk bericht----- 
From: Rick van Rein
Sent: Friday, May 16, 2014 9:36 PM
To: Fred Zwarts, KVI, Groningen
Cc: opendnssec-user at lists.opendnssec.org
Subject: Re: [Opendnssec-user] Notify debugging


> Although I found a work-around already, I looked in the 
> /var/opendnssec/unsigned directory. This directory is completely empty. 
> Apparently, the received zones are stored somewhere else.

The actual directory is configured in /etc/opendnssec (usually).

> In the /var/opendnssec/tmp directory there are some rug.nl* files (among 
> which a rug.nl.axfr), but they contain signed zone information.

That’s the working location for the signer, indeed.  There’ll be some 
comment-carried settings that it uses to be able to iterate over the zone 
faster than for a full run — it will spread signatures over time to release 
the burden of crypto processing.

> It also contains the earlier mentioned rug.nl.xfrd-state. I have no idea 
> where the unsigned zone information is stored.

Look in /etc/opendnssec (or whetever is configured as the directory for 
config files on your system) for the actual location.



More information about the Opendnssec-user mailing list