[Opendnssec-user] sign failure
Randy Bush
randy at psg.com
Thu Oct 22 16:47:41 UTC 2020
i am being blind here. could someone with better eyes find my error?
adding new zones to config, and
Oct 22 16:31:40 rip ods-signerd[18609]: [adapter] unable to add rr to zone: soa record has invalid owner name
Oct 22 16:31:40 rip ods-signerd[18609]: [adapter] error adding RR at line 8: 15.28.147.in-addr.arpa. SOA rip.psg.com. hostmaster.psg.com. 202010220 86400 3600 2592000 14400
Oct 22 16:31:40 rip ods-signerd[18609]: [tools] unable to read zone 147.028.015: adapter failed (General error)
Oct 22 16:31:40 rip ods-signerd[18609]: CRITICAL: failed to sign zone 147.028.015: General error
this is the zone file
$TTL 14400 ; 4 hours
15.28.147.in-addr.arpa. SOA rip.psg.com. hostmaster.psg.com. (
202010220 ; serial
86400 ; refresh (1 day)
3600 ; retry (1 hour)
2592000 ; expire (4 weeks 2 days)
14400 ; minimum (4 hours)
)
NS RIP.PSG.COM.
NS NLNS.GLOBNIX.NET.
the zonelist entry is
<Zone name="15.28.147.in-addr.arpa"> <Policy>default</Policy>
<SignerConfiguration>/usr/local/var/opendnssec/signconf/147.028.015.xml</SignerConfiguration>
<Adapters>
<Input> <File>/usr/local/var/opendnssec/unsigned/147.028.015</File> </Input>
<Output> <File>/usr/home/dns/primary/147.028.015</File> </Output>
</Adapters>
</Zone>
and, i know this is not rigorous, but
% named-checkzone 15.28.147.in-addr.arpa dns/147.028.015
zone 15.28.147.in-addr.arpa/IN: loaded serial 202010220
OK
thanks
randy
More information about the Opendnssec-user
mailing list