4. force DNS slave zone to retransfer

force DNS slave zone to retransfer

  • S

    Hi how do I force a slave zone to retransfer? If I run
    rndc retransfer <zone name>
    it gives me this:

    rndc: connection to remote host closed
    This may indicate that

    • the remote server is using an older version of the command protocol,
    • this host is not authorized to connect,
    • the clocks are not synchronized,
    • the key signing algorithm is incorrect, or
    • the key is invalid.
    0
  • LAYER 8

    i think you need the -k options
    rndc -k /path/to/rndc.key retransfer <zone name>

    i have installed it on my 2.5.0-devel just to test it

    [2.5.0-DEVELOPMENT][root@pfSense.localdomain]/cf/named/etc/namedb: rndc -k rndc-key zonestatus test.home
name: test.home
type: master
files: /etc/namedb/master/trusted/test.home.DB
serial: 2581012914
nodes: 2
last loaded: Thu, 06 Feb 2020 18:23:59 GMT
secure: no
dynamic: yes
frozen: no
reconfigurable via modzone: no

    the key is inside /cf/named/etc/namedb/rndc.conf

    i just copied the key part inside a new file to use it with rndc
    the content of my rndc-key is

    key "rndc-key" {
        algorithm hmac-sha256;
        secret "blablablablablalbalblsablalblablaalbalablabala";
};
    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2019 Rubicon Communications, LLC | Privacy Policy