Rndc Errors

[Mark.Andrews at nominum.com]

	127.0.0.1 != 192.168.0.131

> 
> I have successfully compiled bind-9.1.1 on RH 6.2 and a 2.4.2 kernel and gene
> rated a key from the dnssec-keygen command for rndc.conf file.
> When I run the rndc reload command I get the error messages: 
> "rndc: send remote authenticator: permission denied".
> I generated the keys a couple of times and still getting the same error messa
> ges. I have included the log messages and the relevant files below for scruti
> ny.
>  What am I doing wrong?
> >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
> statement in named.conf:
> 
> key rndc_key {
>      algorithm hmac-md5;
>      secret "vf3nm1L95/qYmsLz2pfQCA==";
> };
> controls {
>          inet * allow { 192.168.0.131; } keys { rndc_keys; };
> >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
> statement in rndc.conf:
> 
> options {
>         default-server 127.0.0.1;
>         default-key   rndc_key;
> };
> key rndc_key {
>      algorithm  hmac-md5;
>      secret "vf3nm1L95/qYmsLz2pfQCA==";
> };
> >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
> error report from /var/log/messages:
> 
> Apr 14 07:45:19 linuxserv ./named[896]: starting BIND 9.1.1
> Apr 14 07:45:19 linuxserv ./named[896]: using 1 CPU
> Apr 14 07:45:19 linuxserv ./named[896]: loading configuration from '/etc/name
> d.conf'
> Apr 14 07:45:19 linuxserv ./named[896]: no IPv6 interfaces found
> Apr 14 07:45:19 linuxserv ./named[896]: listening on IPv4 interface lo, 127.0
> .0.1#53
> Apr 14 07:45:19 linuxserv ./named[896]: listening on IPv4 interface eth0, 192
> .168.0.131#53
> Apr 14 07:45:19 linuxserv ./named[896]: couldn't find key rndc_keys for use w
> ith command channel 0.0.0.0#953
> Apr 14 07:45:19 linuxserv ./named[896]: command channel listening on 0.0.0.0#
> 953
> Apr 14 07:45:19 linuxserv ./named[896]: running
> 
> 
> 
> 
--
Mark Andrews, Nominum Inc.
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark.Andrews at nominum.com