rndc problem

Daniel Holden dholden at idsb.net
Sat Feb 16 09:12:28 UTC 2002


Forget it!  I found the problem and everything works perfectly now.


----- Original Message -----
From: "Daniel Holden" <dholden at idsb.net>
To: <bind-users at isc.org>
Sent: Friday, February 15, 2002 5:15 PM
Subject: rndc problem


>
> Hi
>     First, thanks to phn at icke-reklam.ipsec.nu for the pointer to the
> documentation (good stuff).  That was a big help.  My problem now is that
I
> get the following error when running "rndc stats":
>
>
////////////////////////////////////////////////////////////////////////////
> /////////////////////////////////////////////////////////////////////
> [root at localhost bin]# /usr/local/sbin/rndc stats
> rndc: connection to remote host closed
> This may indicate that the remote server is using an older version of
> the command protocol, this host is not authorized to connect,
> or the key is invalid.
> [root at localhost bin]#
>
////////////////////////////////////////////////////////////////////////////
> /////////////////////////////////////////////////////////////////////
>
>
> Here is my rndc.conf:
>
////////////////////////////////////////////////////////////////////////////
> /////////////////////////////////////////////////////////////////////
> # Start of rndc.conf
> key "rndc-key" {
>  algorithm hmac-md5;
>  secret "same as in rndc.key";
> };
>
> options {
>  default-key "rndc-key";
>  default-server "127.0.0.1";
>  default-port 953;
> };
> # End of rndc.conf
>
>
////////////////////////////////////////////////////////////////////////////
> /////////////////////////////////////////////////////////////////////
>
>
> Here is my rndc.key
>
////////////////////////////////////////////////////////////////////////////
> /////////////////////////////////////////////////////////////////////
> key "rndc-key" {
>  algorithm hmac-md5;
>  secret "same as in rndc.conf";
> };
>
>
////////////////////////////////////////////////////////////////////////////
> /////////////////////////////////////////////////////////////////////
>
>
>  Here is what I added to my named.conf
>
////////////////////////////////////////////////////////////////////////////
> /////////////////////////////////////////////////////////////////////
> key "rndc-key" {
>  algorithm hmac-md5;
>  secret "same as in rndc.key and rndc.conf";
> };
> controls {
>  inet 127.0.0.1 port 953
>   allow { 127.0.0.1; } keys { "rndc-key"; };
> };
>
>
////////////////////////////////////////////////////////////////////////////
> /////////////////////////////////////////////////////////////////////
>
>
>
> PS - phn at icke-reklam.ipsec.nu there seems to be some problem with your
DNS.
> I tried replying to your address and I got the following error message:
>
////////////////////////////////////////////////////////////////////////////
> /////////////////////////////////////////////////////////////////////
>    ----- The following addresses had permanent fatal errors -----
> <phn at icke-reklam.ipsec.nu>
>     (reason: 553 5.3.5 system config error)
>
>    ----- Transcript of session follows -----
> 553 5.3.5 icke-reklam.ipsec.nu. config error: mail loops back to me (MX
> problem?)
> 554 5.3.5 Local configuration error
>
////////////////////////////////////////////////////////////////////////////
> /////////////////////////////////////////////////////////////////////
> Daniel Holden
> dholden at idsb.net
> http://www.idsb.net
>
>



More information about the bind-users mailing list