Multiple masters and multiple TSIG keys

Anand Buddhdev anandb at ripe.net
Wed Sep 29 08:34:28 UTC 2010


Hello BIND users,

I'm using BIND 9.7.1-P2. I have the following configuration in my
named.conf:

masters "m" { ip1; ip2; ip3; ip4; };

zone "z1" {
	type slave;
	file "z1";
	masters { m; };
};

zone "z2" {
	type slave;
	file "z2";
	masters { m; };
};

Now, I have been given 2 keys, t1 and t2, to use for transferring z1 and
z2 respectively. I defined the keys in my configuration file, and then did:

zone "z1" {
	type slave;
	file "z1";
	masters { m key t1; };
};

zone "z2" {
	type slave;
	file "z2";
	masters { m key t2; };
};

However, BIND doesn't like this, and named-checkconf gives me the error
"unexpected token 't1'".

Is there any way to use different keys for different zones when using a
masters macro? Or will I have to abandon macros for this type of
configuration?

-- 
Anand Buddhdev



More information about the bind-users mailing list