Disabling DNSSEC validation per zone?

Daniel McDonald dan.mcdonald at austinenergy.com
Fri Jul 8 14:13:00 UTC 2011

I have a number of zones being served by rbldnsd, with bind as a front-end.
The zones are defined as forward only in named.conf.

When I enable dnssec validatation, these zones report that they are
08-Jul-2011 08:55:58.700 dnssec: info:   validating @0xb4260ad8:
ips.backscatterer.local SOA: got insecure response; parent indicates it
should be secure

I¹m not really certain which parent is reporting this

Is there a way to disable dnssec validation on these zones, while still
requiring it elsewhere?

Daniel J McDonald, CCIE # 2495, CISSP # 78281

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20110708/833f694b/attachment.html>

More information about the bind-users mailing list