Help with Xfrout notify

Spain, Dr. Jeffry A. spainj at countryday.net
Wed May 2 13:15:42 UTC 2012 

I'm reposting the following as I don't think the original was emailed to the list. Thanks. Jeff.
--------------------
I understand that manual notification of zone changes was a feature added to bind10-devel-20120329 (http://bind10.isc.org/ticket/1321). I'm having some difficulty getting this to work.

I configured bind10 as shown below (excerpt showing only one of the five zones configured [index 2]). The attempt to send notification on zone jaspain.net fails with an error even though that zone has been loaded. The query "dig @localhost jaspain.net" is successful. What problems do you see with the configuration? Or is Xfrout notify not working properly?

Also the command "config set Xfrout/transfer_acl [{"action": "REJECT"}] generates "Error: /Xfrout/tsig_key_ring not found". This used to work. Now apparently you can't provide a list argument to Xfrout/transfer_acl and you have to use "config set Xfrout/transfer_acl[0] {"action":"REJECT"}". I believe there were some changes made to bindctl to make list configuration more consistent. Is this change due to that effort or has something gone wrong? Also I'm not sure what this has to do with a tsig_key_ring not being found?

Thanks. Jeff.

root at nsb0:~/zoneData# b10-loadzone jaspain.net.db
Using SQLite3 database file /var/bind10-devel/zone.sqlite3
Zone name is jaspain.net.
Loading file "jaspain.net.db"
13 RR(s) loaded in 0.01 second(s) (100.00% of jaspain.net.db)                   
Done.
root at nsb0:~/zoneData# bindctl
> config set tsig_keys/keys ["nsb0-nsb0s:gWxinWPIF9UpqB2seY+FV/UM/czMFY3q/4oEAkAKnd0=:hmac-sha256"]
> config set Xfrout/tsig_key_ring ["nsb0-nsb0s:gWxinWPIF9UpqB2seY+FV/UM/czMFY3q/4oEAkAKnd0=:hmac-sha256"]
> config set Xfrout/transfer_acl [{"action": "REJECT"}]
Error: /Xfrout/tsig_key_ring not found
> config add Xfrout/zone_config
> config set Xfrout/zone_config[2]/origin "jaspain.net"
> config set Xfrout/zone_config[2]/transfer_acl [{"action": "ACCEPT", "from": "2001:4870:20ca:158:383e:4365:e3fe:ef7e", "key":"nsb0-nsb0s"}]
> config commit
> config remove Boss/components b10-xfrin
> config remove Boss/components b10-zonemgr
> config commit
> Xfrout notify jaspain.net
{
    "error": "Unknown zone: jaspain.net./IN"
}

Jeffry A. Spain
Network Administrator
Cincinnati Country Day School

More information about the bind10-users mailing list