7 Čec
2014
7 Čec
'14
22:28
On 07/07/14 13:02, Hauke Lampe wrote:
Did you add a "server" clause in BIND with
knot's IP address and
TSIG key? Otherwise BIND won't send a signed notify.
Hauke.
Thank you, this is much better. Indeed, BIND was sending unsigned
NOTIFY messages, now every message is signed. Interestingly, BIND
slaves will accept unsigned NOTIFY messages from a master even if the
zone statement in the slave requires a key for that master.
Thanks again!