Hi Cody,
Well, your "managed-keys" section looks almost right. It should *not*
have the dlv.isc.org key in there, because the DLV has retired. The root
zone keys look right.
If you set "dnssec-validation" to "auto" (the recommended setting), then
BIND *should* be able to validate. We don't know
On 14/10/2018 14:17, Cody Allen wrote:
> issue just started on 10/13/2018 both servers impacted at same time, clocks
> are correct, version of bind is 9.11.1 impacting recursion on internal view,
> authoritative zones work fine, servers have been running for couple of years
> or longer with
issue just started on 10/13/2018 both servers impacted at same time, clocks are
correct, version of bind is 9.11.1 impacting recursion on internal view,
authoritative zones work fine, servers have been running for couple of years or
longer with zero problems. most recent version of bind.keys
3 matches
Mail list logo
