f



named-checkzone error "NSEC node already exists"

--00163630e869ed2ed50496c3d6e6
Content-Type: text/plain; charset=ISO-8859-1

Hi,

Running BIND 9.7.0-P2-RedHat-9.7.0-5.P2.el6

New setup/install and attempting to setup DNSSEC and clean any dirty data.
Got the zone signed and ran named-checkzone against it and got the following
(11) times:
     addnode: NSEC node already exists
The .signed loads but want to have clean before going live and not sure how
to narrow down where these eleven duplicates are coming from?
See these repeated eleven times in debug.log for each start of named,
running debug of 3
   06-Dec-2010 14:43:39.266 database: warning: addnode: NSEC node already
exists


Sorry, some more stupid questions on DNSSEC that I'm just confused about.

 1) Do I sign my n.n.n.in-addr.arpa zone just like my domain.edu?

   # dnssec-keygen -r /dev/urandom n.n.n.in-addr.arpa
   # dnssec-keygen -f KSK -r /dev/urandom n.n.n.in-addr.arpa
   # named-checkzone -t /var/named n.n.n.in-addr.arpa dns.net.domain
      runs OK
   # dnssec-signzone -g -k Kn.n.n.in-addr.arpa.+005+33126.key -o
n.n.n.in-addr.arpa dns.net-iup Kn.n.n.in-addr.arpa.+005+24720.key


2) After I have my island of security setup and working, register the KSK
public key with educause correct?

3) After registered with educause should I stop reading in
/etc/named.iscdlv.key?

thanks!

--00163630e869ed2ed50496c3d6e6
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable

Hi,<br><br>Running BIND 9.7.0-P2-RedHat-9.7.0-5.P2.el6<br><br>New setup/ins=
tall and attempting to setup DNSSEC and clean any dirty data. <br>Got the z=
one signed and ran named-checkzone against it and got the following (11) ti=
mes:<br>
=A0=A0=A0=A0 addnode: NSEC node already exists <br>The .signed loads but wa=
nt to have clean before going live and not sure how to narrow down where th=
ese eleven duplicates are coming from? <br>See these repeated eleven times =
in debug.log for each start of named, running debug of 3<br>
=A0=A0 06-Dec-2010 14:43:39.266 database: warning: addnode: NSEC node alrea=
dy exists<br><br><br>Sorry, some more stupid questions on DNSSEC that I&#39=
;m just confused about.<br><br>=A01) Do I sign my n.n.n.in-addr.arpa zone j=
ust like my <a href=3D"http://domain.edu">domain.edu</a>?<br>
<br>=A0=A0 # dnssec-keygen -r /dev/urandom n.n.n.in-addr.arpa<br>=A0=A0 # d=
nssec-keygen -f KSK -r /dev/urandom n.n.n.in-addr.arpa<br>=A0=A0 # named-ch=
eckzone -t /var/named n.n.n.in-addr.arpa dns.net.domain <br>=A0=A0=A0=A0=A0=
 runs OK<br>=A0=A0 # dnssec-signzone -g -k Kn.n.n.in-addr.arpa.+005+33126.k=
ey -o n.n.n.in-addr.arpa dns.net-iup Kn.n.n.in-addr.arpa.+005+24720.key<br>
=A0<br>=A0<br>2) After I have my island of security setup and working, regi=
ster the KSK public key with educause correct?=A0 <br><br>3) After register=
ed with educause should I stop reading in /etc/named.iscdlv.key?<br><br>tha=
nks!<br>
<br><br><br><br><br><br><br>

--00163630e869ed2ed50496c3d6e6--
0
jim
12/6/2010 8:36:15 PM
comp.protocols.dns.bind 16245 articles. 1 followers. Post Follow

0 Replies
333 Views

Similar Articles

[PageSpeed] 23

Reply:

Similar Artilces:

&quot;LLB of that name already exists&quot; Error
Hi - &nbsp; I just tried to move a LabVIEW VI from a desktop to a&nbsp;laptop PC.&nbsp; 6-year-old desktop wasn't powerful enough to run the program. &nbsp; In order to group the main VI with the sub VIs, I used the "create folder" option.&nbsp; I then copied this over to the laptop.&nbsp; The&nbsp;laptop has operated LabVIEW for a while.&nbsp; I also recently loaded the drivers for Labjack U12 onto it (my program reads voltages from a Labjack). &nbsp; I was able to run the program perfectly fine until I restarted the computer.&nbsp; When ...

Protocol specific error code(s): "*", "*", "0".
I am using the ibm_db2 PECL drive in PHP for connecting to or DB2 database. I created a persistent connection and things seemed to work fine at first. However, after a few tests / connections, I started to get this error when running through my queries: [IBM][CLI Driver] SQL30081N A communication error has been detected. Communication protocol being used: "TCP/IP". Communication API being used: "SOCKETS". Location where the error was detected: "10.26.243.61". Communication function detecting the error: "recv". Protocol specific error code(s): &...

""""""""""""""""""""""ADD ME""""""""""""""""""""
Hi , Hope you are doing great. Please let me take this opportunity to introduce myself, Iam Karthik working with BhanInfo Inc, a NY based company. We have consultants on our bench on various technologies, my request is to add me to your distribution list and kindly do send me the requirements. i have the below list available 1. Mainframe 2. Java 3.. Financial Analyst 4. Data Architect If there is any vendor ship agreement which has to be signed then I would like to take an opportunity to represent my company and expect your cooperation... We look forward to build a ve...

"""""""""ADD ME""""""""""
Hi , Hope you are doing great. Please let me take this opportunity to introduce myself, Iam Karthik working with BhanInfoi Inc, a NY based company. We have consultants on our bench on various technologies, my request is to add me to your distribution list and kindly do send me the requirements. i have the below list available 1. Mainframe 2. Java 3.. Financial Analyst 4. Data Architect If there is any vendor ship agreement which has to be signed then I would like to take an opportunity to represent my company and expect your cooperation... ...

Protocol specific error code(s): "10065", "*", "*". SQLSTATE=08001
Hello All, I am getting the below error message when I am trying to connect from client to remote database server installed on Linux. DB2 UDB ESE database is running on a trail version on Linux and client (administration client) installed on Windows. #_____________________________________________________________________ Protocol specific error code(s): "10065", "*", "*". SQLSTATE=08001 #_____________________________________________________________________ One the DB2 server: [db2inst1@fedorasvr ~]$ db2level DB21085I Instance "db2inst1"...

"Run-Time Error '3012' : Object "------------" already exists
Dear Sir or Madam : Hello ! Newbie to Access 2010 programming here ; I've a form which is almost complete -- HOWEVER, whenever selecting a specific pull-down, I'm thrown the error : "Run-time error '3012' : Object "------------" already exists " Where "------------" is a 'set' statement... Hmmm... So... My code's below and if anyone can take a gander, it would be greatly appreciated ! ( The error checking MsgBoxes are showing me the data being returned is correct. ) It will help my office run more smoothly... Thanks in adv...

Urgent Requirement in """""""""""""NEW YORK""""""""""""""""
Hello Partners, Please find the requirement below. Please send the updated resume along with rate and contact no. REQ#1: Title : Java Developer ( Rating Project) Duration : 6 months Rate : open Location : NY strong java, WebLogic 9.2, Web Services, Oracle REQ#2: Title : Java Developer Duration : 4 months Rate : open Location : NY Strong java, SQL REQ#3: Title : VB.Net Consultant Location : NY Duration : 4 months Rate : open Primarily looking at someone who has Excel, VB.net a...

"Object name exists" error
Hey guys, It has been a couple of years since I have coded in MS Access and I have hit a snag early on that I can't quite remember what to do! I am running Access 2003 (file in 2000 format) and using DAO. I want to copy the tabledefs from one database (dbSource below) into my current database (db below). I am trying to flex my DAO muscles so DAO solutions only please (i.e. I can do this in SQL already; i just like to know different ways to attack a problem). Here is my code. I have marked the line where things go to heck: Public Sub LinkTables() Dim tdfSource As DAO.TableDe...

"out" and "in out"
Hi i found the following explaination: In Ada, "in" parameters are similar to C++ const parameters. They are effectively read-only within the scope of the called subprogram. Ada "in out" parameters have a reliable initial value (that passed in from the calling subprogram) and may be modified within the scope of the called procedure. Ada "out" parameters have no reliable initial value, but are expected to be assigned a value within the called procedure. What does "have no reliable initial value" mean when considering the "out" parameter? By c...

about "++" and "--"
why this program snippet display "8,7,7,8,-7,-8" the program is: main() { int i=8; printf("%d\n%d\n%d\n%d\n%d\n%d\n",++i,--i,i++,i--,-i++,-i--); } > why this program snippet display "8,7,7,8,-7,-8" Ask your compiler-vendor because this result is IMHO implementation-defined. Check this out: http://www.parashift.com/c++-faq-lite/misc-technical-issues.html#faq-39.15 http://www.parashift.com/c++-faq-lite/misc-technical-issues.html#faq-39.16 Regards, Irina Marudina fxc123@gmail.com wrote: > why this program snippet display "8,7,7,8,-7,-8&q...

"If then; if then;" and "If then; if;"
I have a raw data set which is a hierarchical file: H 321 s. main st P Mary E 21 F P william m 23 M P Susan K 3 F H 324 S. Main St I use the folowing code to read the data to creat one observation per detail(P) record including hearder record(H): data test; infile 'C:\Documents and Settings\retain.txt'; retain Address; input type $1. @; if type='H' then input @3 Address $12.; if type='P' then input @3 Name $10. @13 Age 3. @16 Gender $1.; run; but the output is not what I want: 1 321 s. main H 2 321 s. main P Mary E 21 F 3 321 s...

"or" and "and"
Hi, I'm just getting to discover ruby, but I find it very nice programming language. I just still don't understand how the "or" and "and" in ruby... I was playing with ruby and for example made a def to print Stem and Leaf plot (for those who didn't have a statistics course or slept on it, e.g. http://cnx.org/content/m10157/latest/) Here is the Beta version of it: class Array def n ; self.size ; end def stem_and_leaf(st = 1) # if st != (2 or 5 or 10) then ; st = 1 ; end k = Hash.new(0) self.each {|x| k[x.to_f] += 1 } k = k.sort{|a, b| a[0].to_f <=&g...

why "::", not "."
Why does the method of modules use a dot, and the constants a double colon? e.g. Math::PI and Math.cos -- Posted via http://www.ruby-forum.com/. On Oct 26, 2010, at 01:48 , Oleg Igor wrote: > Why does the method of modules use a dot, and the constants a double > colon? > e.g. > Math::PI and Math.cos For the same reason why inner-classes/modules use double colon, because = they're constants and that's how you look up via constant namespace. Math::PI and ActiveRecord::Base are the same type of lookup... it is = just that Base is a module and PI is a float....

"/a" is not "/a" ?
Hi everybody, while testing a module today I stumbled on something that I can work around but I don't quite understand. >>> a = "a" >>> b = "a" >>> a == b True >>> a is b True >>> c = "/a" >>> d = "/a" >>> c == d True # all good so far >>> c is d False # eeeeek! Why c and d point to two different objects with an identical string content rather than the same object? Manu Emanuele D'Arrigo wrote: >>>> c = "/a" >>>&...

Web resources about - named-checkzone error "NSEC node already exists" - comp.protocols.dns.bind

Resources last updated: 2/8/2016 10:50:06 PM