Re: Anyone have success with the Bind v9 rndc command

[Devon <devon tuxfan homeip net>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Sunday 30 September 2001 08:18 pm, Chuck wrote:
> I just replaced our coporate mail/dns server with a RH 7.1 machine, not
> realizing that it came with Bind v9 only. Instead of hacking around and
> downgrading to 8.2, I got it to finally load my named.conf/zone files
> and answering queries. However, the replacement for ndc, rndc does not
> seem to be working for me.
>
> Has anyone got this command to do anything?
>
> This is all I ever get:
> charger:/etc #rndc -s charger stats

You probably have the docs installed locally. If so, the info your 
looking for is located here:
file:///usr/share/doc/bind-9.1.0/arm/Bv9ARM.ch03.html

Basically, you have to edit 2 files:
/etc/rndc.conf, which should have lines similar to:

server localhost {
        key     "key";
};
 
key "key" {
        algorithm       hmac-md5;
        secret "YourSecretKeyShouldBeHere";
};

and /etc/named.conf should contain something like:

controls {
        inet 127.0.0.1 allow { localhost; } keys {"key"; };
};
key "key" {
        algorithm hmac-md5;
        secret 
"ThisSecretKeyNeedsToMatchTheKeyInRNDC.CONF";
};

That should get you started. Note that not all of the ndc functionallity 
is included in rndc as yet. (See the docs for info)

Hope that helps,

- -D

- -- 

pgp key:  http://www.tuxfan.homeip.net:8080/pgpkey.txt

- --
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE7t706eMAUbzJhSVcRAvtXAJ9yaLnQou5TzEOKlGPbV4its6/6SgCfS1XD
hcF0ruc9VCEaxlgl+G7S42Y=
=eOyV
-----END PGP SIGNATURE-----