Help
Hello, we are implementing a DNSSEC signing appliance for use by master name servers in our enterprise. We have one existing implementation that uses TSIG between a visible master and secondary name servers at an ISP. The connection to the signing appliance is over a private network and we do not desire to use TSIG to communicate between the master and the signing appliance. My question is whether we can choose what slaves that we want to use TSIG with the master?
|
|
|||
|
Welcome
O'Reilly Answers is a community site for sharing knowledge, asking questions, and providing answers that brings together our customers, authors, editors, conference speakers, and Foo (Friends of O'Reilly). More »
BIND TSIG Question.1 Reply
You can even choose which zones will be transferred using TSIG keys, and which not. You can setup ext and int views as well. My "5 cents" on how I use TSIG with RHEL/CentOS in rootjail is here http://itblogspot.ne...-bind-with-tsig
|
|||
© 2013, O’Reilly Media, Inc. (707) 827-7019 (800) 889-8969 All trademarks and registered trademarks appearing on oreilly.com are the property of their respective owners. |
