Symptoms
- When Domains > example.com > DNS Settings is changed, changes are not applied to BIND.
-
CLI utility fails with the following error:
# /opt/psa/admin/sbin/dnsmng --update example.com
dnsmng: Error: unable to reload BIND service
dnsmng: Error: unable to reload BIND service -
BIND cannot be reloaded manually:
# service bind9 reload
[....] Reloading domain name service...: bind9rndc: connection to remote host closed
This may indicate that
* the remote server is using an older version of the command protocol,
* this host is not authorized to connect,
* the clocks are not synchronized, or
* the key is invalid.
failed!
Cause
Incorrect key specified in /etc/named.conf or localhost has no control privileges for BIND.
Resolution
-
Log in to the server via SSH .
-
Ensure that file
/etc/bind/rndc.keyexists and that it has the following line:# cat /etc/bind/rndc.key
...
key rndc-key { algorithm hmac-md5; secret "somesecret"; };
...Also the following section should be present in
/etc/named.conf:# cat /etc/named.conf
...
key rndc-key {
algorithm hmac-md5;
secret "somesecret";
};
controls {
inet * port someport allow { 127.0.0.1;} keys {rndc-key;};
};
...